./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1840694192 <...> [pid 6558] chdir("./253" [pid 6554] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6554] close(4 [pid 5034] unlink("./245/binderfs" [pid 6558] <... chdir resumed>) = 0 [pid 6554] <... close resumed>) = 0 [pid 6558] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... unlink resumed>) = 0 [pid 6554] exit_group(0 [pid 6558] <... prctl resumed>) = 0 [pid 6554] <... exit_group resumed>) = ? [pid 5034] umount2("./245/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6558] setpgid(0, 0 [pid 6554] +++ exited with 0 +++ [pid 6558] <... setpgid resumed>) = 0 [ 223.507023][ T6556] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 223.508518][ T6555] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6554, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6558] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6558] <... openat resumed>) = 3 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6558] write(3, "1000", 4) = 4 [pid 5029] umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6558] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6558] <... close resumed>) = 0 [pid 6557] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6558] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... openat resumed>) = 3 [pid 6558] <... symlink resumed>) = 0 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 6558] memfd_create("syzkaller", 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./253/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./253/binderfs") = 0 [pid 5029] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6558] <... memfd_create resumed>) = 3 [pid 6558] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6556] <... mount resumed>) = 0 [pid 6558] <... mmap resumed>) = 0x7ff0df171000 [pid 6556] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6556] chdir("./file0") = 0 [pid 6556] ioctl(4, LOOP_CLR_FD) = 0 [pid 6556] close(4 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6556] <... close resumed>) = 0 [pid 6556] exit_group(0) = ? [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./253/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./253/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 6555] <... mount resumed>) = 0 [pid 5029] rmdir("./253" [pid 6555] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6556] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6556, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 6555] chdir("./file0" [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6555] <... chdir resumed>) = 0 [pid 5032] umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] mkdir("./254", 0777 [pid 5032] openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... mkdir resumed>) = 0 [pid 6555] ioctl(4, LOOP_CLR_FD [pid 5032] <... openat resumed>) = 3 [pid 6555] <... ioctl resumed>) = 0 [pid 6555] close(4) = 0 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 6555] exit_group(0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6555] <... exit_group resumed>) = ? [pid 5032] umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./253/binderfs", [pid 5029] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5032] unlink("./253/binderfs" [pid 5029] <... ioctl resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 6557] <... write resumed>) = 2097152 [pid 6555] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = 0 [pid 5029] close(3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6555, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- [pid 6557] munmap(0x7ff0df171000, 138412032 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6559 ./strace-static-x86_64: Process 6559 attached [pid 6557] <... munmap resumed>) = 0 [pid 6559] set_robust_list(0x55555635e660, 24 [pid 6557] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6559] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./245/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6557] <... openat resumed>) = 4 [pid 6559] chdir("./254") = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./248", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6559] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] newfstatat(AT_FDCWD, "./245/file0", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6559] <... prctl resumed>) = 0 [pid 6557] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./248", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6559] setpgid(0, 0) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6559] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6559] <... openat resumed>) = 3 [pid 6559] write(3, "1000", 4 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6559] <... write resumed>) = 4 [pid 6559] close(3 [pid 5033] umount2("./248/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6559] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6559] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] newfstatat(AT_FDCWD, "./248/binderfs", [pid 6559] memfd_create("syzkaller", 0 [pid 5034] umount2("./245/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6557] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./248/binderfs" [pid 6559] <... memfd_create resumed>) = 3 [pid 6557] close(3 [pid 5034] openat(AT_FDCWD, "./245/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6559] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6557] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] <... unlink resumed>) = 0 [pid 6559] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] newfstatat(4, "", [pid 5033] umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6557] mkdir("./file0", 0777) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6557] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(4, [pid 5032] newfstatat(AT_FDCWD, "./253/file0", [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 223.694120][ T6557] loop2: detected capacity change from 0 to 4096 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./253/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./253") = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./245/file0" [pid 6558] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] mkdir("./254", 0777 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./245") = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5034] mkdir("./246", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = 0 [ 223.743449][ T6557] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5032] close(3 [pid 5034] close(3) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6560 ./strace-static-x86_64: Process 6560 attached [pid 6560] set_robust_list(0x55555635e660, 24) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6561 ./strace-static-x86_64: Process 6561 attached [pid 6560] chdir("./254") = 0 [pid 6560] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6561] set_robust_list(0x55555635e660, 24) = 0 [pid 6561] chdir("./246" [pid 6560] <... prctl resumed>) = 0 [pid 6560] setpgid(0, 0) = 0 [pid 6560] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6561] <... chdir resumed>) = 0 [pid 6560] write(3, "1000", 4) = 4 [pid 6560] close(3) = 0 [pid 6560] symlink("/dev/binderfs", "./binderfs" [pid 6561] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6560] <... symlink resumed>) = 0 [pid 6561] <... prctl resumed>) = 0 [pid 6561] setpgid(0, 0 [pid 6560] memfd_create("syzkaller", 0 [pid 6561] <... setpgid resumed>) = 0 [pid 6561] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6561] write(3, "1000", 4) = 4 [pid 6560] <... memfd_create resumed>) = 3 [pid 6560] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6561] close(3) = 0 [pid 6560] <... mmap resumed>) = 0x7ff0df171000 [pid 6559] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6561] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6561] memfd_create("syzkaller", 0 [pid 6558] <... write resumed>) = 2097152 [pid 5033] umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6561] <... memfd_create resumed>) = 3 [pid 6561] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6558] munmap(0x7ff0df171000, 138412032 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./248/file0", [pid 6561] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6557] <... mount resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./248/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6558] <... munmap resumed>) = 0 [pid 6557] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6557] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 6557] chdir("./file0" [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6557] <... chdir resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 6558] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6557] ioctl(4, LOOP_CLR_FD [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./248/file0" [pid 6557] <... ioctl resumed>) = 0 [pid 6557] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 6558] <... openat resumed>) = 4 [pid 6558] ioctl(4, LOOP_SET_FD, 3 [pid 6557] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 6558] <... ioctl resumed>) = 0 [pid 6557] exit_group(0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6557] <... exit_group resumed>) = ? [pid 5033] close(3 [pid 6557] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./248" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6557, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./249", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] umount2("./251", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./251", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 3 [pid 6559] <... write resumed>) = 2097152 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(3, "", [pid 5033] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5033] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./251/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./251/binderfs", [pid 6559] munmap(0x7ff0df171000, 138412032 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6564 attached [pid 6559] <... munmap resumed>) = 0 [pid 5031] unlink("./251/binderfs" [pid 6564] set_robust_list(0x55555635e660, 24 [pid 6558] close(3 [pid 5031] <... unlink resumed>) = 0 [pid 6558] <... close resumed>) = 0 [pid 5031] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6564] <... set_robust_list resumed>) = 0 [pid 6560] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6564 [pid 6564] chdir("./249" [pid 6558] mkdir("./file0", 0777 [pid 6564] <... chdir resumed>) = 0 [pid 6558] <... mkdir resumed>) = 0 [pid 6564] prctl(PR_SET_PDEATHSIG, SIGKILL [ 223.914417][ T6558] loop1: detected capacity change from 0 to 4096 [pid 6558] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6564] <... prctl resumed>) = 0 [pid 6559] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6559] ioctl(4, LOOP_SET_FD, 3 [pid 6564] setpgid(0, 0) = 0 [pid 6564] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6564] write(3, "1000", 4) = 4 [pid 6561] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6564] close(3) = 0 [pid 6564] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6564] memfd_create("syzkaller", 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6559] <... ioctl resumed>) = 0 [pid 6559] close(3) = 0 [ 223.983410][ T6558] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 223.990230][ T6559] loop0: detected capacity change from 0 to 4096 [pid 6560] <... write resumed>) = 2097152 [pid 6559] mkdir("./file0", 0777) = 0 [pid 6564] <... memfd_create resumed>) = 3 [pid 6564] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6559] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6564] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6558] <... mount resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./251/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./251/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6560] munmap(0x7ff0df171000, 138412032 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6558] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] getdents64(4, [pid 6558] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6558] chdir("./file0") = 0 [pid 5031] close(4 [pid 6558] ioctl(4, LOOP_CLR_FD [pid 5031] <... close resumed>) = 0 [pid 6558] <... ioctl resumed>) = 0 [pid 5031] rmdir("./251/file0" [pid 6558] close(4 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./251" [pid 6560] <... munmap resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./252", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6560] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6560] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6565 [pid 6558] <... close resumed>) = 0 ./strace-static-x86_64: Process 6565 attached [pid 6565] set_robust_list(0x55555635e660, 24 [pid 6558] exit_group(0 [pid 6565] <... set_robust_list resumed>) = 0 [pid 6565] chdir("./252" [pid 6558] <... exit_group resumed>) = ? [pid 6565] <... chdir resumed>) = 0 [pid 6565] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6565] setpgid(0, 0) = 0 [pid 6565] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6558] +++ exited with 0 +++ [pid 6565] <... openat resumed>) = 3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6558, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6565] write(3, "1000", 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6565] <... write resumed>) = 4 [pid 5030] openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6565] close(3 [pid 5030] <... openat resumed>) = 3 [pid 6565] <... close resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6565] symlink("/dev/binderfs", "./binderfs" [pid 6561] <... write resumed>) = 2097152 [pid 6560] <... ioctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6565] <... symlink resumed>) = 0 [pid 6561] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(3, [pid 6565] memfd_create("syzkaller", 0 [pid 6560] close(3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6560] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6565] <... memfd_create resumed>) = 3 [pid 6560] mkdir("./file0", 0777 [pid 5030] newfstatat(AT_FDCWD, "./253/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6565] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [ 224.049061][ T6559] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 224.081703][ T6560] loop3: detected capacity change from 0 to 4096 [pid 5030] unlink("./253/binderfs" [pid 6565] <... mmap resumed>) = 0x7ff0df171000 [pid 6561] <... munmap resumed>) = 0 [pid 6560] <... mkdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6564] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6561] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6560] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6561] <... openat resumed>) = 4 [pid 6561] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6561] close(3 [pid 6565] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6559] <... mount resumed>) = 0 [pid 6561] <... close resumed>) = 0 [ 224.148094][ T6560] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 224.159519][ T6561] loop5: detected capacity change from 0 to 4096 [pid 6561] mkdir("./file0", 0777 [pid 6559] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6559] chdir("./file0" [pid 6561] <... mkdir resumed>) = 0 [pid 6559] <... chdir resumed>) = 0 [pid 6564] <... write resumed>) = 2097152 [pid 6561] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6559] ioctl(4, LOOP_CLR_FD) = 0 [pid 6559] close(4) = 0 [pid 6559] exit_group(0) = ? [pid 6559] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6559, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6564] munmap(0x7ff0df171000, 138412032 [pid 5029] umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6560] <... mount resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6560] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] newfstatat(AT_FDCWD, "./254/binderfs", [pid 6560] <... openat resumed>) = 3 [pid 5030] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6564] <... munmap resumed>) = 0 [pid 6560] chdir("./file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./254/binderfs" [pid 6564] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6560] <... chdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./253/file0", [pid 5029] <... unlink resumed>) = 0 [pid 6564] <... openat resumed>) = 4 [pid 6560] ioctl(4, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6564] ioctl(4, LOOP_SET_FD, 3 [pid 6560] <... ioctl resumed>) = 0 [pid 5030] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6560] close(4) = 0 [pid 6560] exit_group(0) = ? [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6564] <... ioctl resumed>) = 0 [pid 6560] +++ exited with 0 +++ [pid 5030] getdents64(4, [pid 5029] <... umount2 resumed>) = 0 [pid 6564] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6560, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 6564] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6564] mkdir("./file0", 0777 [pid 5030] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./254/file0", [pid 6564] <... mkdir resumed>) = 0 [pid 6561] <... mount resumed>) = 0 [pid 5030] rmdir("./253/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6564] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] getdents64(3, [pid 5029] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6561] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 224.210020][ T6561] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 224.237934][ T6564] loop4: detected capacity change from 0 to 4096 [pid 6561] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./254/binderfs", [pid 5029] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(4, "", [pid 5032] unlink("./254/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5029] getdents64(4, [pid 5032] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5030] close(3 [pid 6561] chdir("./file0" [pid 5030] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5030] rmdir("./253" [pid 5029] rmdir("./254/file0" [pid 6561] <... chdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] mkdir("./254", 0777 [pid 6561] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6561] close(4 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6561] <... close resumed>) = 0 [pid 6565] <... write resumed>) = 2097152 [pid 5030] <... openat resumed>) = 3 [pid 5029] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... close resumed>) = 0 [pid 6561] exit_group(0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] rmdir("./254" [pid 6561] <... exit_group resumed>) = ? [pid 5030] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 6561] +++ exited with 0 +++ [pid 5032] <... umount2 resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6561, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 224.287693][ T6564] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] mkdir("./255", 0777 [pid 6565] munmap(0x7ff0df171000, 138412032 [pid 5029] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 6566 attached [pid 6565] <... munmap resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6566 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6566] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./246", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] openat(AT_FDCWD, "./246", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] close(3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6566] <... set_robust_list resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./246/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6567 attached [pid 6566] chdir("./254" [pid 6567] set_robust_list(0x55555635e660, 24 [pid 6566] <... chdir resumed>) = 0 [pid 6565] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6567 [pid 6567] <... set_robust_list resumed>) = 0 [pid 6565] <... openat resumed>) = 4 [pid 6566] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6566] <... prctl resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./246/binderfs", [pid 6566] setpgid(0, 0 [pid 6567] chdir("./255" [pid 6566] <... setpgid resumed>) = 0 [pid 6565] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6567] <... chdir resumed>) = 0 [pid 6566] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6564] <... mount resumed>) = 0 [pid 5034] unlink("./246/binderfs" [pid 5032] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6567] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6566] <... openat resumed>) = 3 [pid 6564] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./254/file0", [pid 6567] <... prctl resumed>) = 0 [pid 6566] write(3, "1000", 4 [pid 6564] <... openat resumed>) = 3 [pid 5034] umount2("./246/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6567] setpgid(0, 0 [pid 5032] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6566] <... write resumed>) = 4 [pid 6567] <... setpgid resumed>) = 0 [pid 6564] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6567] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6566] close(3 [pid 6564] <... chdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6567] <... openat resumed>) = 3 [pid 6566] <... close resumed>) = 0 [pid 6564] ioctl(4, LOOP_CLR_FD [pid 5032] <... openat resumed>) = 4 [pid 6567] write(3, "1000", 4 [pid 5032] newfstatat(4, "", [pid 6567] <... write resumed>) = 4 [pid 6566] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6567] close(3 [pid 6564] <... ioctl resumed>) = 0 [pid 5032] getdents64(4, [pid 6566] <... symlink resumed>) = 0 [pid 6564] close(4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6567] <... close resumed>) = 0 [pid 6564] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 6567] symlink("/dev/binderfs", "./binderfs" [pid 6565] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6567] <... symlink resumed>) = 0 [pid 6565] close(3 [pid 6564] exit_group(0 [pid 5032] close(4 [pid 6565] <... close resumed>) = 0 [pid 6564] <... exit_group resumed>) = ? [pid 5032] <... close resumed>) = 0 [pid 6567] memfd_create("syzkaller", 0 [pid 6566] memfd_create("syzkaller", 0 [pid 6565] mkdir("./file0", 0777 [pid 5032] rmdir("./254/file0") = 0 [pid 6565] <... mkdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 6567] <... memfd_create resumed>) = 3 [pid 6565] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5032] rmdir("./254" [pid 6567] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6567] <... mmap resumed>) = 0x7ff0df171000 [ 224.361358][ T6565] loop2: detected capacity change from 0 to 4096 [pid 5032] mkdir("./255", 0777 [pid 6564] +++ exited with 0 +++ [pid 6566] <... memfd_create resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6564, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5033] umount2("./249", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./249", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6566] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6566] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6568 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./249/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6568 attached [pid 5033] newfstatat(AT_FDCWD, "./249/binderfs", [pid 6568] set_robust_list(0x55555635e660, 24 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6568] <... set_robust_list resumed>) = 0 [pid 5033] unlink("./249/binderfs") = 0 [pid 6568] chdir("./255" [pid 5033] umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6568] <... chdir resumed>) = 0 [ 224.404879][ T6565] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6568] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... umount2 resumed>) = 0 [pid 6568] <... prctl resumed>) = 0 [pid 6568] setpgid(0, 0 [pid 5034] umount2("./246/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6568] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6568] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] newfstatat(AT_FDCWD, "./246/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./246/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./246/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 5033] <... umount2 resumed>) = 0 [pid 6565] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6567] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6565] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(AT_FDCWD, "./249/file0", [pid 6568] <... openat resumed>) = 3 [pid 6565] <... openat resumed>) = 3 [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6565] chdir("./file0" [pid 6568] write(3, "1000", 4 [pid 6565] <... chdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6568] <... write resumed>) = 4 [pid 6565] ioctl(4, LOOP_CLR_FD [pid 5034] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6568] close(3 [pid 6565] <... ioctl resumed>) = 0 [pid 6568] <... close resumed>) = 0 [pid 6565] close(4 [pid 5034] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./249/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6568] symlink("/dev/binderfs", "./binderfs" [pid 6565] <... close resumed>) = 0 [pid 5034] rmdir("./246/file0" [pid 5033] <... openat resumed>) = 4 [pid 6568] <... symlink resumed>) = 0 [pid 6565] exit_group(0) = ? [pid 5034] <... rmdir resumed>) = 0 [pid 6568] memfd_create("syzkaller", 0 [pid 5034] getdents64(3, [pid 5033] newfstatat(4, "", [pid 6568] <... memfd_create resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6568] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] close(3 [pid 5033] getdents64(4, [pid 6568] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6565] +++ exited with 0 +++ [pid 5034] rmdir("./246" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6565, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5033] getdents64(4, [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5034] mkdir("./247", 0777 [pid 5033] close(4 [pid 5031] umount2("./252", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./252", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", [pid 5034] <... mkdir resumed>) = 0 [pid 5033] rmdir("./249/file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6566] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, [pid 5031] getdents64(3, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] close(3 [pid 5031] umount2("./252/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./249" [pid 5031] newfstatat(AT_FDCWD, "./252/binderfs", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./252/binderfs") = 0 [pid 5031] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] mkdir("./250", 0777 [pid 5034] close(3 [pid 5033] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 6569 attached ) = -1 ENXIO (No such device or address) [pid 6569] set_robust_list(0x55555635e660, 24 [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6570 attached [pid 6570] set_robust_list(0x55555635e660, 24 [pid 6569] <... set_robust_list resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6570 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6569 [pid 6569] chdir("./247" [pid 6570] <... set_robust_list resumed>) = 0 [pid 6570] chdir("./250") = 0 [pid 6569] <... chdir resumed>) = 0 [pid 6570] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6569] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6569] setpgid(0, 0 [pid 6570] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6570] setpgid(0, 0) = 0 [pid 6569] <... setpgid resumed>) = 0 [pid 5031] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6569] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6570] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] newfstatat(AT_FDCWD, "./252/file0", [pid 6570] <... openat resumed>) = 3 [pid 6569] <... openat resumed>) = 3 [pid 6567] <... write resumed>) = 2097152 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6570] write(3, "1000", 4 [pid 6569] write(3, "1000", 4 [pid 5031] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6570] <... write resumed>) = 4 [pid 6569] <... write resumed>) = 4 [pid 6568] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6569] close(3 [pid 6567] munmap(0x7ff0df171000, 138412032 [pid 6570] close(3 [pid 6569] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./252/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6570] <... close resumed>) = 0 [pid 6569] symlink("/dev/binderfs", "./binderfs" [pid 6570] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6569] <... symlink resumed>) = 0 [pid 6566] <... write resumed>) = 2097152 [pid 6570] memfd_create("syzkaller", 0 [pid 6569] memfd_create("syzkaller", 0 [pid 6566] munmap(0x7ff0df171000, 138412032 [pid 6567] <... munmap resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6567] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6570] <... memfd_create resumed>) = 3 [pid 5031] newfstatat(4, "", [pid 6569] <... memfd_create resumed>) = 3 [pid 6567] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6570] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6569] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6567] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(4, [pid 6569] <... mmap resumed>) = 0x7ff0df171000 [pid 6570] <... mmap resumed>) = 0x7ff0df171000 [pid 6566] <... munmap resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 6566] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./252/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6566] <... openat resumed>) = 4 [pid 5031] close(3 [pid 6566] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./252") = 0 [pid 5031] mkdir("./253", 0777) = 0 [pid 6567] <... ioctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6567] close(3 [pid 5031] <... openat resumed>) = 3 [pid 6567] <... close resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6567] mkdir("./file0", 0777 [pid 5031] <... ioctl resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6571 attached [pid 6567] <... mkdir resumed>) = 0 [pid 6571] set_robust_list(0x55555635e660, 24 [pid 6567] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6571 [ 224.631255][ T6567] loop0: detected capacity change from 0 to 4096 [ 224.662192][ T6566] loop1: detected capacity change from 0 to 4096 [pid 6571] <... set_robust_list resumed>) = 0 [pid 6571] chdir("./253") = 0 [pid 6566] <... ioctl resumed>) = 0 [pid 6571] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6571] setpgid(0, 0 [pid 6566] close(3) = 0 [pid 6571] <... setpgid resumed>) = 0 [pid 6568] <... write resumed>) = 2097152 [pid 6566] mkdir("./file0", 0777 [pid 6571] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6566] <... mkdir resumed>) = 0 [pid 6571] <... openat resumed>) = 3 [pid 6571] write(3, "1000", 4) = 4 [pid 6571] close(3) = 0 [pid 6571] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6571] memfd_create("syzkaller", 0 [ 224.676354][ T6567] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6566] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6571] <... memfd_create resumed>) = 3 [pid 6571] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6568] munmap(0x7ff0df171000, 138412032) = 0 [pid 6569] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6568] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6568] ioctl(4, LOOP_SET_FD, 3 [pid 6570] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6568] <... ioctl resumed>) = 0 [pid 6568] close(3) = 0 [pid 6568] mkdir("./file0", 0777) = 0 [ 224.726175][ T6566] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 224.761885][ T6568] loop3: detected capacity change from 0 to 4096 [pid 6568] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6569] <... write resumed>) = 2097152 [pid 6566] <... mount resumed>) = 0 [pid 6566] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6569] munmap(0x7ff0df171000, 138412032 [pid 6571] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6567] <... mount resumed>) = 0 [pid 6566] <... openat resumed>) = 3 [pid 6569] <... munmap resumed>) = 0 [pid 6570] <... write resumed>) = 2097152 [pid 6569] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6566] chdir("./file0") = 0 [pid 6569] <... openat resumed>) = 4 [pid 6567] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6569] ioctl(4, LOOP_SET_FD, 3 [pid 6567] <... openat resumed>) = 3 [ 224.796134][ T6568] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6567] chdir("./file0") = 0 [pid 6567] ioctl(4, LOOP_CLR_FD) = 0 [pid 6567] close(4) = 0 [pid 6567] exit_group(0 [pid 6570] munmap(0x7ff0df171000, 138412032 [pid 6567] <... exit_group resumed>) = ? [pid 6567] +++ exited with 0 +++ [pid 6566] ioctl(4, LOOP_CLR_FD [pid 6570] <... munmap resumed>) = 0 [pid 6569] <... ioctl resumed>) = 0 [pid 6568] <... mount resumed>) = 0 [pid 6566] <... ioctl resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6567, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 6569] close(3 [pid 6568] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6566] close(4 [pid 6569] <... close resumed>) = 0 [pid 6569] mkdir("./file0", 0777 [pid 6566] <... close resumed>) = 0 [pid 5029] umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6569] <... mkdir resumed>) = 0 [pid 6566] exit_group(0 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 6569] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6568] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 6570] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6570] <... openat resumed>) = 4 [pid 6570] ioctl(4, LOOP_SET_FD, 3 [pid 5029] umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6571] <... write resumed>) = 2097152 [pid 6568] chdir("./file0" [pid 6566] <... exit_group resumed>) = ? [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./255/binderfs", [pid 6568] <... chdir resumed>) = 0 [pid 6566] +++ exited with 0 +++ [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6568] ioctl(4, LOOP_CLR_FD [pid 5029] unlink("./255/binderfs" [pid 6568] <... ioctl resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6566, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6568] close(4 [pid 5030] openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6568] <... close resumed>) = 0 [pid 6568] exit_group(0 [pid 5030] <... openat resumed>) = 3 [pid 6568] <... exit_group resumed>) = ? [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./254/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./254/binderfs") = 0 [pid 6571] munmap(0x7ff0df171000, 138412032 [pid 5030] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6570] <... ioctl resumed>) = 0 [pid 6570] close(3) = 0 [pid 6570] mkdir("./file0", 0777 [pid 6568] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6568, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6570] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6570] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6569] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6571] <... munmap resumed>) = 0 [pid 6569] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 224.847422][ T6569] loop5: detected capacity change from 0 to 4096 [ 224.876561][ T6569] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 224.876982][ T6570] loop4: detected capacity change from 0 to 4096 [pid 6571] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6569] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 6571] <... openat resumed>) = 4 [pid 6569] chdir("./file0" [pid 5032] newfstatat(3, "", [pid 5029] newfstatat(AT_FDCWD, "./255/file0", [pid 6571] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 6569] <... chdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6569] ioctl(4, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./255/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./255/binderfs") = 0 [pid 5032] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6569] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6569] close(4 [pid 5029] <... openat resumed>) = 4 [pid 6569] <... close resumed>) = 0 [pid 6569] exit_group(0 [pid 5029] newfstatat(4, "", [pid 6569] <... exit_group resumed>) = ? [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./255/file0" [pid 6571] <... ioctl resumed>) = 0 [pid 6569] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6571] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6569, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5029] getdents64(3, [pid 6571] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6571] mkdir("./file0", 0777 [ 224.928844][ T6570] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 224.940452][ T6571] loop2: detected capacity change from 0 to 4096 [pid 5029] close(3 [pid 6571] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5034] umount2("./247", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./255" [pid 6571] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] openat(AT_FDCWD, "./247", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./254/file0", [pid 5029] mkdir("./256", 0777 [pid 5034] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5030] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] umount2("./247/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./247/binderfs", [pid 5030] <... openat resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5034] unlink("./247/binderfs" [pid 5029] <... openat resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [pid 5032] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] umount2("./247/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] close(3 [pid 5032] newfstatat(AT_FDCWD, "./255/file0", [pid 5030] getdents64(4, [pid 5029] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] close(4 [pid 5032] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] <... close resumed>) = 0 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] rmdir("./254/file0" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6574 ./strace-static-x86_64: Process 6574 attached [pid 5032] getdents64(4, [pid 6574] set_robust_list(0x55555635e660, 24 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... rmdir resumed>) = 0 [pid 6574] <... set_robust_list resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] getdents64(3, [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6574] chdir("./256" [pid 5032] rmdir("./255/file0" [pid 6574] <... chdir resumed>) = 0 [pid 5030] close(3 [pid 6574] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... rmdir resumed>) = 0 [pid 6574] <... prctl resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6574] setpgid(0, 0) = 0 [pid 5032] getdents64(3, [pid 5030] rmdir("./254" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6574] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] mkdir("./255", 0777 [pid 6574] <... openat resumed>) = 3 [pid 5032] close(3) = 0 [pid 5032] rmdir("./255" [pid 6574] write(3, "1000", 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6574] <... write resumed>) = 4 [pid 5032] mkdir("./256", 0777 [pid 6574] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6574] <... close resumed>) = 0 [ 224.995865][ T6571] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6574] symlink("/dev/binderfs", "./binderfs" [pid 6570] <... mount resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6574] <... symlink resumed>) = 0 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6574] memfd_create("syzkaller", 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6570] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6575 [pid 6570] chdir("./file0" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6570] <... chdir resumed>) = 0 [pid 5030] close(3./strace-static-x86_64: Process 6575 attached [pid 6570] ioctl(4, LOOP_CLR_FD [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6575] set_robust_list(0x55555635e660, 24 [pid 6570] <... ioctl resumed>) = 0 [pid 6575] <... set_robust_list resumed>) = 0 [pid 6570] close(4 [pid 6575] chdir("./256" [pid 6570] <... close resumed>) = 0 [pid 6575] <... chdir resumed>) = 0 [pid 6570] exit_group(0 [pid 6575] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6570] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 6576 attached [pid 6575] <... prctl resumed>) = 0 [pid 6574] <... memfd_create resumed>) = 3 [pid 6570] +++ exited with 0 +++ [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6576 [pid 6576] set_robust_list(0x55555635e660, 24 [pid 6575] setpgid(0, 0 [pid 6571] <... mount resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6570, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6576] <... set_robust_list resumed>) = 0 [pid 6575] <... setpgid resumed>) = 0 [pid 6574] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6576] chdir("./255" [pid 6574] <... mmap resumed>) = 0x7ff0df171000 [pid 6571] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6575] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6575] write(3, "1000", 4) = 4 [pid 5033] umount2("./250", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6576] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6576] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6575] close(3 [pid 6576] <... prctl resumed>) = 0 [pid 6576] setpgid(0, 0 [pid 6575] <... close resumed>) = 0 [pid 6576] <... setpgid resumed>) = 0 [pid 6575] symlink("/dev/binderfs", "./binderfs" [pid 6576] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6575] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6571] <... openat resumed>) = 3 [pid 6576] <... openat resumed>) = 3 [pid 6575] memfd_create("syzkaller", 0 [pid 6571] chdir("./file0" [pid 5033] openat(AT_FDCWD, "./250", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6576] write(3, "1000", 4 [pid 6571] <... chdir resumed>) = 0 [pid 6576] <... write resumed>) = 4 [pid 6571] ioctl(4, LOOP_CLR_FD [pid 6576] close(3) = 0 [pid 6571] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6576] symlink("/dev/binderfs", "./binderfs" [pid 6571] close(4 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 6576] <... symlink resumed>) = 0 [pid 6571] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6571] exit_group(0 [pid 5033] umount2("./250/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6576] memfd_create("syzkaller", 0 [pid 5033] newfstatat(AT_FDCWD, "./250/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6576] <... memfd_create resumed>) = 3 [pid 6575] <... memfd_create resumed>) = 3 [pid 6571] <... exit_group resumed>) = ? [pid 5033] unlink("./250/binderfs" [pid 6576] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6575] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... unlink resumed>) = 0 [pid 6576] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6575] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] umount2("./247/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./247/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./247/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./247/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6574] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6571] +++ exited with 0 +++ [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./247/file0" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6571, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] rmdir("./247" [pid 5031] <... openat resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 5034] mkdir("./248", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... mkdir resumed>) = 0 [pid 5031] umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./253/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./253/binderfs" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... unlink resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6577 attached , child_tidptr=0x55555635e650) = 6577 [pid 6577] set_robust_list(0x55555635e660, 24) = 0 [pid 6576] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6577] chdir("./248") = 0 [pid 6577] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6577] setpgid(0, 0) = 0 [pid 6577] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6577] write(3, "1000", 4) = 4 [pid 6577] close(3) = 0 [pid 6577] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6577] memfd_create("syzkaller", 0 [pid 6575] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6577] <... memfd_create resumed>) = 3 [pid 6577] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6574] <... write resumed>) = 2097152 [pid 6574] munmap(0x7ff0df171000, 138412032 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6574] <... munmap resumed>) = 0 [pid 5033] umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6574] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./253/file0", [pid 5033] newfstatat(AT_FDCWD, "./250/file0", [pid 6574] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./250/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6574] ioctl(4, LOOP_SET_FD, 3 [pid 5033] getdents64(4, [pid 5031] <... openat resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(4, "", [pid 5033] close(4) = 0 [pid 5033] rmdir("./250/file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6575] <... write resumed>) = 2097152 [pid 6575] munmap(0x7ff0df171000, 138412032 [pid 6576] <... write resumed>) = 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] getdents64(4, [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] close(3) = 0 [pid 6574] <... ioctl resumed>) = 0 [pid 5033] rmdir("./250" [pid 5031] getdents64(4, [pid 6574] close(3 [pid 6575] <... munmap resumed>) = 0 [pid 6574] <... close resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6574] mkdir("./file0", 0777 [pid 5033] mkdir("./251", 0777 [pid 5031] close(4 [pid 6574] <... mkdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6574] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6575] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5031] rmdir("./253/file0" [pid 6575] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... openat resumed>) = 3 [pid 6576] munmap(0x7ff0df171000, 138412032 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] <... rmdir resumed>) = 0 [pid 6577] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] getdents64(3, [pid 5033] close(3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] close(3 [pid 6576] <... munmap resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./253"./strace-static-x86_64: Process 6578 attached [pid 6576] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6575] <... ioctl resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6578] set_robust_list(0x55555635e660, 24 [pid 6576] <... openat resumed>) = 4 [ 225.313454][ T6574] loop0: detected capacity change from 0 to 4096 [ 225.343454][ T6574] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 225.343609][ T6575] loop3: detected capacity change from 0 to 4096 [pid 5031] mkdir("./254", 0777 [pid 6578] <... set_robust_list resumed>) = 0 [pid 6576] ioctl(4, LOOP_SET_FD, 3 [pid 6575] close(3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6578 [pid 6578] chdir("./251" [pid 6575] <... close resumed>) = 0 [pid 6578] <... chdir resumed>) = 0 [pid 6575] mkdir("./file0", 0777) = 0 [pid 6578] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... mkdir resumed>) = 0 [pid 6578] <... prctl resumed>) = 0 [pid 6575] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6578] setpgid(0, 0) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6578] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... openat resumed>) = 3 [pid 6578] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6578] write(3, "1000", 4 [pid 6576] <... ioctl resumed>) = 0 [pid 6574] <... mount resumed>) = 0 [pid 6578] <... write resumed>) = 4 [pid 6576] close(3 [pid 6574] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6578] close(3 [pid 6576] <... close resumed>) = 0 [pid 6574] <... openat resumed>) = 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6579 ./strace-static-x86_64: Process 6579 attached [pid 6578] <... close resumed>) = 0 [pid 6576] mkdir("./file0", 0777 [pid 6574] chdir("./file0" [pid 6579] set_robust_list(0x55555635e660, 24 [pid 6578] symlink("/dev/binderfs", "./binderfs" [pid 6576] <... mkdir resumed>) = 0 [pid 6574] <... chdir resumed>) = 0 [pid 6579] <... set_robust_list resumed>) = 0 [pid 6578] <... symlink resumed>) = 0 [pid 6576] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6574] ioctl(4, LOOP_CLR_FD [pid 6579] chdir("./254" [pid 6578] memfd_create("syzkaller", 0 [pid 6579] <... chdir resumed>) = 0 [pid 6574] <... ioctl resumed>) = 0 [pid 6578] <... memfd_create resumed>) = 3 [pid 6574] close(4 [pid 6579] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6578] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6574] <... close resumed>) = 0 [ 225.382121][ T6576] loop1: detected capacity change from 0 to 4096 [ 225.401352][ T6575] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6579] <... prctl resumed>) = 0 [pid 6578] <... mmap resumed>) = 0x7ff0df171000 [pid 6577] <... write resumed>) = 2097152 [pid 6575] <... mount resumed>) = 0 [pid 6574] exit_group(0) = ? [pid 6574] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6574, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 6579] setpgid(0, 0 [pid 5029] umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6579] <... setpgid resumed>) = 0 [pid 6577] munmap(0x7ff0df171000, 138412032 [pid 6575] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6579] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6579] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 6579] write(3, "1000", 4 [pid 6575] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 6579] <... write resumed>) = 4 [pid 6575] chdir("./file0" [pid 6579] close(3 [pid 6577] <... munmap resumed>) = 0 [pid 6575] <... chdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6579] <... close resumed>) = 0 [pid 6577] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6575] ioctl(4, LOOP_CLR_FD [pid 5029] getdents64(3, [pid 6579] symlink("/dev/binderfs", "./binderfs" [pid 6577] <... openat resumed>) = 4 [pid 6575] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6577] ioctl(4, LOOP_SET_FD, 3 [pid 6575] close(4) = 0 [pid 5029] umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6575] exit_group(0 [pid 6579] <... symlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./256/binderfs", [pid 6575] <... exit_group resumed>) = ? [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6579] memfd_create("syzkaller", 0 [pid 6576] <... mount resumed>) = 0 [pid 6575] +++ exited with 0 +++ [pid 5029] unlink("./256/binderfs" [pid 6579] <... memfd_create resumed>) = 3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6575, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- [pid 5029] <... unlink resumed>) = 0 [pid 6576] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5032] umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6576] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6576] <... chdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6576] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6579] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6576] close(4 [pid 5032] newfstatat(3, "", [pid 6579] <... mmap resumed>) = 0x7ff0df171000 [pid 6576] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6576] exit_group(0 [pid 5032] getdents64(3, [pid 6577] <... ioctl resumed>) = 0 [pid 6576] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6577] close(3 [pid 6576] +++ exited with 0 +++ [pid 5032] umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6577] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6576, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6577] mkdir("./file0", 0777 [pid 5032] newfstatat(AT_FDCWD, "./256/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./256/binderfs" [pid 6577] <... mkdir resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6578] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 225.434640][ T6576] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 225.467793][ T6577] loop5: detected capacity change from 0 to 4096 [pid 5030] openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6577] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./255/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5030] unlink("./255/binderfs") = 0 [pid 5030] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./256/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./256/file0") = 0 [ 225.520096][ T6577] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] getdents64(3, [pid 6579] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] close(3 [pid 6578] <... write resumed>) = 2097152 [pid 5030] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6578] munmap(0x7ff0df171000, 138412032 [pid 5029] rmdir("./256" [pid 6578] <... munmap resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./257", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5030] newfstatat(AT_FDCWD, "./255/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5030] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6577] <... mount resumed>) = 0 [pid 5029] close(3 [pid 5030] openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6579] <... write resumed>) = 2097152 [pid 6578] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6577] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5029] <... close resumed>) = 0 [pid 6579] munmap(0x7ff0df171000, 138412032 [pid 6578] <... openat resumed>) = 4 [pid 6577] <... openat resumed>) = 3 [pid 5032] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(4, "", [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6578] ioctl(4, LOOP_SET_FD, 3 [pid 6577] chdir("./file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 6580 attached [pid 6579] <... munmap resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 6578] <... ioctl resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./256/file0", [pid 5030] rmdir("./255/file0" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6580 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6578] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 6578] <... close resumed>) = 0 [pid 5032] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6580] set_robust_list(0x55555635e660, 24 [pid 6578] mkdir("./file0", 0777 [pid 6577] <... chdir resumed>) = 0 [pid 6580] <... set_robust_list resumed>) = 0 [pid 6579] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6578] <... mkdir resumed>) = 0 [pid 6577] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 6580] chdir("./257" [pid 6579] <... openat resumed>) = 4 [pid 6578] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6577] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6580] <... chdir resumed>) = 0 [pid 6577] close(4 [pid 6579] ioctl(4, LOOP_SET_FD, 3 [pid 6577] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6580] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6577] exit_group(0 [pid 6580] <... prctl resumed>) = 0 [pid 6577] <... exit_group resumed>) = ? [pid 5032] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./255" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6577] +++ exited with 0 +++ [pid 5032] getdents64(4, [pid 5030] mkdir("./256", 0777 [pid 6580] setpgid(0, 0) = 0 [pid 6580] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6579] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... mkdir resumed>) = 0 [pid 6579] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6577, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5032] getdents64(4, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6580] <... openat resumed>) = 3 [pid 6579] <... close resumed>) = 0 [pid 5034] umount2("./248", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6580] write(3, "1000", 4 [pid 6579] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6580] <... write resumed>) = 4 [pid 5034] openat(AT_FDCWD, "./248", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6580] close(3) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] rmdir("./256/file0" [pid 5030] close(3 [pid 5034] newfstatat(3, "", [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 6580] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(3, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6580] <... symlink resumed>) = 0 [pid 6579] <... mkdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] close(3./strace-static-x86_64: Process 6581 attached [pid 5034] umount2("./248/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./256" [pid 6579] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./248/binderfs", [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6581 [pid 6581] set_robust_list(0x55555635e660, 24 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 225.655937][ T6578] loop4: detected capacity change from 0 to 4096 [ 225.681492][ T6579] loop2: detected capacity change from 0 to 4096 [ 225.689721][ T6578] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] mkdir("./257", 0777 [pid 6581] <... set_robust_list resumed>) = 0 [pid 5034] unlink("./248/binderfs" [pid 5032] <... mkdir resumed>) = 0 [pid 6581] chdir("./256" [pid 6580] memfd_create("syzkaller", 0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6581] <... chdir resumed>) = 0 [pid 6580] <... memfd_create resumed>) = 3 [pid 5034] umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 6581] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6581] <... prctl resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6581] setpgid(0, 0) = 0 [pid 5032] close(3 [pid 6581] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... close resumed>) = 0 [pid 6581] <... openat resumed>) = 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6581] write(3, "1000", 4) = 4 [pid 6581] close(3) = 0 [pid 6581] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6582 ./strace-static-x86_64: Process 6582 attached [pid 6582] set_robust_list(0x55555635e660, 24 [pid 6580] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6582] <... set_robust_list resumed>) = 0 [pid 6581] memfd_create("syzkaller", 0 [pid 6580] <... mmap resumed>) = 0x7ff0df171000 [pid 6582] chdir("./257") = 0 [pid 6582] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... umount2 resumed>) = 0 [pid 6582] <... prctl resumed>) = 0 [pid 6581] <... memfd_create resumed>) = 3 [pid 6582] setpgid(0, 0 [pid 6581] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6582] <... setpgid resumed>) = 0 [pid 6581] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6582] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./248/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6582] write(3, "1000", 4 [pid 5034] umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6582] <... write resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6582] close(3 [pid 5034] openat(AT_FDCWD, "./248/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 6582] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6582] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6582] <... symlink resumed>) = 0 [pid 6582] memfd_create("syzkaller", 0 [pid 5034] getdents64(4, [pid 6582] <... memfd_create resumed>) = 3 [pid 6582] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [ 225.724244][ T6579] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6582] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] close(4) = 0 [pid 5034] rmdir("./248/file0" [pid 6578] <... mount resumed>) = 0 [pid 6578] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 6578] <... openat resumed>) = 3 [pid 6578] chdir("./file0") = 0 [pid 6578] ioctl(4, LOOP_CLR_FD [pid 5034] getdents64(3, [pid 6578] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6578] close(4 [pid 5034] close(3 [pid 6578] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./248" [pid 6578] exit_group(0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./249", 0777 [pid 6578] <... exit_group resumed>) = ? [pid 6578] +++ exited with 0 +++ [pid 5034] <... mkdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6578, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./251", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./251", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 6581] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... close resumed>) = 0 [pid 5033] umount2("./251/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6580] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6583 attached [pid 5033] newfstatat(AT_FDCWD, "./251/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./251/binderfs") = 0 [pid 6583] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6583 [pid 6583] <... set_robust_list resumed>) = 0 [pid 5033] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6583] chdir("./249") = 0 [pid 6583] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... umount2 resumed>) = 0 [pid 6583] <... prctl resumed>) = 0 [pid 5033] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6583] setpgid(0, 0 [pid 5033] newfstatat(AT_FDCWD, "./251/file0", [pid 6583] <... setpgid resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6583] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./251/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6583] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 4 [pid 6583] write(3, "1000", 4 [pid 6582] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] newfstatat(4, "", [pid 6583] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6583] close(3 [pid 5033] getdents64(4, [pid 6583] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6583] symlink("/dev/binderfs", "./binderfs" [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 6583] <... symlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./251/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./251") = 0 [pid 5033] mkdir("./252", 0777 [pid 6579] <... mount resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6583] memfd_create("syzkaller", 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = 0 [pid 6579] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] close(3 [pid 6579] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6583] <... memfd_create resumed>) = 3 [pid 6580] <... write resumed>) = 2097152 [pid 6579] chdir("./file0" [pid 6583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6579] <... chdir resumed>) = 0 [pid 6583] <... mmap resumed>) = 0x7ff0df171000 [pid 6580] munmap(0x7ff0df171000, 138412032 [pid 6579] ioctl(4, LOOP_CLR_FD [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6584 [pid 6579] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 6584 attached [pid 6579] close(4) = 0 [pid 6579] exit_group(0 [pid 6581] <... write resumed>) = 2097152 [pid 6581] munmap(0x7ff0df171000, 138412032 [pid 6579] <... exit_group resumed>) = ? [pid 6579] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6579, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 6584] set_robust_list(0x55555635e660, 24) = 0 [pid 6584] chdir("./252") = 0 [pid 6584] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6580] <... munmap resumed>) = 0 [pid 5031] umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6584] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6584] setpgid(0, 0 [pid 6580] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6584] <... setpgid resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6584] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6582] <... write resumed>) = 2097152 [pid 6581] <... munmap resumed>) = 0 [pid 6584] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 6584] write(3, "1000", 4) = 4 [pid 6584] close(3) = 0 [pid 6584] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6580] <... openat resumed>) = 4 [pid 5031] getdents64(3, [pid 6580] ioctl(4, LOOP_SET_FD, 3 [pid 6584] <... symlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6584] memfd_create("syzkaller", 0 [pid 6580] <... ioctl resumed>) = 0 [pid 5031] umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6580] close(3 [pid 5031] newfstatat(AT_FDCWD, "./254/binderfs", [pid 6584] <... memfd_create resumed>) = 3 [pid 6581] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6580] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6580] mkdir("./file0", 0777 [pid 5031] unlink("./254/binderfs" [pid 6584] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6581] <... openat resumed>) = 4 [pid 6584] <... mmap resumed>) = 0x7ff0df171000 [pid 6581] ioctl(4, LOOP_SET_FD, 3 [pid 6580] <... mkdir resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6580] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6582] munmap(0x7ff0df171000, 138412032) = 0 [pid 6581] <... ioctl resumed>) = 0 [pid 6581] close(3) = 0 [pid 6581] mkdir("./file0", 0777) = 0 [pid 6582] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 225.966072][ T6580] loop0: detected capacity change from 0 to 4096 [ 225.976843][ T6581] loop1: detected capacity change from 0 to 4096 [ 225.994949][ T6580] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 226.009378][ T6582] loop3: detected capacity change from 0 to 4096 [pid 6582] ioctl(4, LOOP_SET_FD, 3 [pid 6581] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6583] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6582] <... ioctl resumed>) = 0 [pid 6582] close(3) = 0 [pid 6582] mkdir("./file0", 0777) = 0 [pid 6582] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./254/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 226.020954][ T6581] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 226.047106][ T6582] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(4, [pid 6583] <... write resumed>) = 2097152 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6583] munmap(0x7ff0df171000, 138412032 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./254/file0" [pid 6584] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./254") = 0 [pid 5031] mkdir("./255", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6581] <... mount resumed>) = 0 [pid 6581] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6582] <... mount resumed>) = 0 [pid 6581] chdir("./file0" [pid 6580] <... mount resumed>) = 0 [pid 6583] <... munmap resumed>) = 0 [pid 6581] <... chdir resumed>) = 0 [pid 6580] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6581] ioctl(4, LOOP_CLR_FD [pid 6580] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 6581] <... ioctl resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6582] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6581] close(4 [pid 6580] chdir("./file0" [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6582] <... openat resumed>) = 3 [pid 6580] <... chdir resumed>) = 0 [pid 5031] close(3 [pid 6582] chdir("./file0" [pid 5031] <... close resumed>) = 0 [pid 6582] <... chdir resumed>) = 0 [pid 6582] ioctl(4, LOOP_CLR_FD [pid 6583] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6582] <... ioctl resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6580] ioctl(4, LOOP_CLR_FD [pid 6582] close(4) = 0 [pid 6582] exit_group(0) = ? [pid 6583] <... openat resumed>) = 4 [pid 6582] +++ exited with 0 +++ [pid 6581] <... close resumed>) = 0 [pid 6580] <... ioctl resumed>) = 0 [pid 6580] close(4 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6582, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5032] umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6583] ioctl(4, LOOP_SET_FD, 3 [pid 6581] exit_group(0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6585 [pid 6580] <... close resumed>) = 0 ./strace-static-x86_64: Process 6585 attached [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", [pid 6585] set_robust_list(0x55555635e660, 24 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6585] <... set_robust_list resumed>) = 0 [pid 5032] getdents64(3, [pid 6585] chdir("./255" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./257/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6581] <... exit_group resumed>) = ? [pid 5032] unlink("./257/binderfs" [pid 6580] exit_group(0 [pid 6584] <... write resumed>) = 2097152 [pid 5032] <... unlink resumed>) = 0 [pid 6584] munmap(0x7ff0df171000, 138412032 [pid 5032] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6581] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6581, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 6585] <... chdir resumed>) = 0 [pid 6585] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6580] <... exit_group resumed>) = ? [pid 6585] <... prctl resumed>) = 0 [pid 6585] setpgid(0, 0 [pid 5030] umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", [pid 6580] +++ exited with 0 +++ [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6584] <... munmap resumed>) = 0 [pid 6583] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6580, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 6585] <... setpgid resumed>) = 0 [pid 6583] close(3 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6585] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6584] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... restart_syscall resumed>) = 0 [pid 6585] <... openat resumed>) = 3 [pid 6584] <... openat resumed>) = 4 [pid 6583] <... close resumed>) = 0 [pid 5032] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./256/binderfs", [pid 6583] mkdir("./file0", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6585] write(3, "1000", 4 [pid 6584] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./256/binderfs" [pid 5029] umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6583] <... mkdir resumed>) = 0 [pid 6585] <... write resumed>) = 4 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6585] close(3 [pid 5030] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6585] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6585] symlink("/dev/binderfs", "./binderfs" [pid 5029] newfstatat(3, "", [pid 6585] <... symlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6585] memfd_create("syzkaller", 0 [pid 6583] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./257/file0", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 226.150045][ T6583] loop5: detected capacity change from 0 to 4096 [ 226.181958][ T6584] loop4: detected capacity change from 0 to 4096 [pid 5029] umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6585] <... memfd_create resumed>) = 3 [pid 5032] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./257/binderfs", [pid 5032] openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5029] unlink("./257/binderfs" [pid 5032] newfstatat(4, "", [pid 5029] <... unlink resumed>) = 0 [pid 6585] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6585] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./257/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./257") = 0 [pid 6584] <... ioctl resumed>) = 0 [pid 6584] close(3) = 0 [pid 5032] mkdir("./258", 0777 [pid 6584] mkdir("./file0", 0777 [pid 5032] <... mkdir resumed>) = 0 [pid 6584] <... mkdir resumed>) = 0 [pid 6584] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6586 ./strace-static-x86_64: Process 6586 attached [pid 6586] set_robust_list(0x55555635e660, 24) = 0 [pid 6586] chdir("./258") = 0 [pid 6586] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6586] setpgid(0, 0) = 0 [pid 6586] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6586] write(3, "1000", 4) = 4 [pid 6586] close(3) = 0 [pid 6586] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6586] memfd_create("syzkaller", 0) = 3 [pid 6586] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 226.196424][ T6583] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 226.217197][ T6584] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6585] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6583] <... mount resumed>) = 0 [pid 6583] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6583] chdir("./file0") = 0 [pid 6583] ioctl(4, LOOP_CLR_FD) = 0 [pid 6583] close(4) = 0 [pid 6583] exit_group(0) = ? [pid 6583] +++ exited with 0 +++ [pid 5029] <... umount2 resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6583, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./249", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./257/file0", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./249", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5029] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6584] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6584] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] getdents64(3, [pid 6584] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... openat resumed>) = 4 [pid 6584] chdir("./file0" [pid 5034] umount2("./249/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(4, "", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./249/binderfs", [pid 5030] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6584] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6586] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6584] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5034] unlink("./249/binderfs" [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 6584] <... ioctl resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./256/file0", [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6584] close(4) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] close(4 [pid 6584] exit_group(0) = ? [pid 5030] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6585] <... write resumed>) = 2097152 [pid 5034] umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./257/file0" [pid 6584] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6584, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5030] openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(3, [pid 5030] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./252", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(4, "", [pid 5033] openat(AT_FDCWD, "./252", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(3, "", [pid 5029] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5029] rmdir("./257" [pid 5033] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6585] munmap(0x7ff0df171000, 138412032 [pid 5033] umount2("./252/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./258", 0777 [pid 6585] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] newfstatat(AT_FDCWD, "./252/binderfs", [pid 5030] close(4 [pid 5029] <... mkdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] unlink("./252/binderfs") = 0 [pid 5030] rmdir("./256/file0" [pid 5029] <... openat resumed>) = 3 [pid 5033] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(3, [pid 6586] <... write resumed>) = 2097152 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 6586] munmap(0x7ff0df171000, 138412032 [pid 5029] close(3 [pid 6585] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 6585] <... openat resumed>) = 4 [pid 5030] rmdir("./256" [pid 5029] <... close resumed>) = 0 [pid 6585] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... rmdir resumed>) = 0 [pid 6586] <... munmap resumed>) = 0 [pid 5030] mkdir("./257", 0777 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6587 attached [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6587] set_robust_list(0x55555635e660, 24 [pid 6586] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... openat resumed>) = 3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6587 [pid 6587] <... set_robust_list resumed>) = 0 [pid 6587] chdir("./258" [pid 6586] <... openat resumed>) = 4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6587] <... chdir resumed>) = 0 [pid 6586] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 6587] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6585] <... ioctl resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6588 ./strace-static-x86_64: Process 6588 attached [pid 6588] set_robust_list(0x55555635e660, 24) = 0 [pid 6585] close(3 [pid 6588] chdir("./257") = 0 [pid 6588] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6588] setpgid(0, 0) = 0 [pid 6588] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6587] <... prctl resumed>) = 0 [pid 6585] <... close resumed>) = 0 [pid 6588] write(3, "1000", 4) = 4 [pid 6588] close(3) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6588] symlink("/dev/binderfs", "./binderfs" [pid 5034] umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6588] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6585] mkdir("./file0", 0777 [pid 5034] newfstatat(AT_FDCWD, "./249/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./249/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6588] memfd_create("syzkaller", 0 [pid 6585] <... mkdir resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 6588] <... memfd_create resumed>) = 3 [pid 6587] setpgid(0, 0 [pid 6585] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 226.387056][ T6585] loop2: detected capacity change from 0 to 4096 [ 226.409419][ T6586] loop3: detected capacity change from 0 to 4096 [pid 6588] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6587] <... setpgid resumed>) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 6588] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6587] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./249/file0" [pid 6587] <... openat resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6587] write(3, "1000", 4 [pid 6586] <... ioctl resumed>) = 0 [pid 5034] getdents64(3, [pid 6586] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6586] <... close resumed>) = 0 [pid 5034] close(3 [pid 6586] mkdir("./file0", 0777 [pid 5034] <... close resumed>) = 0 [pid 6586] <... mkdir resumed>) = 0 [pid 5034] rmdir("./249" [pid 6587] <... write resumed>) = 4 [pid 6586] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [pid 6587] close(3) = 0 [pid 6587] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... umount2 resumed>) = 0 [pid 5034] mkdir("./250", 0777 [pid 6587] <... symlink resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6587] memfd_create("syzkaller", 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./252/file0", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6587] <... memfd_create resumed>) = 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6587] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5033] openat(AT_FDCWD, "./252/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] newfstatat(4, "", [pid 6587] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6589 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6589 attached [pid 5033] close(4 [pid 6589] set_robust_list(0x55555635e660, 24 [pid 5033] <... close resumed>) = 0 [pid 6589] <... set_robust_list resumed>) = 0 [pid 6589] chdir("./250" [pid 5033] rmdir("./252/file0" [pid 6589] <... chdir resumed>) = 0 [pid 6589] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6589] setpgid(0, 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6589] <... setpgid resumed>) = 0 [ 226.446804][ T6585] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 226.485333][ T6586] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6589] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] getdents64(3, [pid 6589] <... openat resumed>) = 3 [pid 6589] write(3, "1000", 4) = 4 [pid 6589] close(3) = 0 [pid 6589] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 6589] <... symlink resumed>) = 0 [pid 5033] rmdir("./252" [pid 6585] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6589] memfd_create("syzkaller", 0 [pid 6585] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] mkdir("./253", 0777 [pid 6585] <... openat resumed>) = 3 [pid 6585] chdir("./file0" [pid 5033] <... mkdir resumed>) = 0 [pid 6585] <... chdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6585] ioctl(4, LOOP_CLR_FD [pid 5033] <... openat resumed>) = 3 [pid 6585] <... ioctl resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6585] close(4 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6585] <... close resumed>) = 0 [pid 6585] exit_group(0 [pid 6589] <... memfd_create resumed>) = 3 [pid 6588] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6585] <... exit_group resumed>) = ? [pid 5033] close(3 [pid 6589] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6585] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6585, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", ./strace-static-x86_64: Process 6590 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6590] set_robust_list(0x55555635e660, 24 [pid 5031] getdents64(3, [pid 6590] <... set_robust_list resumed>) = 0 [pid 6590] chdir("./253" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6590] <... chdir resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6590 [pid 6590] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6590] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6590] setpgid(0, 0 [pid 5031] newfstatat(AT_FDCWD, "./255/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6590] <... setpgid resumed>) = 0 [pid 5031] unlink("./255/binderfs") = 0 [pid 6587] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6590] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6590] write(3, "1000", 4) = 4 [pid 6590] close(3 [pid 6586] <... mount resumed>) = 0 [pid 6590] <... close resumed>) = 0 [pid 6586] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6590] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6586] <... openat resumed>) = 3 [pid 6586] chdir("./file0" [pid 6590] memfd_create("syzkaller", 0 [pid 6586] <... chdir resumed>) = 0 [pid 6586] ioctl(4, LOOP_CLR_FD) = 0 [pid 6586] close(4) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6590] <... memfd_create resumed>) = 3 [pid 6590] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6586] exit_group(0 [pid 5031] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6590] <... mmap resumed>) = 0x7ff0df171000 [pid 6586] <... exit_group resumed>) = ? [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./255/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6586] +++ exited with 0 +++ [pid 5031] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6586, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5032] umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 5032] openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5031] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] rmdir("./255/file0" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6588] <... write resumed>) = 2097152 [pid 5032] newfstatat(AT_FDCWD, "./258/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] close(3 [pid 5032] unlink("./258/binderfs" [pid 5031] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] rmdir("./255") = 0 [pid 5032] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./256", 0777) = 0 [pid 6588] munmap(0x7ff0df171000, 138412032 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3 [pid 6589] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... close resumed>) = 0 [pid 6588] <... munmap resumed>) = 0 [pid 6587] <... write resumed>) = 2097152 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6591 attached [pid 6590] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6587] munmap(0x7ff0df171000, 138412032 [pid 6588] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6591] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6591 [pid 6591] <... set_robust_list resumed>) = 0 [pid 6588] <... openat resumed>) = 4 [pid 6588] ioctl(4, LOOP_SET_FD, 3 [pid 6591] chdir("./256") = 0 [pid 6587] <... munmap resumed>) = 0 [pid 6591] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6587] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6591] setpgid(0, 0) = 0 [pid 6587] <... openat resumed>) = 4 [pid 6591] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6587] ioctl(4, LOOP_SET_FD, 3 [pid 6591] <... openat resumed>) = 3 [pid 6588] <... ioctl resumed>) = 0 [pid 6588] close(3 [pid 6591] write(3, "1000", 4 [pid 6588] <... close resumed>) = 0 [pid 6587] <... ioctl resumed>) = 0 [pid 6591] <... write resumed>) = 4 [pid 6588] mkdir("./file0", 0777 [pid 6587] close(3 [pid 6589] <... write resumed>) = 2097152 [pid 6587] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6591] close(3 [pid 6587] mkdir("./file0", 0777 [pid 6591] <... close resumed>) = 0 [pid 6591] symlink("/dev/binderfs", "./binderfs" [pid 6588] <... mkdir resumed>) = 0 [pid 6587] <... mkdir resumed>) = 0 [pid 6588] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6591] <... symlink resumed>) = 0 [pid 6587] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 226.741724][ T6588] loop1: detected capacity change from 0 to 4096 [ 226.756119][ T6587] loop0: detected capacity change from 0 to 4096 [pid 6589] munmap(0x7ff0df171000, 138412032 [pid 6591] memfd_create("syzkaller", 0 [pid 6589] <... munmap resumed>) = 0 [pid 5032] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6590] <... write resumed>) = 2097152 [pid 6589] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6591] <... memfd_create resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./258/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6591] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6590] munmap(0x7ff0df171000, 138412032 [pid 6589] <... openat resumed>) = 4 [pid 5032] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6589] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 6589] <... ioctl resumed>) = 0 [pid 6591] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./258/file0" [pid 6590] <... munmap resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./258") = 0 [pid 5032] mkdir("./259", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6590] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6590] <... openat resumed>) = 4 [ 226.788244][ T6588] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 226.792386][ T6587] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 226.813420][ T6589] loop5: detected capacity change from 0 to 4096 [pid 6590] ioctl(4, LOOP_SET_FD, 3 [pid 5032] close(3 [pid 6589] close(3 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6589] <... close resumed>) = 0 [pid 6590] <... ioctl resumed>) = 0 [pid 6589] mkdir("./file0", 0777 [pid 6590] close(3 [pid 6589] <... mkdir resumed>) = 0 [pid 6590] <... close resumed>) = 0 [pid 6589] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6590] mkdir("./file0", 0777 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6592 ./strace-static-x86_64: Process 6592 attached [pid 6592] set_robust_list(0x55555635e660, 24) = 0 [pid 6592] chdir("./259") = 0 [pid 6590] <... mkdir resumed>) = 0 [pid 6592] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6590] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6592] <... prctl resumed>) = 0 [pid 6592] setpgid(0, 0) = 0 [pid 6592] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6592] write(3, "1000", 4) = 4 [pid 6592] close(3) = 0 [pid 6592] symlink("/dev/binderfs", "./binderfs" [pid 6587] <... mount resumed>) = 0 [pid 6592] <... symlink resumed>) = 0 [pid 6587] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6587] chdir("./file0") = 0 [pid 6587] ioctl(4, LOOP_CLR_FD) = 0 [pid 6592] memfd_create("syzkaller", 0 [pid 6587] close(4) = 0 [pid 6587] exit_group(0) = ? [pid 6592] <... memfd_create resumed>) = 3 [pid 6588] <... mount resumed>) = 0 [pid 6592] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6587] +++ exited with 0 +++ [pid 6592] <... mmap resumed>) = 0x7ff0df171000 [ 226.850572][ T6590] loop4: detected capacity change from 0 to 4096 [ 226.871086][ T6589] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 226.886049][ T6590] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6587, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6588] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6589] <... mount resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6589] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6591] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6590] <... mount resumed>) = 0 [pid 6589] <... openat resumed>) = 3 [pid 6588] <... openat resumed>) = 3 [pid 6589] chdir("./file0" [pid 5029] umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6589] <... chdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6589] ioctl(4, LOOP_CLR_FD [pid 5029] openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6589] <... ioctl resumed>) = 0 [pid 6588] chdir("./file0" [pid 5029] <... openat resumed>) = 3 [pid 6590] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6589] close(4 [pid 5029] newfstatat(3, "", [pid 6589] <... close resumed>) = 0 [pid 6590] <... openat resumed>) = 3 [pid 6589] exit_group(0 [pid 6588] <... chdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6590] chdir("./file0" [pid 6589] <... exit_group resumed>) = ? [pid 6588] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] getdents64(3, [pid 6588] close(4) = 0 [pid 6588] exit_group(0 [pid 6589] +++ exited with 0 +++ [pid 6588] <... exit_group resumed>) = ? [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6588] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6589, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6590] <... chdir resumed>) = 0 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6588, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] <... restart_syscall resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./258/binderfs", [pid 6590] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6590] <... ioctl resumed>) = 0 [pid 5034] umount2("./250", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./258/binderfs" [pid 6590] close(4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6590] <... close resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6590] exit_group(0 [pid 5029] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6590] <... exit_group resumed>) = ? [pid 5034] openat(AT_FDCWD, "./250", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 5030] newfstatat(3, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6590] +++ exited with 0 +++ [pid 5034] getdents64(3, [pid 5030] getdents64(3, [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6590, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./250/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./250/binderfs", [pid 5033] umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./257/binderfs", [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./250/binderfs" [pid 5033] openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] unlink("./257/binderfs" [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5034] umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(3, "", [pid 5030] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./253/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./253/binderfs") = 0 [pid 5033] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 6592] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6591] <... write resumed>) = 2097152 [pid 6591] munmap(0x7ff0df171000, 138412032 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./258/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6591] <... munmap resumed>) = 0 [pid 6591] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6591] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6591] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 4 [pid 6591] <... ioctl resumed>) = 0 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6591] close(3) = 0 [pid 5029] getdents64(4, [pid 6591] mkdir("./file0", 0777) = 0 [pid 6591] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6592] <... write resumed>) = 2097152 [pid 5029] close(4) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6592] munmap(0x7ff0df171000, 138412032 [pid 5029] rmdir("./258/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5030] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./258" [pid 5030] newfstatat(AT_FDCWD, "./257/file0", [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] mkdir("./259", 0777 [pid 5030] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6592] <... munmap resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6592] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] newfstatat(4, "", [pid 5029] <... ioctl resumed>) = 0 [pid 6592] <... openat resumed>) = 4 [ 227.012182][ T6591] loop2: detected capacity change from 0 to 4096 [ 227.044105][ T6591] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 6592] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6592] <... ioctl resumed>) = 0 [pid 6592] close(3 [pid 5033] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6592] <... close resumed>) = 0 [pid 6592] mkdir("./file0", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6592] <... mkdir resumed>) = 0 [pid 5034] umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./253/file0", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6592] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./250/file0", [pid 5033] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./250/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... openat resumed>) = 4 [pid 5034] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(4, "", [pid 5033] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5034] getdents64(4, [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5030] rmdir("./257/file0" [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... close resumed>) = 0 [pid 5034] getdents64(4, [pid 5033] rmdir("./253/file0"./strace-static-x86_64: Process 6593 attached [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6593] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] getdents64(3, [pid 6593] chdir("./259" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6593] <... chdir resumed>) = 0 [pid 5030] close(3 [pid 5034] close(4 [pid 5033] getdents64(3, [pid 6593] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... close resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6593 [pid 6593] <... prctl resumed>) = 0 [pid 5030] rmdir("./257" [pid 6593] setpgid(0, 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6593] <... setpgid resumed>) = 0 [pid 5034] rmdir("./250/file0" [pid 5033] close(3 [pid 5030] mkdir("./258", 0777 [pid 6593] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6593] <... openat resumed>) = 3 [pid 5030] <... mkdir resumed>) = 0 [pid 6593] write(3, "1000", 4) = 4 [pid 6593] close(3) = 0 [pid 6593] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] getdents64(3, [pid 5033] rmdir("./253" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6593] memfd_create("syzkaller", 0 [pid 6591] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 5033] mkdir("./254", 0777 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] rmdir("./250" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [ 227.084765][ T6592] loop3: detected capacity change from 0 to 4096 [ 227.100791][ T6592] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6591] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 5030] close(3 [pid 6591] <... openat resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6591] chdir("./file0" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6591] <... chdir resumed>) = 0 [pid 5034] mkdir("./251", 0777 [pid 5033] <... openat resumed>) = 3 [pid 6593] <... memfd_create resumed>) = 3 [pid 6591] ioctl(4, LOOP_CLR_FD [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6594 ./strace-static-x86_64: Process 6594 attached [pid 6593] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6591] <... ioctl resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6594] set_robust_list(0x55555635e660, 24 [pid 6593] <... mmap resumed>) = 0x7ff0df171000 [pid 6591] close(4 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6594] <... set_robust_list resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... close resumed>) = 0 [pid 6594] chdir("./258" [pid 6591] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6594] <... chdir resumed>) = 0 [pid 6592] <... mount resumed>) = 0 [pid 6591] exit_group(0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6594] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6591] <... exit_group resumed>) = ? [pid 5034] close(3 [pid 6594] <... prctl resumed>) = 0 [pid 6592] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6591] +++ exited with 0 +++ ./strace-static-x86_64: Process 6595 attached [pid 6594] setpgid(0, 0 [pid 5034] <... close resumed>) = 0 [pid 6594] <... setpgid resumed>) = 0 [pid 6592] <... openat resumed>) = 3 [pid 6595] set_robust_list(0x55555635e660, 24 [pid 6594] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6592] chdir("./file0" [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6595 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6591, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6595] <... set_robust_list resumed>) = 0 [pid 6594] <... openat resumed>) = 3 [pid 6592] <... chdir resumed>) = 0 [pid 6595] chdir("./254" [pid 6594] write(3, "1000", 4) = 4 [pid 6595] <... chdir resumed>) = 0 [pid 6594] close(3./strace-static-x86_64: Process 6596 attached [pid 6595] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6594] <... close resumed>) = 0 [pid 6592] ioctl(4, LOOP_CLR_FD [pid 6594] symlink("/dev/binderfs", "./binderfs" [pid 6595] <... prctl resumed>) = 0 [pid 6594] <... symlink resumed>) = 0 [pid 6592] <... ioctl resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6596 [pid 6596] set_robust_list(0x55555635e660, 24 [pid 6595] setpgid(0, 0 [pid 6594] memfd_create("syzkaller", 0 [pid 6592] close(4 [pid 5031] umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6596] <... set_robust_list resumed>) = 0 [pid 6595] <... setpgid resumed>) = 0 [pid 6592] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6596] chdir("./251" [pid 6595] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6594] <... memfd_create resumed>) = 3 [pid 6592] exit_group(0 [pid 6594] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6595] <... openat resumed>) = 3 [pid 6594] <... mmap resumed>) = 0x7ff0df171000 [pid 6592] <... exit_group resumed>) = ? [pid 6596] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6595] write(3, "1000", 4) = 4 [pid 6595] close(3 [pid 6596] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6595] <... close resumed>) = 0 [pid 6592] +++ exited with 0 +++ [pid 5031] newfstatat(3, "", [pid 6595] symlink("/dev/binderfs", "./binderfs" [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6592, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6595] <... symlink resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./256/binderfs", [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6596] <... prctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] unlink("./256/binderfs" [pid 6596] setpgid(0, 0 [pid 6595] memfd_create("syzkaller", 0 [pid 5032] getdents64(3, [pid 6595] <... memfd_create resumed>) = 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... unlink resumed>) = 0 [pid 5032] umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6596] <... setpgid resumed>) = 0 [pid 6595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] newfstatat(AT_FDCWD, "./259/binderfs", [pid 6596] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6595] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6596] <... openat resumed>) = 3 [pid 5032] unlink("./259/binderfs") = 0 [pid 6596] write(3, "1000", 4 [pid 5032] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6596] <... write resumed>) = 4 [pid 6596] close(3) = 0 [pid 6596] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6594] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6596] memfd_create("syzkaller", 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./256/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6596] <... memfd_create resumed>) = 3 [pid 6593] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] getdents64(4, [pid 6596] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] rmdir("./256/file0" [pid 5032] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./259/file0", [pid 5031] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./256" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] mkdir("./257", 0777 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5032] close(4 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3 [pid 5032] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] rmdir("./259/file0" [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 ./strace-static-x86_64: Process 6597 attached [pid 5032] rmdir("./259" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6597 [pid 6597] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6597] chdir("./257" [pid 5032] mkdir("./260", 0777 [pid 6597] <... chdir resumed>) = 0 [pid 6597] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 6597] setpgid(0, 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6597] <... setpgid resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = 0 [pid 6597] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] close(3 [pid 6597] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6595] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152./strace-static-x86_64: Process 6598 attached [pid 6597] write(3, "1000", 4 [pid 6598] set_robust_list(0x55555635e660, 24 [pid 6597] <... write resumed>) = 4 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6598 [pid 6597] close(3) = 0 [pid 6597] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6598] <... set_robust_list resumed>) = 0 [pid 6598] chdir("./260") = 0 [pid 6597] memfd_create("syzkaller", 0 [pid 6598] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6598] setpgid(0, 0) = 0 [pid 6598] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6597] <... memfd_create resumed>) = 3 [pid 6598] write(3, "1000", 4 [pid 6596] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6593] <... write resumed>) = 2097152 [pid 6598] <... write resumed>) = 4 [pid 6598] close(3) = 0 [pid 6598] symlink("/dev/binderfs", "./binderfs" [pid 6593] munmap(0x7ff0df171000, 138412032 [pid 6598] <... symlink resumed>) = 0 [pid 6597] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6593] <... munmap resumed>) = 0 [pid 6597] <... mmap resumed>) = 0x7ff0df171000 [pid 6598] memfd_create("syzkaller", 0) = 3 [pid 6598] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6593] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6598] <... mmap resumed>) = 0x7ff0df171000 [pid 6593] <... openat resumed>) = 4 [pid 6593] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6594] <... write resumed>) = 2097152 [pid 6594] munmap(0x7ff0df171000, 138412032) = 0 [pid 6594] openat(AT_FDCWD, "/dev/loop1", O_RDWR [ 227.425138][ T6593] loop0: detected capacity change from 0 to 4096 [pid 6593] close(3 [pid 6594] <... openat resumed>) = 4 [pid 6593] <... close resumed>) = 0 [pid 6594] ioctl(4, LOOP_SET_FD, 3 [pid 6593] mkdir("./file0", 0777 [pid 6596] <... write resumed>) = 2097152 [pid 6595] <... write resumed>) = 2097152 [pid 6593] <... mkdir resumed>) = 0 [pid 6596] munmap(0x7ff0df171000, 138412032 [pid 6595] munmap(0x7ff0df171000, 138412032) = 0 [pid 6593] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6598] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6596] <... munmap resumed>) = 0 [pid 6595] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6594] <... ioctl resumed>) = 0 [pid 6595] <... openat resumed>) = 4 [pid 6595] ioctl(4, LOOP_SET_FD, 3 [pid 6597] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6596] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6594] close(3 [pid 6596] <... openat resumed>) = 4 [pid 6594] <... close resumed>) = 0 [pid 6596] ioctl(4, LOOP_SET_FD, 3 [pid 6595] <... ioctl resumed>) = 0 [ 227.466875][ T6594] loop1: detected capacity change from 0 to 4096 [ 227.492232][ T6593] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 227.506399][ T6595] loop4: detected capacity change from 0 to 4096 [pid 6594] mkdir("./file0", 0777) = 0 [pid 6595] close(3) = 0 [pid 6595] mkdir("./file0", 0777) = 0 [pid 6594] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6595] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6596] <... ioctl resumed>) = 0 [pid 6593] <... mount resumed>) = 0 [pid 6593] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6596] close(3 [pid 6593] <... openat resumed>) = 3 [pid 6593] chdir("./file0") = 0 [pid 6593] ioctl(4, LOOP_CLR_FD [pid 6598] <... write resumed>) = 2097152 [pid 6596] <... close resumed>) = 0 [pid 6593] <... ioctl resumed>) = 0 [pid 6596] mkdir("./file0", 0777 [pid 6593] close(4 [pid 6596] <... mkdir resumed>) = 0 [pid 6593] <... close resumed>) = 0 [pid 6596] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6593] exit_group(0) = ? [ 227.518226][ T6596] loop5: detected capacity change from 0 to 4096 [ 227.536592][ T6594] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 227.545743][ T6595] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6593] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6593, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6598] munmap(0x7ff0df171000, 138412032 [pid 6597] <... write resumed>) = 2097152 [pid 5029] newfstatat(AT_FDCWD, "./259/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./259/binderfs") = 0 [pid 5029] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6595] <... mount resumed>) = 0 [pid 6597] munmap(0x7ff0df171000, 138412032 [pid 6598] <... munmap resumed>) = 0 [pid 6595] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6598] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6595] chdir("./file0" [pid 6598] <... openat resumed>) = 4 [pid 6595] <... chdir resumed>) = 0 [pid 6594] <... mount resumed>) = 0 [ 227.571483][ T6596] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6598] ioctl(4, LOOP_SET_FD, 3 [pid 6595] ioctl(4, LOOP_CLR_FD) = 0 [pid 6594] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... umount2 resumed>) = 0 [pid 6597] <... munmap resumed>) = 0 [pid 6594] <... openat resumed>) = 3 [pid 6594] chdir("./file0" [pid 5029] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6594] <... chdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6594] ioctl(4, LOOP_CLR_FD [pid 5029] newfstatat(AT_FDCWD, "./259/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6595] close(4) = 0 [pid 6594] <... ioctl resumed>) = 0 [pid 5029] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6597] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6595] exit_group(0 [pid 6594] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6597] <... openat resumed>) = 4 [pid 6595] <... exit_group resumed>) = ? [pid 6594] <... close resumed>) = 0 [pid 6597] ioctl(4, LOOP_SET_FD, 3 [pid 6594] exit_group(0 [pid 5029] openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6594] <... exit_group resumed>) = ? [pid 6595] +++ exited with 0 +++ [pid 6594] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6595, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 5033] umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6594, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(3, [pid 5030] openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(4, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./254/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 5029] close(4 [pid 6598] <... ioctl resumed>) = 0 [pid 5033] unlink("./254/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... close resumed>) = 0 [pid 6598] close(3 [pid 5030] getdents64(3, [pid 5029] rmdir("./259/file0" [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... rmdir resumed>) = 0 [pid 5033] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6598] <... close resumed>) = 0 [pid 5030] umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 6598] mkdir("./file0", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(AT_FDCWD, "./258/binderfs", [pid 5029] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5030] unlink("./258/binderfs" [pid 5029] rmdir("./259") = 0 [pid 6598] <... mkdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] mkdir("./260", 0777 [pid 6598] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6597] <... ioctl resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6597] close(3) = 0 [pid 6597] mkdir("./file0", 0777 [pid 6596] <... mount resumed>) = 0 [ 227.618280][ T6598] loop3: detected capacity change from 0 to 4096 [ 227.631432][ T6597] loop2: detected capacity change from 0 to 4096 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 6597] <... mkdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6597] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6596] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6599 attached ) = 3 [pid 6596] chdir("./file0" [pid 6599] set_robust_list(0x55555635e660, 24) = 0 [pid 6599] chdir("./260") = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6599 [pid 6599] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6599] setpgid(0, 0) = 0 [pid 6599] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6596] <... chdir resumed>) = 0 [pid 6596] ioctl(4, LOOP_CLR_FD [pid 6599] write(3, "1000", 4 [pid 6596] <... ioctl resumed>) = 0 [pid 6599] <... write resumed>) = 4 [pid 6596] close(4 [pid 6599] close(3 [pid 6596] <... close resumed>) = 0 [pid 6599] <... close resumed>) = 0 [pid 6599] symlink("/dev/binderfs", "./binderfs" [pid 6596] exit_group(0 [pid 6599] <... symlink resumed>) = 0 [pid 6596] <... exit_group resumed>) = ? [pid 6599] memfd_create("syzkaller", 0 [pid 6596] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6596, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5034] umount2("./251", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./251", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6599] <... memfd_create resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 6599] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6599] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./251/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./251/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./251/binderfs") = 0 [ 227.666095][ T6598] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 227.676574][ T6597] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 6598] <... mount resumed>) = 0 [pid 5033] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6598] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6598] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./254/file0", [pid 6598] chdir("./file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6598] <... chdir resumed>) = 0 [pid 5033] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6598] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6598] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 6598] close(4) = 0 [pid 5033] <... openat resumed>) = 4 [pid 6598] exit_group(0 [pid 5033] newfstatat(4, "", [pid 5030] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6598] <... exit_group resumed>) = ? [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./258/file0", [pid 5033] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5030] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./254/file0" [pid 5030] openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, [pid 5030] newfstatat(4, "", [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6598] +++ exited with 0 +++ [pid 5033] close(3 [pid 5030] getdents64(4, [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6598, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] getdents64(4, [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./258/file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./254" [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(AT_FDCWD, "./251/file0", [pid 5033] mkdir("./255", 0777 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./260/binderfs", [pid 5034] umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] unlink("./260/binderfs" [pid 5034] openat(AT_FDCWD, "./251/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... openat resumed>) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./258" [pid 6597] <... mount resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6597] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 6597] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] getdents64(4, [pid 6597] chdir("./file0" [pid 5030] mkdir("./259", 0777./strace-static-x86_64: Process 6600 attached [pid 6599] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6597] <... chdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... mkdir resumed>) = 0 [pid 6597] ioctl(4, LOOP_CLR_FD [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6597] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6597] close(4) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6597] exit_group(0) = ? [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6600] set_robust_list(0x55555635e660, 24 [pid 6597] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6600 [pid 5030] close(3 [pid 6600] <... set_robust_list resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] close(4 [pid 6600] chdir("./255" [pid 5034] <... close resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6597, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] rmdir("./251/file0") = 0 [pid 5031] umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6600] <... chdir resumed>) = 0 [pid 5034] getdents64(3, ./strace-static-x86_64: Process 6601 attached [pid 6600] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6600] <... prctl resumed>) = 0 [pid 5034] close(3 [pid 6601] set_robust_list(0x55555635e660, 24 [pid 6600] setpgid(0, 0 [pid 5034] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6601 [pid 6600] <... setpgid resumed>) = 0 [pid 5034] rmdir("./251" [pid 6601] <... set_robust_list resumed>) = 0 [pid 6600] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6601] chdir("./259" [pid 5031] newfstatat(3, "", [pid 6601] <... chdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6601] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] getdents64(3, [pid 6601] <... prctl resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6601] setpgid(0, 0 [pid 5031] umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6601] <... setpgid resumed>) = 0 [pid 6600] <... openat resumed>) = 3 [pid 5034] mkdir("./252", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6600] write(3, "1000", 4 [pid 5031] newfstatat(AT_FDCWD, "./257/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6600] <... write resumed>) = 4 [pid 5031] unlink("./257/binderfs" [pid 6600] close(3 [pid 6601] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6600] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 6601] <... openat resumed>) = 3 [pid 6600] symlink("/dev/binderfs", "./binderfs" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6601] write(3, "1000", 4 [pid 6600] <... symlink resumed>) = 0 [pid 6601] <... write resumed>) = 4 [pid 5034] <... openat resumed>) = 3 [pid 6601] close(3 [pid 6599] <... write resumed>) = 2097152 [pid 6601] <... close resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6601] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6601] memfd_create("syzkaller", 0 [pid 6600] memfd_create("syzkaller", 0 [pid 5034] close(3) = 0 [pid 6600] <... memfd_create resumed>) = 3 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6600] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 6602 attached ) = 0x7ff0df171000 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6602 [pid 6601] <... memfd_create resumed>) = 3 [pid 6601] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6602] set_robust_list(0x55555635e660, 24 [pid 6601] <... mmap resumed>) = 0x7ff0df171000 [pid 6602] <... set_robust_list resumed>) = 0 [pid 6602] chdir("./252" [pid 6599] munmap(0x7ff0df171000, 138412032 [pid 5032] <... umount2 resumed>) = 0 [pid 6602] <... chdir resumed>) = 0 [pid 6602] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6602] <... prctl resumed>) = 0 [pid 6602] setpgid(0, 0 [pid 6599] <... munmap resumed>) = 0 [pid 6602] <... setpgid resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./260/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6602] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6602] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 6599] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6602] write(3, "1000", 4 [pid 6599] <... openat resumed>) = 4 [pid 5032] getdents64(4, [pid 6602] <... write resumed>) = 4 [pid 6599] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6602] close(3 [pid 6599] <... ioctl resumed>) = 0 [pid 6602] <... close resumed>) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./260/file0") = 0 [pid 6602] symlink("/dev/binderfs", "./binderfs" [pid 5032] getdents64(3, [pid 6602] <... symlink resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./260") = 0 [pid 6602] memfd_create("syzkaller", 0 [pid 5032] mkdir("./261", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6602] <... memfd_create resumed>) = 3 [pid 6602] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6599] close(3) = 0 [pid 6599] mkdir("./file0", 0777 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6602] <... mmap resumed>) = 0x7ff0df171000 [pid 6599] <... mkdir resumed>) = 0 [pid 5032] close(3) = 0 [ 227.953001][ T6599] loop0: detected capacity change from 0 to 4096 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6599] mount("/dev/loop0", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6603 attached [pid 6603] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6603 [pid 6603] <... set_robust_list resumed>) = 0 [pid 6603] chdir("./261") = 0 [pid 6603] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6603] setpgid(0, 0) = 0 [pid 6603] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6601] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6603] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = 0 [pid 6603] write(3, "1000", 4) = 4 [pid 6603] close(3) = 0 [pid 5031] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6603] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6603] memfd_create("syzkaller", 0) = 3 [pid 6603] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./257/file0", [pid 6600] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 228.005665][ T6599] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./257/file0") = 0 [pid 6602] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6600] <... write resumed>) = 2097152 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./257") = 0 [pid 6601] <... write resumed>) = 2097152 [pid 5031] mkdir("./258", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6604 ./strace-static-x86_64: Process 6604 attached [pid 6601] munmap(0x7ff0df171000, 138412032 [pid 6604] set_robust_list(0x55555635e660, 24) = 0 [pid 6600] munmap(0x7ff0df171000, 138412032 [pid 6604] chdir("./258" [pid 6603] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6600] <... munmap resumed>) = 0 [pid 6604] <... chdir resumed>) = 0 [pid 6604] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6604] setpgid(0, 0) = 0 [pid 6604] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6601] <... munmap resumed>) = 0 [pid 6604] write(3, "1000", 4 [pid 6601] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6600] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6604] <... write resumed>) = 4 [pid 6604] close(3 [pid 6601] <... openat resumed>) = 4 [pid 6600] <... openat resumed>) = 4 [pid 6600] ioctl(4, LOOP_SET_FD, 3 [pid 6604] <... close resumed>) = 0 [pid 6603] <... write resumed>) = 2097152 [pid 6602] <... write resumed>) = 2097152 [pid 6601] ioctl(4, LOOP_SET_FD, 3 [pid 6600] <... ioctl resumed>) = 0 [pid 6600] close(3) = 0 [pid 6600] mkdir("./file0", 0777) = 0 [pid 6600] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6604] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6603] munmap(0x7ff0df171000, 138412032 [pid 6602] munmap(0x7ff0df171000, 138412032 [pid 6603] <... munmap resumed>) = 0 [pid 6602] <... munmap resumed>) = 0 [pid 6602] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6602] ioctl(4, LOOP_SET_FD, 3 [pid 6599] <... mount resumed>) = 0 [pid 6599] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6602] <... ioctl resumed>) = 0 [pid 6599] chdir("./file0" [pid 6604] memfd_create("syzkaller", 0 [pid 6603] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6599] <... chdir resumed>) = 0 [pid 6604] <... memfd_create resumed>) = 3 [pid 6603] <... openat resumed>) = 4 [pid 6602] close(3 [pid 6601] <... ioctl resumed>) = 0 [pid 6599] ioctl(4, LOOP_CLR_FD [ 228.145306][ T6600] loop4: detected capacity change from 0 to 4096 [ 228.158965][ T6600] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 228.163545][ T6601] loop1: detected capacity change from 0 to 4096 [ 228.185519][ T6602] loop5: detected capacity change from 0 to 4096 [pid 6604] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6603] ioctl(4, LOOP_SET_FD, 3 [pid 6602] <... close resumed>) = 0 [pid 6601] close(3 [pid 6599] <... ioctl resumed>) = 0 [pid 6604] <... mmap resumed>) = 0x7ff0df171000 [pid 6603] <... ioctl resumed>) = 0 [pid 6602] mkdir("./file0", 0777 [pid 6599] close(4 [pid 6603] close(3 [pid 6601] <... close resumed>) = 0 [pid 6600] <... mount resumed>) = 0 [pid 6599] <... close resumed>) = 0 [pid 6601] mkdir("./file0", 0777 [pid 6603] <... close resumed>) = 0 [pid 6602] <... mkdir resumed>) = 0 [pid 6601] <... mkdir resumed>) = 0 [pid 6599] exit_group(0 [pid 6603] mkdir("./file0", 0777 [pid 6600] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6599] <... exit_group resumed>) = ? [pid 6603] <... mkdir resumed>) = 0 [pid 6600] <... openat resumed>) = 3 [pid 6603] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6602] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6601] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6600] chdir("./file0") = 0 [pid 6599] +++ exited with 0 +++ [pid 6600] ioctl(4, LOOP_CLR_FD) = 0 [pid 6600] close(4) = 0 [pid 6600] exit_group(0) = ? [pid 6600] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6600, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6599, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5033] umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./255/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./255/binderfs") = 0 [pid 5033] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... restart_syscall resumed>) = 0 [pid 5029] umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./260/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./260/binderfs") = 0 [ 228.196971][ T6603] loop3: detected capacity change from 0 to 4096 [ 228.217740][ T6601] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 228.223237][ T6602] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 228.236491][ T6603] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6601] <... mount resumed>) = 0 [pid 6604] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6601] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6601] chdir("./file0") = 0 [pid 6601] ioctl(4, LOOP_CLR_FD) = 0 [pid 6601] close(4) = 0 [pid 6601] exit_group(0 [pid 5029] <... umount2 resumed>) = 0 [pid 6601] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = 0 [pid 5029] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6601] +++ exited with 0 +++ [pid 5033] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./260/file0", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6601, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(AT_FDCWD, "./255/file0", [pid 5029] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6603] <... mount resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5033] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 5029] newfstatat(4, "", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6602] <... mount resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] getdents64(4, [pid 6603] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] newfstatat(4, "", [pid 5030] umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6603] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6603] chdir("./file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 6603] <... chdir resumed>) = 0 [pid 5033] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./259/binderfs", [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6603] ioctl(4, LOOP_CLR_FD [pid 6602] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6603] <... ioctl resumed>) = 0 [pid 6602] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] close(4 [pid 6603] close(4 [pid 6602] chdir("./file0" [pid 5030] unlink("./259/binderfs" [pid 5029] <... close resumed>) = 0 [pid 6603] <... close resumed>) = 0 [pid 6602] <... chdir resumed>) = 0 [pid 5033] getdents64(4, [pid 6603] exit_group(0 [pid 6602] ioctl(4, LOOP_CLR_FD [pid 5030] <... unlink resumed>) = 0 [pid 5029] rmdir("./260/file0" [pid 6603] <... exit_group resumed>) = ? [pid 6602] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6602] close(4 [pid 6603] +++ exited with 0 +++ [pid 6602] <... close resumed>) = 0 [pid 5033] close(4 [pid 5029] <... rmdir resumed>) = 0 [pid 6602] exit_group(0 [pid 5033] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6603, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5029] getdents64(3, [pid 5033] rmdir("./255/file0" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6602] <... exit_group resumed>) = ? [pid 6602] +++ exited with 0 +++ [pid 5033] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6602, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... close resumed>) = 0 [pid 5034] umount2("./252", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./260" [pid 5034] openat(AT_FDCWD, "./252", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5029] <... rmdir resumed>) = 0 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] mkdir("./261", 0777 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] getdents64(3, [pid 5029] <... mkdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5034] umount2("./252/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./261/binderfs", [pid 5029] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] close(3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(AT_FDCWD, "./252/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./252/binderfs" [pid 6604] <... write resumed>) = 2097152 [pid 5034] <... unlink resumed>) = 0 [pid 5033] close(3 [pid 5032] unlink("./261/binderfs" [pid 5029] <... close resumed>) = 0 [pid 5034] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5033] rmdir("./255" [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6605 ./strace-static-x86_64: Process 6605 attached [pid 6604] munmap(0x7ff0df171000, 138412032 [pid 5033] mkdir("./256", 0777 [pid 6605] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6605] chdir("./261" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 6605] <... chdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6605] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6605] <... prctl resumed>) = 0 [pid 6604] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 6605] setpgid(0, 0 [pid 5033] <... close resumed>) = 0 [pid 6605] <... setpgid resumed>) = 0 [pid 6604] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6605] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 6606 attached ) = 3 [pid 6604] <... openat resumed>) = 4 [pid 6606] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6606 [pid 6604] ioctl(4, LOOP_SET_FD, 3 [pid 6605] write(3, "1000", 4 [pid 6606] <... set_robust_list resumed>) = 0 [pid 6605] <... write resumed>) = 4 [pid 6605] close(3 [pid 6606] chdir("./256" [pid 6605] <... close resumed>) = 0 [pid 6606] <... chdir resumed>) = 0 [pid 6605] symlink("/dev/binderfs", "./binderfs" [pid 6604] <... ioctl resumed>) = 0 [pid 6606] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6605] <... symlink resumed>) = 0 [pid 6604] close(3 [pid 5032] <... umount2 resumed>) = 0 [pid 6606] <... prctl resumed>) = 0 [pid 6604] <... close resumed>) = 0 [pid 6604] mkdir("./file0", 0777 [pid 6606] setpgid(0, 0) = 0 [pid 6605] memfd_create("syzkaller", 0 [pid 6604] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [ 228.416852][ T6604] loop2: detected capacity change from 0 to 4096 [pid 6606] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6605] <... memfd_create resumed>) = 3 [pid 6604] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6605] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./261/file0", [pid 6605] <... mmap resumed>) = 0x7ff0df171000 [pid 6606] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6606] write(3, "1000", 4 [pid 5032] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./259/file0", [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] rmdir("./261/file0" [pid 5030] <... openat resumed>) = 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5032] getdents64(3, [pid 5034] <... umount2 resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5034] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./261" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./252/file0", [pid 5032] mkdir("./262", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5034] umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./252/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6606] <... write resumed>) = 4 [pid 5034] <... openat resumed>) = 4 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./252/file0" [pid 6606] close(3) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 6606] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 6606] <... symlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5034] getdents64(3, [pid 5030] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] rmdir("./259/file0" [pid 5034] close(3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] <... rmdir resumed>) = 0 [pid 6606] memfd_create("syzkaller", 0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] rmdir("./252" [pid 5032] close(3 [pid 5030] getdents64(3, [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] mkdir("./253", 0777 [pid 5030] close(3) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] rmdir("./259") = 0 [pid 5030] mkdir("./260", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6606] <... memfd_create resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6607 [pid 5030] <... openat resumed>) = 3 [pid 6606] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 6607 attached ) = 0x7ff0df171000 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6607] set_robust_list(0x55555635e660, 24 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6607] <... set_robust_list resumed>) = 0 [pid 5034] close(3 [pid 6607] chdir("./262" [pid 5034] <... close resumed>) = 0 [pid 5030] close(3 [pid 6607] <... chdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6607] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... close resumed>) = 0 [pid 6607] <... prctl resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6608 attached [pid 6607] setpgid(0, 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6608 [pid 6608] set_robust_list(0x55555635e660, 24 [pid 6607] <... setpgid resumed>) = 0 [pid 6608] <... set_robust_list resumed>) = 0 [pid 6607] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6608] chdir("./253" [pid 6607] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6609 attached [pid 6608] <... chdir resumed>) = 0 [pid 6607] write(3, "1000", 4 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6609 [pid 6609] set_robust_list(0x55555635e660, 24 [pid 6608] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6607] <... write resumed>) = 4 [pid 6609] <... set_robust_list resumed>) = 0 [pid 6608] <... prctl resumed>) = 0 [pid 6607] close(3 [pid 6609] chdir("./260" [pid 6608] setpgid(0, 0 [pid 6607] <... close resumed>) = 0 [pid 6609] <... chdir resumed>) = 0 [pid 6608] <... setpgid resumed>) = 0 [pid 6607] symlink("/dev/binderfs", "./binderfs" [pid 6609] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6608] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6607] <... symlink resumed>) = 0 [ 228.470355][ T6604] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6608] <... openat resumed>) = 3 [pid 6609] setpgid(0, 0 [pid 6607] memfd_create("syzkaller", 0 [pid 6608] write(3, "1000", 4 [pid 6604] <... mount resumed>) = 0 [pid 6608] <... write resumed>) = 4 [pid 6604] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6608] close(3 [pid 6607] <... memfd_create resumed>) = 3 [pid 6604] chdir("./file0" [pid 6607] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6604] <... chdir resumed>) = 0 [pid 6608] <... close resumed>) = 0 [pid 6607] <... mmap resumed>) = 0x7ff0df171000 [pid 6604] ioctl(4, LOOP_CLR_FD) = 0 [pid 6604] close(4) = 0 [pid 6608] symlink("/dev/binderfs", "./binderfs" [pid 6609] <... setpgid resumed>) = 0 [pid 6608] <... symlink resumed>) = 0 [pid 6604] exit_group(0 [pid 6609] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6608] memfd_create("syzkaller", 0 [pid 6604] <... exit_group resumed>) = ? [pid 6604] +++ exited with 0 +++ [pid 6609] write(3, "1000", 4) = 4 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6604, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6609] close(3) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6608] <... memfd_create resumed>) = 3 [pid 5031] <... restart_syscall resumed>) = 0 [pid 6608] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6609] symlink("/dev/binderfs", "./binderfs" [pid 6605] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6609] <... symlink resumed>) = 0 [pid 6609] memfd_create("syzkaller", 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6609] <... memfd_create resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./258/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./258/binderfs") = 0 [pid 6609] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6606] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./258/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./258/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./258") = 0 [pid 5031] mkdir("./259", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6607] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... ioctl resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6610 attached , child_tidptr=0x55555635e650) = 6610 [pid 6610] set_robust_list(0x55555635e660, 24) = 0 [pid 6609] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6608] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6610] chdir("./259") = 0 [pid 6610] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6610] setpgid(0, 0) = 0 [pid 6610] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6610] write(3, "1000", 4) = 4 [pid 6610] close(3) = 0 [pid 6610] symlink("/dev/binderfs", "./binderfs" [pid 6605] <... write resumed>) = 2097152 [pid 6605] munmap(0x7ff0df171000, 138412032 [pid 6610] <... symlink resumed>) = 0 [pid 6610] memfd_create("syzkaller", 0) = 3 [pid 6610] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6605] <... munmap resumed>) = 0 [pid 6607] <... write resumed>) = 2097152 [pid 6605] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6606] <... write resumed>) = 2097152 [pid 6606] munmap(0x7ff0df171000, 138412032 [pid 6605] <... openat resumed>) = 4 [pid 6605] ioctl(4, LOOP_SET_FD, 3 [pid 6607] munmap(0x7ff0df171000, 138412032 [pid 6605] <... ioctl resumed>) = 0 [pid 6607] <... munmap resumed>) = 0 [pid 6607] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6606] <... munmap resumed>) = 0 [pid 6607] ioctl(4, LOOP_SET_FD, 3 [pid 6606] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6609] <... write resumed>) = 2097152 [pid 6606] ioctl(4, LOOP_SET_FD, 3 [pid 6605] close(3 [pid 6608] <... write resumed>) = 2097152 [pid 6608] munmap(0x7ff0df171000, 138412032 [pid 6609] munmap(0x7ff0df171000, 138412032 [pid 6606] <... ioctl resumed>) = 0 [pid 6605] <... close resumed>) = 0 [pid 6608] <... munmap resumed>) = 0 [pid 6608] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6607] <... ioctl resumed>) = 0 [pid 6605] mkdir("./file0", 0777 [pid 6608] <... openat resumed>) = 4 [pid 6607] close(3 [pid 6608] ioctl(4, LOOP_SET_FD, 3 [pid 6607] <... close resumed>) = 0 [pid 6605] <... mkdir resumed>) = 0 [pid 6609] <... munmap resumed>) = 0 [pid 6605] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6609] openat(AT_FDCWD, "/dev/loop1", O_RDWR [ 228.755170][ T6605] loop0: detected capacity change from 0 to 4096 [ 228.766094][ T6607] loop3: detected capacity change from 0 to 4096 [ 228.775688][ T6606] loop4: detected capacity change from 0 to 4096 [ 228.798466][ T6608] loop5: detected capacity change from 0 to 4096 [pid 6607] mkdir("./file0", 0777 [pid 6609] <... openat resumed>) = 4 [pid 6607] <... mkdir resumed>) = 0 [pid 6607] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6610] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6608] <... ioctl resumed>) = 0 [pid 6609] ioctl(4, LOOP_SET_FD, 3 [pid 6608] close(3) = 0 [pid 6608] mkdir("./file0", 0777) = 0 [pid 6606] close(3 [pid 6608] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6606] <... close resumed>) = 0 [pid 6606] mkdir("./file0", 0777 [pid 6609] <... ioctl resumed>) = 0 [pid 6606] <... mkdir resumed>) = 0 [ 228.807943][ T6605] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 228.817889][ T6607] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 228.818518][ T6609] loop1: detected capacity change from 0 to 4096 [ 228.836536][ T6608] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6606] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6609] close(3) = 0 [pid 6609] mkdir("./file0", 0777 [pid 6607] <... mount resumed>) = 0 [pid 6607] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6607] chdir("./file0") = 0 [pid 6607] ioctl(4, LOOP_CLR_FD [pid 6609] <... mkdir resumed>) = 0 [pid 6607] <... ioctl resumed>) = 0 [pid 6607] close(4 [pid 6610] <... write resumed>) = 2097152 [pid 6609] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6608] <... mount resumed>) = 0 [pid 6607] <... close resumed>) = 0 [pid 6607] exit_group(0 [pid 6608] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6607] <... exit_group resumed>) = ? [pid 6608] <... openat resumed>) = 3 [pid 6605] <... mount resumed>) = 0 [pid 6608] chdir("./file0") = 0 [pid 6605] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6608] ioctl(4, LOOP_CLR_FD) = 0 [pid 6608] close(4 [pid 6605] <... openat resumed>) = 3 [pid 6608] <... close resumed>) = 0 [pid 6607] +++ exited with 0 +++ [pid 6608] exit_group(0 [pid 6605] chdir("./file0" [pid 6608] <... exit_group resumed>) = ? [pid 6605] <... chdir resumed>) = 0 [pid 6608] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6608, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6607, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6610] munmap(0x7ff0df171000, 138412032 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5032] umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 6605] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6605] <... ioctl resumed>) = 0 [pid 5034] getdents64(3, [pid 5032] newfstatat(3, "", [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(3, [pid 5034] newfstatat(AT_FDCWD, "./253/binderfs", [pid 6605] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6605] <... close resumed>) = 0 [pid 5034] unlink("./253/binderfs" [pid 5032] umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6610] <... munmap resumed>) = 0 [pid 6605] exit_group(0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6610] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6605] <... exit_group resumed>) = ? [pid 5034] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./262/binderfs", [pid 6610] <... openat resumed>) = 4 [pid 6605] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 228.859361][ T6606] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 228.895103][ T6609] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6610] ioctl(4, LOOP_SET_FD, 3 [pid 5032] unlink("./262/binderfs" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6605, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./253/file0", [pid 5029] umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(3, "", [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] close(4) = 0 [pid 5029] getdents64(3, [pid 5034] rmdir("./253/file0") = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6610] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 5029] newfstatat(AT_FDCWD, "./261/binderfs", [pid 6610] close(3 [pid 5034] <... close resumed>) = 0 [pid 6610] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] rmdir("./253" [pid 5029] unlink("./261/binderfs" [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6606] <... mount resumed>) = 0 [pid 5034] mkdir("./254", 0777 [pid 5032] <... umount2 resumed>) = 0 [pid 6606] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... mkdir resumed>) = 0 [pid 5032] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] newfstatat(AT_FDCWD, "./262/file0", [pid 5034] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5032] openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(4, "", ./strace-static-x86_64: Process 6611 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6611] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] getdents64(4, [pid 6611] chdir("./254" [pid 6610] mkdir("./file0", 0777 [pid 6606] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6606] chdir("./file0" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6611 [ 228.935515][ T6610] loop2: detected capacity change from 0 to 4096 [pid 5032] getdents64(4, [pid 6611] <... chdir resumed>) = 0 [pid 6610] <... mkdir resumed>) = 0 [pid 6606] <... chdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6611] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6610] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6606] ioctl(4, LOOP_CLR_FD [pid 5032] close(4 [pid 6611] <... prctl resumed>) = 0 [pid 6606] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6611] setpgid(0, 0 [pid 6609] <... mount resumed>) = 0 [pid 6606] close(4 [pid 5029] <... umount2 resumed>) = 0 [pid 6609] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6611] <... setpgid resumed>) = 0 [pid 5032] rmdir("./262/file0" [pid 6609] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 6609] chdir("./file0" [pid 6611] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6611] <... openat resumed>) = 3 [pid 5032] close(3) = 0 [pid 5032] rmdir("./262") = 0 [pid 5032] mkdir("./263", 0777 [pid 6611] write(3, "1000", 4) = 4 [pid 5032] <... mkdir resumed>) = 0 [pid 6611] close(3 [pid 6609] <... chdir resumed>) = 0 [pid 5029] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6611] <... close resumed>) = 0 [pid 6611] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6609] ioctl(4, LOOP_CLR_FD [pid 6606] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6609] <... ioctl resumed>) = 0 [pid 6609] close(4 [pid 6606] exit_group(0 [pid 5032] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./261/file0", [pid 6611] memfd_create("syzkaller", 0) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6611] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6609] <... close resumed>) = 0 [pid 6611] <... mmap resumed>) = 0x7ff0df171000 [pid 6609] exit_group(0 [pid 6606] <... exit_group resumed>) = ? [pid 5032] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 6609] <... exit_group resumed>) = ? [pid 6606] +++ exited with 0 +++ [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6612 attached [pid 6609] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6606, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] <... openat resumed>) = 4 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6612 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6609, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(4, "", [pid 6612] set_robust_list(0x55555635e660, 24 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6612] <... set_robust_list resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6612] chdir("./263" [pid 5033] <... openat resumed>) = 3 [pid 5030] <... restart_syscall resumed>) = 0 [pid 6612] <... chdir resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5030] umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6612] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6612] <... prctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6612] setpgid(0, 0) = 0 [pid 5033] getdents64(3, [pid 5029] getdents64(4, [pid 6612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] newfstatat(3, "", [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [ 229.015547][ T6610] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6612] <... openat resumed>) = 3 [pid 5033] umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(4 [pid 6612] write(3, "1000", 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 6612] <... write resumed>) = 4 [pid 5033] newfstatat(AT_FDCWD, "./256/binderfs", [pid 6612] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] rmdir("./261/file0" [pid 6612] <... close resumed>) = 0 [pid 5033] unlink("./256/binderfs" [pid 5030] umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6612] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./260/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6612] <... symlink resumed>) = 0 [pid 5029] getdents64(3, [pid 5033] <... unlink resumed>) = 0 [pid 5030] unlink("./260/binderfs" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] close(3 [pid 5030] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6612] memfd_create("syzkaller", 0 [pid 5033] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./261" [pid 6612] <... memfd_create resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 6612] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] mkdir("./262", 0777 [pid 6612] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6613 attached [pid 6610] <... mount resumed>) = 0 [pid 6613] set_robust_list(0x55555635e660, 24 [pid 6610] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6613] <... set_robust_list resumed>) = 0 [pid 6613] chdir("./262") = 0 [pid 6613] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6613 [pid 6613] <... prctl resumed>) = 0 [pid 6610] <... openat resumed>) = 3 [pid 6613] setpgid(0, 0) = 0 [pid 6613] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6613] write(3, "1000", 4 [pid 6610] chdir("./file0" [pid 6613] <... write resumed>) = 4 [pid 6611] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6610] <... chdir resumed>) = 0 [pid 6610] ioctl(4, LOOP_CLR_FD [pid 6613] close(3) = 0 [pid 6610] <... ioctl resumed>) = 0 [pid 6613] symlink("/dev/binderfs", "./binderfs" [pid 6610] close(4) = 0 [pid 6613] <... symlink resumed>) = 0 [pid 6613] memfd_create("syzkaller", 0) = 3 [pid 6613] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6610] exit_group(0) = ? [pid 6610] +++ exited with 0 +++ [pid 6613] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6610, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./259/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./259/binderfs") = 0 [pid 5031] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6612] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./260/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(AT_FDCWD, "./256/file0", [pid 5030] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(4, "", [pid 5033] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 5033] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(4, "", [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6612] <... write resumed>) = 2097152 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./260/file0" [pid 6612] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./260") = 0 [pid 5033] getdents64(4, [pid 6612] <... munmap resumed>) = 0 [pid 5030] mkdir("./261", 0777 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6612] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] close(4 [pid 5030] <... mkdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6612] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 3 [pid 6611] <... write resumed>) = 2097152 [pid 6613] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6612] ioctl(4, LOOP_SET_FD, 3 [pid 6611] munmap(0x7ff0df171000, 138412032 [pid 5033] rmdir("./256/file0" [pid 5031] <... umount2 resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... rmdir resumed>) = 0 [pid 5031] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5031] newfstatat(AT_FDCWD, "./259/file0", [pid 5030] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6611] <... munmap resumed>) = 0 [pid 5033] getdents64(3, [pid 5031] getdents64(4, [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./259/file0" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6611] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] close(3 [pid 5031] getdents64(3, [pid 6612] <... ioctl resumed>) = 0 [pid 6611] <... openat resumed>) = 4 [pid 5033] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6614 ./strace-static-x86_64: Process 6614 attached [pid 6612] close(3 [pid 6611] ioctl(4, LOOP_SET_FD, 3 [pid 5033] rmdir("./256" [pid 5031] close(3 [pid 6614] set_robust_list(0x55555635e660, 24 [pid 6612] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6614] <... set_robust_list resumed>) = 0 [pid 5031] rmdir("./259" [pid 6614] chdir("./261" [pid 6612] mkdir("./file0", 0777 [pid 6611] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6614] <... chdir resumed>) = 0 [pid 6612] <... mkdir resumed>) = 0 [pid 6611] close(3 [pid 5033] mkdir("./257", 0777 [pid 5031] <... rmdir resumed>) = 0 [pid 6611] <... close resumed>) = 0 [pid 6614] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] mkdir("./260", 0777 [pid 5033] <... mkdir resumed>) = 0 [pid 6614] <... prctl resumed>) = 0 [pid 6612] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6611] mkdir("./file0", 0777 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... mkdir resumed>) = 0 [pid 6614] setpgid(0, 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6614] <... setpgid resumed>) = 0 [pid 6611] <... mkdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 6614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6611] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... close resumed>) = 0 [ 229.301931][ T6612] loop3: detected capacity change from 0 to 4096 [ 229.334629][ T6611] loop5: detected capacity change from 0 to 4096 [pid 6614] <... openat resumed>) = 3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6614] write(3, "1000", 4) = 4 [pid 6614] close(3) = 0 [pid 6614] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6615 [pid 5031] close(3 [pid 6614] memfd_create("syzkaller", 0 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6616 attached [pid 6616] set_robust_list(0x55555635e660, 24) = 0 [pid 6614] <... memfd_create resumed>) = 3 [pid 6616] chdir("./260" [pid 6614] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6616] <... chdir resumed>) = 0 [pid 6616] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6614] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6616 ./strace-static-x86_64: Process 6615 attached [pid 6616] <... prctl resumed>) = 0 [pid 6613] <... write resumed>) = 2097152 [pid 6616] setpgid(0, 0 [pid 6615] set_robust_list(0x55555635e660, 24) = 0 [pid 6616] <... setpgid resumed>) = 0 [pid 6616] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6616] write(3, "1000", 4) = 4 [pid 6616] close(3) = 0 [pid 6616] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6616] memfd_create("syzkaller", 0 [pid 6613] munmap(0x7ff0df171000, 138412032 [pid 6615] chdir("./257") = 0 [pid 6615] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6616] <... memfd_create resumed>) = 3 [pid 6615] setpgid(0, 0) = 0 [pid 6616] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6615] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6616] <... mmap resumed>) = 0x7ff0df171000 [pid 6615] <... openat resumed>) = 3 [pid 6615] write(3, "1000", 4 [pid 6613] <... munmap resumed>) = 0 [pid 6615] <... write resumed>) = 4 [pid 6615] close(3) = 0 [pid 6615] symlink("/dev/binderfs", "./binderfs" [pid 6613] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6615] <... symlink resumed>) = 0 [ 229.357573][ T6612] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 229.382121][ T6611] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6613] ioctl(4, LOOP_SET_FD, 3 [pid 6615] memfd_create("syzkaller", 0 [pid 6614] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6615] <... memfd_create resumed>) = 3 [pid 6613] <... ioctl resumed>) = 0 [pid 6613] close(3) = 0 [pid 6613] mkdir("./file0", 0777 [pid 6615] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6613] <... mkdir resumed>) = 0 [pid 6615] <... mmap resumed>) = 0x7ff0df171000 [pid 6613] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6616] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6611] <... mount resumed>) = 0 [pid 6611] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6614] <... write resumed>) = 2097152 [pid 6611] <... openat resumed>) = 3 [pid 6613] <... mount resumed>) = 0 [pid 6611] chdir("./file0" [pid 6613] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6611] <... chdir resumed>) = 0 [pid 6614] munmap(0x7ff0df171000, 138412032 [pid 6611] ioctl(4, LOOP_CLR_FD) = 0 [pid 6613] <... openat resumed>) = 3 [pid 6611] close(4 [pid 6613] chdir("./file0" [pid 6611] <... close resumed>) = 0 [pid 6613] <... chdir resumed>) = 0 [ 229.428566][ T6613] loop0: detected capacity change from 0 to 4096 [ 229.448764][ T6613] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6613] ioctl(4, LOOP_CLR_FD [pid 6611] exit_group(0 [pid 6613] <... ioctl resumed>) = 0 [pid 6611] <... exit_group resumed>) = ? [pid 6613] close(4) = 0 [pid 6613] exit_group(0) = ? [pid 6613] +++ exited with 0 +++ [pid 6611] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6613, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6614] <... munmap resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6611, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 6614] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6614] <... openat resumed>) = 4 [pid 5034] umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./254/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./254/binderfs") = 0 [pid 5034] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6612] <... mount resumed>) = 0 [pid 6615] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6614] ioctl(4, LOOP_SET_FD, 3 [pid 6612] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6612] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6612] chdir("./file0" [pid 5029] newfstatat(3, "", [pid 6612] <... chdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6612] ioctl(4, LOOP_CLR_FD [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6612] <... ioctl resumed>) = 0 [pid 5029] umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6612] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6612] <... close resumed>) = 0 [pid 5034] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./262/binderfs", [pid 6616] <... write resumed>) = 2097152 [pid 6612] exit_group(0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6616] munmap(0x7ff0df171000, 138412032 [pid 6612] <... exit_group resumed>) = ? [pid 5034] newfstatat(AT_FDCWD, "./254/file0", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6612] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] unlink("./262/binderfs" [pid 5034] <... openat resumed>) = 4 [pid 5029] <... unlink resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6612, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(4, [pid 5032] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(3, "", [pid 6616] <... munmap resumed>) = 0 [pid 6614] <... ioctl resumed>) = 0 [pid 5034] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6616] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6614] close(3 [pid 5034] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 6614] <... close resumed>) = 0 [pid 6614] mkdir("./file0", 0777 [pid 6616] <... openat resumed>) = 4 [pid 6616] ioctl(4, LOOP_SET_FD, 3 [pid 6614] <... mkdir resumed>) = 0 [pid 5034] rmdir("./254/file0" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./263/binderfs", [pid 5034] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./263/binderfs") = 0 [pid 6614] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... close resumed>) = 0 [pid 5032] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] rmdir("./254") = 0 [pid 5034] mkdir("./255", 0777) = 0 [ 229.555746][ T6614] loop1: detected capacity change from 0 to 4096 [ 229.589470][ T6616] loop2: detected capacity change from 0 to 4096 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6616] <... ioctl resumed>) = 0 [pid 5029] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6616] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./262/file0", [pid 6616] <... close resumed>) = 0 [pid 6616] mkdir("./file0", 0777 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] close(3) = 0 [pid 6616] <... mkdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6616] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6617 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 6617 attached [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6617] set_robust_list(0x55555635e660, 24 [pid 5029] <... close resumed>) = 0 [ 229.601435][ T6614] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6617] <... set_robust_list resumed>) = 0 [pid 6617] chdir("./255") = 0 [pid 6615] <... write resumed>) = 2097152 [pid 6617] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6615] munmap(0x7ff0df171000, 138412032 [pid 6617] setpgid(0, 0 [pid 6615] <... munmap resumed>) = 0 [pid 6617] <... setpgid resumed>) = 0 [pid 6617] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] rmdir("./262/file0" [pid 6617] write(3, "1000", 4) = 4 [pid 5029] <... rmdir resumed>) = 0 [pid 6617] close(3 [pid 5029] getdents64(3, [pid 6617] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 6617] symlink("/dev/binderfs", "./binderfs" [pid 6615] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 6617] <... symlink resumed>) = 0 [pid 6615] <... openat resumed>) = 4 [pid 6614] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./262" [pid 6617] memfd_create("syzkaller", 0 [pid 6615] ioctl(4, LOOP_SET_FD, 3 [pid 6614] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./263/file0", [pid 6614] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6617] <... memfd_create resumed>) = 3 [pid 6617] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] mkdir("./263", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6614] chdir("./file0" [pid 5032] openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... mkdir resumed>) = 0 [pid 6614] <... chdir resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6614] ioctl(4, LOOP_CLR_FD [pid 5032] newfstatat(4, "", [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6614] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 229.642735][ T6616] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 229.677525][ T6615] loop4: detected capacity change from 0 to 4096 [pid 6615] <... ioctl resumed>) = 0 [pid 6614] close(4 [pid 5032] getdents64(4, [pid 5029] <... openat resumed>) = 3 [pid 6614] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6615] close(3 [pid 6614] exit_group(0 [pid 5032] getdents64(4, [pid 6614] <... exit_group resumed>) = ? [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6615] <... close resumed>) = 0 [pid 5032] close(4 [pid 5029] close(3 [pid 6615] mkdir("./file0", 0777 [pid 5032] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5032] rmdir("./263/file0" [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6615] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6615] mount("/dev/loop4", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6618 attached [pid 5032] getdents64(3, [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6618 [pid 6618] set_robust_list(0x55555635e660, 24 [pid 6614] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6614, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6618] <... set_robust_list resumed>) = 0 [pid 6618] chdir("./263" [pid 6616] <... mount resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6618] <... chdir resumed>) = 0 [pid 6616] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] rmdir("./263" [pid 5030] umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6618] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6616] <... openat resumed>) = 3 [pid 6618] <... prctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6616] chdir("./file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6618] setpgid(0, 0 [pid 5032] mkdir("./264", 0777 [pid 6616] <... chdir resumed>) = 0 [pid 6618] <... setpgid resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6616] ioctl(4, LOOP_CLR_FD [pid 5030] <... openat resumed>) = 3 [pid 6618] <... openat resumed>) = 3 [pid 6616] <... ioctl resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6618] write(3, "1000", 4 [pid 6616] close(4 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6616] <... close resumed>) = 0 [pid 6616] exit_group(0 [pid 6618] <... write resumed>) = 4 [pid 6616] <... exit_group resumed>) = ? [pid 5030] getdents64(3, [pid 6618] close(3 [pid 6616] +++ exited with 0 +++ [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6616, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./261/binderfs", [pid 6618] <... close resumed>) = 0 [pid 5031] umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./261/binderfs" [pid 6618] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6618] <... symlink resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 5030] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6618] memfd_create("syzkaller", 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6618] <... memfd_create resumed>) = 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6618] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./260/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./260/binderfs") = 0 [pid 5031] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6618] <... mmap resumed>) = 0x7ff0df171000 [ 229.732524][ T6615] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6617] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./261/file0", [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6619 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, ./strace-static-x86_64: Process 6619 attached 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6619] set_robust_list(0x55555635e660, 24 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] close(4 [pid 6619] <... set_robust_list resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6619] chdir("./264" [pid 5031] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./261/file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./260/file0", [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6619] <... chdir resumed>) = 0 [pid 5030] close(3 [pid 5031] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./261" [pid 5031] openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6619] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6615] <... mount resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 6619] <... prctl resumed>) = 0 [pid 6619] setpgid(0, 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6619] <... setpgid resumed>) = 0 [pid 6618] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... rmdir resumed>) = 0 [pid 6619] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] mkdir("./262", 0777 [pid 6615] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] getdents64(4, [pid 6619] write(3, "1000", 4 [pid 6615] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... mkdir resumed>) = 0 [pid 6619] <... write resumed>) = 4 [pid 6615] chdir("./file0" [pid 5031] getdents64(4, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6615] <... chdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6619] close(3 [pid 5030] <... openat resumed>) = 3 [pid 6619] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6619] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(4 [pid 6619] <... symlink resumed>) = 0 [pid 5030] close(3 [pid 6615] ioctl(4, LOOP_CLR_FD [pid 5031] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6620 attached [pid 6617] <... write resumed>) = 2097152 [pid 6615] <... ioctl resumed>) = 0 [pid 5031] rmdir("./260/file0" [pid 6620] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6620 [pid 6619] memfd_create("syzkaller", 0 [pid 6615] close(4 [pid 5031] getdents64(3, [pid 6620] chdir("./262" [pid 6619] <... memfd_create resumed>) = 3 [pid 6615] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6620] <... chdir resumed>) = 0 [pid 6619] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6620] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6615] exit_group(0 [pid 5031] close(3 [pid 6615] <... exit_group resumed>) = ? [pid 5031] <... close resumed>) = 0 [pid 6619] <... mmap resumed>) = 0x7ff0df171000 [pid 6620] <... prctl resumed>) = 0 [pid 6615] +++ exited with 0 +++ [pid 5031] rmdir("./260" [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6615, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5031] <... rmdir resumed>) = 0 [pid 6620] setpgid(0, 0 [pid 5033] umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./261", 0777 [pid 6620] <... setpgid resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... mkdir resumed>) = 0 [pid 6620] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6620] <... openat resumed>) = 3 [pid 6618] <... write resumed>) = 2097152 [pid 6617] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(3, [pid 6617] <... munmap resumed>) = 0 [pid 6620] write(3, "1000", 4 [pid 6618] munmap(0x7ff0df171000, 138412032 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6620] <... write resumed>) = 4 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6617] openat(AT_FDCWD, "/dev/loop5", O_RDWR./strace-static-x86_64: Process 6621 attached ) = 4 [pid 6621] set_robust_list(0x55555635e660, 24 [pid 6617] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6621 [pid 6621] <... set_robust_list resumed>) = 0 [pid 6620] close(3 [pid 6618] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6620] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./257/binderfs", [pid 6621] chdir("./261") = 0 [pid 6621] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6621] setpgid(0, 0) = 0 [pid 6621] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6620] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6621] <... openat resumed>) = 3 [pid 5033] unlink("./257/binderfs" [pid 6621] write(3, "1000", 4) = 4 [pid 6620] <... symlink resumed>) = 0 [pid 6621] close(3 [pid 5033] <... unlink resumed>) = 0 [pid 6621] <... close resumed>) = 0 [pid 6621] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6620] memfd_create("syzkaller", 0 [pid 5033] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6621] memfd_create("syzkaller", 0 [pid 6618] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6617] <... ioctl resumed>) = 0 [pid 6617] close(3) = 0 [pid 6617] mkdir("./file0", 0777 [pid 6618] <... openat resumed>) = 4 [pid 6621] <... memfd_create resumed>) = 3 [pid 6618] ioctl(4, LOOP_SET_FD, 3 [pid 6617] <... mkdir resumed>) = 0 [pid 6621] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6617] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6620] <... memfd_create resumed>) = 3 [pid 6620] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6618] <... ioctl resumed>) = 0 [pid 6618] close(3) = 0 [pid 6618] mkdir("./file0", 0777) = 0 [ 229.949936][ T6617] loop5: detected capacity change from 0 to 4096 [ 229.975025][ T6618] loop0: detected capacity change from 0 to 4096 [ 229.984803][ T6617] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6618] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6619] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6621] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = 0 [ 230.015417][ T6618] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6617] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./257/file0", [pid 6617] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6617] <... openat resumed>) = 3 [pid 6617] chdir("./file0" [pid 5033] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6617] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6619] <... write resumed>) = 2097152 [pid 6617] ioctl(4, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6617] <... ioctl resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6618] <... mount resumed>) = 0 [pid 6617] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 6617] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6617] exit_group(0) = ? [pid 6617] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6617, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=9 /* 0.09 s */} --- [pid 5034] umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6620] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6618] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(AT_FDCWD, "./255/binderfs", [pid 5033] getdents64(4, [pid 6619] munmap(0x7ff0df171000, 138412032 [pid 6618] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6618] chdir("./file0" [pid 5034] unlink("./255/binderfs" [pid 5033] close(4 [pid 6618] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6618] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./257/file0" [pid 6618] <... ioctl resumed>) = 0 [pid 6618] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 6618] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 6618] exit_group(0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6618] <... exit_group resumed>) = ? [pid 5033] close(3 [pid 6619] <... munmap resumed>) = 0 [pid 6618] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./257" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6618, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./258", 0777 [pid 6619] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6619] <... openat resumed>) = 4 [pid 6619] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = 0 [pid 6621] <... write resumed>) = 2097152 [pid 6619] <... ioctl resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./255/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] newfstatat(3, "", [pid 5034] close(4 [pid 5033] close(3 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./255/file0") = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6621] munmap(0x7ff0df171000, 138412032 [pid 5029] getdents64(3, ./strace-static-x86_64: Process 6622 attached [pid 5034] getdents64(3, [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6622 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6622] set_robust_list(0x55555635e660, 24 [pid 6621] <... munmap resumed>) = 0 [pid 6620] <... write resumed>) = 2097152 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6622] <... set_robust_list resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6622] chdir("./258" [pid 5034] close(3 [pid 6622] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6622] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] rmdir("./255" [pid 6622] <... prctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./256", 0777 [pid 6622] setpgid(0, 0 [pid 6621] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... mkdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./263/binderfs", [pid 6622] <... setpgid resumed>) = 0 [pid 6619] close(3 [pid 6622] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6621] <... openat resumed>) = 4 [pid 6619] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 230.173645][ T6619] loop3: detected capacity change from 0 to 4096 [pid 6622] <... openat resumed>) = 3 [pid 6621] ioctl(4, LOOP_SET_FD, 3 [pid 6619] mkdir("./file0", 0777 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6622] write(3, "1000", 4 [pid 6621] <... ioctl resumed>) = 0 [pid 6619] <... mkdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5029] unlink("./263/binderfs" [pid 6622] <... write resumed>) = 4 [pid 6619] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6620] munmap(0x7ff0df171000, 138412032 [pid 5029] <... unlink resumed>) = 0 [pid 6620] <... munmap resumed>) = 0 [pid 5029] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6622] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6622] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = 0 [pid 6622] symlink("/dev/binderfs", "./binderfs" [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6620] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6623 ./strace-static-x86_64: Process 6623 attached [pid 6620] <... openat resumed>) = 4 [pid 6623] set_robust_list(0x55555635e660, 24) = 0 [pid 6623] chdir("./256") = 0 [pid 6620] ioctl(4, LOOP_SET_FD, 3 [pid 6623] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6623] setpgid(0, 0 [pid 5029] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6623] <... setpgid resumed>) = 0 [pid 6621] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6623] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6621] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./263/file0", [pid 6621] mkdir("./file0", 0777 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6623] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6623] write(3, "1000", 4) = 4 [pid 5029] <... openat resumed>) = 4 [pid 6623] close(3 [pid 5029] newfstatat(4, "", [pid 6623] <... close resumed>) = 0 [pid 6623] symlink("/dev/binderfs", "./binderfs" [pid 6622] <... symlink resumed>) = 0 [pid 6621] <... mkdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6623] <... symlink resumed>) = 0 [pid 6622] memfd_create("syzkaller", 0 [pid 6621] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] getdents64(4, [pid 6620] <... ioctl resumed>) = 0 [ 230.223625][ T6621] loop2: detected capacity change from 0 to 4096 [ 230.233690][ T6619] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 230.251196][ T6620] loop1: detected capacity change from 0 to 4096 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6623] memfd_create("syzkaller", 0 [pid 6620] close(3 [pid 6619] <... mount resumed>) = 0 [pid 6619] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] getdents64(4, [pid 6622] <... memfd_create resumed>) = 3 [pid 6619] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6619] chdir("./file0" [pid 6622] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6619] <... chdir resumed>) = 0 [pid 5029] close(4 [pid 6619] ioctl(4, LOOP_CLR_FD [pid 6622] <... mmap resumed>) = 0x7ff0df171000 [pid 6620] <... close resumed>) = 0 [pid 6619] <... ioctl resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6619] close(4 [pid 5029] rmdir("./263/file0" [pid 6619] <... close resumed>) = 0 [pid 6620] mkdir("./file0", 0777 [pid 6619] exit_group(0 [pid 5029] <... rmdir resumed>) = 0 [pid 6623] <... memfd_create resumed>) = 3 [pid 6623] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6619] <... exit_group resumed>) = ? [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6619] +++ exited with 0 +++ [pid 5029] close(3 [pid 6620] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6619, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] rmdir("./263" [pid 6620] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./264", 0777 [ 230.280181][ T6621] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5032] openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] <... mkdir resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./264/binderfs", [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] close(3 [pid 5032] unlink("./264/binderfs" [pid 5029] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6624 attached [pid 6621] <... mount resumed>) = 0 [pid 5032] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6624] set_robust_list(0x55555635e660, 24 [pid 6621] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6624 [pid 6624] <... set_robust_list resumed>) = 0 [pid 6621] <... openat resumed>) = 3 [pid 6621] chdir("./file0" [pid 6624] chdir("./264" [pid 6621] <... chdir resumed>) = 0 [pid 6624] <... chdir resumed>) = 0 [pid 6624] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6621] ioctl(4, LOOP_CLR_FD) = 0 [pid 6621] close(4 [pid 6624] <... prctl resumed>) = 0 [pid 6621] <... close resumed>) = 0 [pid 6624] setpgid(0, 0) = 0 [pid 6621] exit_group(0 [pid 6624] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6621] <... exit_group resumed>) = ? [pid 6624] <... openat resumed>) = 3 [ 230.327614][ T6620] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6624] write(3, "1000", 4 [pid 6621] +++ exited with 0 +++ [pid 6624] <... write resumed>) = 4 [pid 6624] close(3) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6621, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5031] umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6624] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./264/file0", [pid 5031] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 6624] memfd_create("syzkaller", 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(4, "", [pid 5031] newfstatat(AT_FDCWD, "./261/binderfs", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5031] unlink("./261/binderfs" [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... unlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./264/file0") = 0 [pid 5032] getdents64(3, [pid 6622] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6624] <... memfd_create resumed>) = 3 [pid 6624] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] close(3 [pid 6624] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./264") = 0 [pid 5032] mkdir("./265", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6623] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6625 ./strace-static-x86_64: Process 6625 attached [pid 6625] set_robust_list(0x55555635e660, 24) = 0 [pid 6625] chdir("./265") = 0 [pid 6625] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6625] setpgid(0, 0) = 0 [pid 6625] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6625] write(3, "1000", 4) = 4 [pid 6625] close(3) = 0 [pid 6625] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... umount2 resumed>) = 0 [pid 6625] <... symlink resumed>) = 0 [pid 6625] memfd_create("syzkaller", 0 [pid 6622] <... write resumed>) = 2097152 [pid 6620] <... mount resumed>) = 0 [pid 6620] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6620] chdir("./file0") = 0 [pid 5031] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6620] ioctl(4, LOOP_CLR_FD [pid 6625] <... memfd_create resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6625] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] newfstatat(AT_FDCWD, "./261/file0", [pid 6620] <... ioctl resumed>) = 0 [pid 6625] <... mmap resumed>) = 0x7ff0df171000 [pid 6620] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6620] <... close resumed>) = 0 [pid 5031] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6620] exit_group(0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6620] <... exit_group resumed>) = ? [pid 5031] openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 6623] <... write resumed>) = 2097152 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6625] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6623] munmap(0x7ff0df171000, 138412032 [pid 6622] munmap(0x7ff0df171000, 138412032 [pid 6620] +++ exited with 0 +++ [pid 5031] getdents64(4, [pid 6624] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6620, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6622] <... munmap resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./261/file0") = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5031] getdents64(3, [pid 6623] <... munmap resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5030] umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./261") = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6622] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] mkdir("./262", 0777 [pid 5030] openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6622] <... openat resumed>) = 4 [pid 6622] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... openat resumed>) = 3 [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5030] newfstatat(3, "", [pid 6623] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6623] <... openat resumed>) = 4 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6623] ioctl(4, LOOP_SET_FD, 3 [pid 5031] close(3) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6626 [pid 5030] umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6626 attached [pid 5030] newfstatat(AT_FDCWD, "./262/binderfs", [pid 6626] set_robust_list(0x55555635e660, 24 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6626] <... set_robust_list resumed>) = 0 [pid 6626] chdir("./262") = 0 [pid 6622] <... ioctl resumed>) = 0 [pid 6626] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6622] close(3 [pid 6626] <... prctl resumed>) = 0 [pid 6622] <... close resumed>) = 0 [pid 6626] setpgid(0, 0 [pid 6622] mkdir("./file0", 0777) = 0 [ 230.565079][ T6622] loop4: detected capacity change from 0 to 4096 [ 230.579129][ T6623] loop5: detected capacity change from 0 to 4096 [pid 5030] unlink("./262/binderfs" [pid 6626] <... setpgid resumed>) = 0 [pid 6623] <... ioctl resumed>) = 0 [pid 6622] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6626] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6623] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 6626] <... openat resumed>) = 3 [pid 6623] <... close resumed>) = 0 [pid 6626] write(3, "1000", 4 [pid 6623] mkdir("./file0", 0777 [pid 6626] <... write resumed>) = 4 [pid 6623] <... mkdir resumed>) = 0 [pid 5030] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6626] close(3) = 0 [pid 6623] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6626] symlink("/dev/binderfs", "./binderfs" [pid 6624] <... write resumed>) = 2097152 [pid 6624] munmap(0x7ff0df171000, 138412032 [pid 6625] <... write resumed>) = 2097152 [pid 6626] <... symlink resumed>) = 0 [pid 6625] munmap(0x7ff0df171000, 138412032) = 0 [pid 6624] <... munmap resumed>) = 0 [pid 6626] memfd_create("syzkaller", 0) = 3 [pid 6625] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6626] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6624] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6626] <... mmap resumed>) = 0x7ff0df171000 [pid 6624] <... openat resumed>) = 4 [ 230.613849][ T6622] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 230.627734][ T6623] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6625] ioctl(4, LOOP_SET_FD, 3 [pid 6624] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6624] close(3) = 0 [pid 6624] mkdir("./file0", 0777) = 0 [pid 6624] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./262/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6625] <... ioctl resumed>) = 0 [pid 6625] close(3 [pid 5030] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6625] <... close resumed>) = 0 [pid 6625] mkdir("./file0", 0777) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 230.654410][ T6624] loop0: detected capacity change from 0 to 4096 [ 230.654614][ T6625] loop3: detected capacity change from 0 to 4096 [ 230.685716][ T6624] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6625] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(4, "", [pid 6626] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6622] <... mount resumed>) = 0 [pid 6622] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5030] getdents64(4, [pid 6622] chdir("./file0" [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6622] <... chdir resumed>) = 0 [pid 5030] getdents64(4, [pid 6622] ioctl(4, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./262/file0" [pid 6623] <... mount resumed>) = 0 [pid 6622] <... ioctl resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6623] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6622] close(4 [pid 6623] <... openat resumed>) = 3 [pid 6622] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 6623] chdir("./file0" [pid 6622] exit_group(0 [pid 6624] <... mount resumed>) = 0 [pid 6623] <... chdir resumed>) = 0 [pid 6622] <... exit_group resumed>) = ? [pid 6623] ioctl(4, LOOP_CLR_FD [pid 6624] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6623] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6624] <... openat resumed>) = 3 [pid 5030] close(3 [pid 6624] chdir("./file0" [pid 6623] close(4 [pid 5030] <... close resumed>) = 0 [pid 6624] <... chdir resumed>) = 0 [pid 6623] <... close resumed>) = 0 [pid 5030] rmdir("./262" [pid 6625] <... mount resumed>) = 0 [pid 6624] ioctl(4, LOOP_CLR_FD [pid 6623] exit_group(0 [pid 6622] +++ exited with 0 +++ [pid 5030] <... rmdir resumed>) = 0 [pid 6625] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6624] <... ioctl resumed>) = 0 [pid 6623] <... exit_group resumed>) = ? [pid 6625] <... openat resumed>) = 3 [pid 6624] close(4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6622, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=2 /* 0.02 s */} --- [pid 5030] mkdir("./263", 0777 [pid 6625] chdir("./file0" [pid 6624] <... close resumed>) = 0 [pid 6623] +++ exited with 0 +++ [pid 5033] umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 6625] <... chdir resumed>) = 0 [pid 6624] exit_group(0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6623, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [ 230.725338][ T6625] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6625] ioctl(4, LOOP_CLR_FD [pid 6626] <... write resumed>) = 2097152 [pid 6624] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6626] munmap(0x7ff0df171000, 138412032) = 0 [pid 6625] <... ioctl resumed>) = 0 [pid 6624] +++ exited with 0 +++ [pid 5033] openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 5034] umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6625] close(4) = 0 [pid 5034] openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(3, "", [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6624, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(3 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6625] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6625] <... exit_group resumed>) = ? [pid 5034] getdents64(3, [pid 5033] getdents64(3, [pid 5030] <... close resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6625] +++ exited with 0 +++ [pid 5033] umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6625, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- [pid 6626] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6627 [pid 5029] umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6626] <... openat resumed>) = 4 [pid 5033] newfstatat(AT_FDCWD, "./258/binderfs", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6626] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] unlink("./258/binderfs" [pid 5029] <... openat resumed>) = 3 [pid 5034] umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... unlink resumed>) = 0 [pid 5032] umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(3, "", ./strace-static-x86_64: Process 6627 attached [pid 5033] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6627] set_robust_list(0x55555635e660, 24 [pid 5034] newfstatat(AT_FDCWD, "./256/binderfs", [pid 5032] openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6627] <... set_robust_list resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6627] chdir("./263" [pid 5034] unlink("./256/binderfs" [pid 5032] newfstatat(3, "", [pid 5029] getdents64(3, [pid 6627] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6627] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 6627] <... prctl resumed>) = 0 [pid 5029] umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6627] setpgid(0, 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6627] <... setpgid resumed>) = 0 [pid 6627] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6627] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6627] write(3, "1000", 4 [pid 5029] newfstatat(AT_FDCWD, "./264/binderfs", [pid 5032] newfstatat(AT_FDCWD, "./265/binderfs", [pid 6627] <... write resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6627] close(3 [pid 5032] unlink("./265/binderfs" [pid 5029] unlink("./264/binderfs" [pid 6627] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6627] symlink("/dev/binderfs", "./binderfs" [pid 5029] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6627] <... symlink resumed>) = 0 [pid 5032] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6627] memfd_create("syzkaller", 0 [pid 6626] <... ioctl resumed>) = 0 [pid 6626] close(3) = 0 [pid 6626] mkdir("./file0", 0777) = 0 [pid 6626] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6627] <... memfd_create resumed>) = 3 [pid 6627] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] <... umount2 resumed>) = 0 [ 230.818379][ T6626] loop2: detected capacity change from 0 to 4096 [ 230.851761][ T6626] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./258/file0", [pid 5034] newfstatat(AT_FDCWD, "./256/file0", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(4, "", [pid 5029] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(AT_FDCWD, "./264/file0", [pid 5034] getdents64(4, [pid 5033] getdents64(4, [pid 5032] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./265/file0", [pid 5034] close(4) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6627] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] rmdir("./256/file0" [pid 5032] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5029] openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(3, [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5029] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5032] newfstatat(4, "", [pid 5034] close(3 [pid 5033] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(4, "", [pid 5034] <... close resumed>) = 0 [pid 5033] rmdir("./258/file0" [pid 5032] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] rmdir("./256" [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5033] getdents64(3, [pid 5032] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6626] <... mount resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 6626] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] mkdir("./257", 0777 [pid 5033] close(3 [pid 5032] close(4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6626] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] close(4 [pid 6626] chdir("./file0" [pid 5034] <... mkdir resumed>) = 0 [pid 6626] <... chdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] rmdir("./258" [pid 5032] rmdir("./265/file0" [pid 5029] <... close resumed>) = 0 [pid 6626] ioctl(4, LOOP_CLR_FD [pid 5033] <... rmdir resumed>) = 0 [pid 5029] rmdir("./264/file0" [pid 6626] <... ioctl resumed>) = 0 [pid 5033] mkdir("./259", 0777 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6626] close(4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... mkdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5029] getdents64(3, [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6626] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... close resumed>) = 0 [pid 6626] exit_group(0 [pid 5033] <... openat resumed>) = 3 [pid 5029] close(3 [pid 6626] <... exit_group resumed>) = ? [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 6628 attached [pid 6626] +++ exited with 0 +++ [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] rmdir("./265" [pid 5029] rmdir("./264" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6626, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5033] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6628] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] mkdir("./266", 0777 [pid 5029] mkdir("./265", 0777 [pid 6628] chdir("./257" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... mkdir resumed>) = 0 [pid 5031] umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6628] <... chdir resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6628 [pid 6628] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6628] <... prctl resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6628] setpgid(0, 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6629 [pid 5031] newfstatat(3, "", [pid 5029] <... openat resumed>) = 3 [pid 6628] <... setpgid resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6628] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5031] getdents64(3, [pid 5032] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 6629 attached [pid 6628] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6629] set_robust_list(0x55555635e660, 24 [pid 6628] write(3, "1000", 4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6629] <... set_robust_list resumed>) = 0 [pid 5032] close(3 [pid 5031] umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6629] chdir("./259" [pid 6628] <... write resumed>) = 4 [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6628] close(3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(AT_FDCWD, "./262/binderfs", ./strace-static-x86_64: Process 6630 attached [pid 6629] <... chdir resumed>) = 0 [pid 6628] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6630 [pid 5031] unlink("./262/binderfs"./strace-static-x86_64: Process 6631 attached [pid 6628] symlink("/dev/binderfs", "./binderfs" [pid 6630] set_robust_list(0x55555635e660, 24 [pid 6629] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6630] <... set_robust_list resumed>) = 0 [pid 6631] set_robust_list(0x55555635e660, 24 [pid 6630] chdir("./265" [pid 6629] <... prctl resumed>) = 0 [pid 6628] <... symlink resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6631 [pid 5031] <... unlink resumed>) = 0 [pid 6631] <... set_robust_list resumed>) = 0 [pid 6630] <... chdir resumed>) = 0 [pid 6629] setpgid(0, 0 [pid 5031] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6630] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6629] <... setpgid resumed>) = 0 [pid 6630] <... prctl resumed>) = 0 [pid 6631] chdir("./266" [pid 6630] setpgid(0, 0 [pid 6629] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6630] <... setpgid resumed>) = 0 [pid 6629] <... openat resumed>) = 3 [pid 6631] <... chdir resumed>) = 0 [pid 6630] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6629] write(3, "1000", 4 [pid 6631] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6630] <... openat resumed>) = 3 [pid 6629] <... write resumed>) = 4 [pid 6628] memfd_create("syzkaller", 0 [pid 6631] <... prctl resumed>) = 0 [pid 6630] write(3, "1000", 4 [pid 6629] close(3 [pid 6627] <... write resumed>) = 2097152 [pid 6631] setpgid(0, 0 [pid 6630] <... write resumed>) = 4 [pid 6629] <... close resumed>) = 0 [pid 6628] <... memfd_create resumed>) = 3 [pid 6631] <... setpgid resumed>) = 0 [pid 6630] close(3 [pid 6628] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6631] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6630] <... close resumed>) = 0 [pid 6629] symlink("/dev/binderfs", "./binderfs" [pid 6630] symlink("/dev/binderfs", "./binderfs" [pid 6629] <... symlink resumed>) = 0 [pid 6631] <... openat resumed>) = 3 [pid 6630] <... symlink resumed>) = 0 [pid 6629] memfd_create("syzkaller", 0 [pid 6631] write(3, "1000", 4 [pid 6630] memfd_create("syzkaller", 0 [pid 6631] <... write resumed>) = 4 [pid 6630] <... memfd_create resumed>) = 3 [pid 6629] <... memfd_create resumed>) = 3 [pid 6630] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6629] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6630] <... mmap resumed>) = 0x7ff0df171000 [pid 6629] <... mmap resumed>) = 0x7ff0df171000 [pid 6631] close(3 [pid 6628] <... mmap resumed>) = 0x7ff0df171000 [pid 6627] munmap(0x7ff0df171000, 138412032 [pid 6631] <... close resumed>) = 0 [pid 6627] <... munmap resumed>) = 0 [pid 6631] symlink("/dev/binderfs", "./binderfs" [pid 6627] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6627] ioctl(4, LOOP_SET_FD, 3 [pid 6631] <... symlink resumed>) = 0 [pid 6631] memfd_create("syzkaller", 0) = 3 [pid 6631] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6627] <... ioctl resumed>) = 0 [pid 6627] close(3) = 0 [pid 6627] mkdir("./file0", 0777) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6627] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5031] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 231.068973][ T6627] loop1: detected capacity change from 0 to 4096 [pid 5031] newfstatat(AT_FDCWD, "./262/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6629] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6628] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6631] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./262/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./262") = 0 [pid 5031] mkdir("./263", 0777) = 0 [ 231.119185][ T6627] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 6630] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6631] <... write resumed>) = 2097152 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6632 attached [pid 6631] munmap(0x7ff0df171000, 138412032 [pid 6632] set_robust_list(0x55555635e660, 24 [pid 6631] <... munmap resumed>) = 0 [pid 6632] <... set_robust_list resumed>) = 0 [pid 6632] chdir("./263") = 0 [pid 6631] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6628] <... write resumed>) = 2097152 [pid 6631] <... openat resumed>) = 4 [pid 6632] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6631] ioctl(4, LOOP_SET_FD, 3 [pid 6628] munmap(0x7ff0df171000, 138412032 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6632 [pid 6627] <... mount resumed>) = 0 [pid 6627] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6627] chdir("./file0" [pid 6632] <... prctl resumed>) = 0 [pid 6627] <... chdir resumed>) = 0 [pid 6627] ioctl(4, LOOP_CLR_FD [pid 6632] setpgid(0, 0 [pid 6627] <... ioctl resumed>) = 0 [pid 6627] close(4 [pid 6632] <... setpgid resumed>) = 0 [pid 6631] <... ioctl resumed>) = 0 [pid 6628] <... munmap resumed>) = 0 [pid 6627] <... close resumed>) = 0 [pid 6632] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6631] close(3 [pid 6628] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6627] exit_group(0 [pid 6631] <... close resumed>) = 0 [pid 6628] <... openat resumed>) = 4 [pid 6627] <... exit_group resumed>) = ? [pid 6632] <... openat resumed>) = 3 [pid 6631] mkdir("./file0", 0777 [pid 6629] <... write resumed>) = 2097152 [pid 6628] ioctl(4, LOOP_SET_FD, 3 [pid 6627] +++ exited with 0 +++ [pid 6632] write(3, "1000", 4 [pid 6628] <... ioctl resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6627, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6632] <... write resumed>) = 4 [pid 6631] <... mkdir resumed>) = 0 [pid 6629] munmap(0x7ff0df171000, 138412032 [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6631] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6629] <... munmap resumed>) = 0 [pid 5030] umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6632] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6632] <... close resumed>) = 0 [pid 6629] openat(AT_FDCWD, "/dev/loop4", O_RDWR [ 231.212833][ T6631] loop3: detected capacity change from 0 to 4096 [ 231.244921][ T6628] loop5: detected capacity change from 0 to 4096 [pid 5030] openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6632] symlink("/dev/binderfs", "./binderfs" [pid 5030] umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6629] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6632] <... symlink resumed>) = 0 [pid 6629] ioctl(4, LOOP_SET_FD, 3 [pid 5030] newfstatat(AT_FDCWD, "./263/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./263/binderfs" [pid 6630] <... write resumed>) = 2097152 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6632] memfd_create("syzkaller", 0 [pid 6630] munmap(0x7ff0df171000, 138412032 [pid 6629] <... ioctl resumed>) = 0 [pid 6628] close(3 [pid 6632] <... memfd_create resumed>) = 3 [pid 6630] <... munmap resumed>) = 0 [pid 6629] close(3 [pid 6628] <... close resumed>) = 0 [pid 6632] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6630] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6629] <... close resumed>) = 0 [pid 6628] mkdir("./file0", 0777 [pid 6632] <... mmap resumed>) = 0x7ff0df171000 [pid 6630] <... openat resumed>) = 4 [pid 6629] mkdir("./file0", 0777 [pid 6628] <... mkdir resumed>) = 0 [pid 6629] <... mkdir resumed>) = 0 [pid 6628] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6630] ioctl(4, LOOP_SET_FD, 3 [pid 6629] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6630] <... ioctl resumed>) = 0 [ 231.258798][ T6631] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 231.271760][ T6629] loop4: detected capacity change from 0 to 4096 [ 231.295881][ T6630] loop0: detected capacity change from 0 to 4096 [pid 5030] <... umount2 resumed>) = 0 [pid 6631] <... mount resumed>) = 0 [pid 5030] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6631] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6631] <... openat resumed>) = 3 [pid 5030] newfstatat(AT_FDCWD, "./263/file0", [pid 6631] chdir("./file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6630] close(3 [pid 6631] <... chdir resumed>) = 0 [pid 6630] <... close resumed>) = 0 [pid 6630] mkdir("./file0", 0777) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6631] ioctl(4, LOOP_CLR_FD) = 0 [ 231.306014][ T6628] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 231.315840][ T6629] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6631] close(4) = 0 [pid 5030] openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6630] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6632] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6631] exit_group(0 [pid 5030] <... openat resumed>) = 4 [pid 6631] <... exit_group resumed>) = ? [pid 5030] newfstatat(4, "", [pid 6631] +++ exited with 0 +++ [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6631, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5032] umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./263/file0" [pid 5032] openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] rmdir("./263" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... rmdir resumed>) = 0 [pid 5032] umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./264", 0777) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./266/binderfs", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./266/binderfs" [pid 5030] <... openat resumed>) = 3 [pid 6632] <... write resumed>) = 2097152 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6633 ./strace-static-x86_64: Process 6633 attached [pid 6633] set_robust_list(0x55555635e660, 24) = 0 [pid 6633] chdir("./264") = 0 [pid 6633] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 231.354011][ T6630] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6633] setpgid(0, 0) = 0 [pid 6633] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6629] <... mount resumed>) = 0 [pid 6633] write(3, "1000", 4 [pid 5032] <... umount2 resumed>) = 0 [pid 6633] <... write resumed>) = 4 [pid 6629] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6633] close(3 [pid 6629] <... openat resumed>) = 3 [pid 5032] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6633] <... close resumed>) = 0 [pid 6632] munmap(0x7ff0df171000, 138412032 [pid 6629] chdir("./file0" [pid 6628] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6633] symlink("/dev/binderfs", "./binderfs" [pid 6632] <... munmap resumed>) = 0 [pid 6630] <... mount resumed>) = 0 [pid 6633] <... symlink resumed>) = 0 [pid 6632] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6630] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./266/file0", [pid 6630] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6632] <... openat resumed>) = 4 [pid 6633] memfd_create("syzkaller", 0 [pid 6632] ioctl(4, LOOP_SET_FD, 3 [pid 6630] chdir("./file0" [pid 5032] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6630] <... chdir resumed>) = 0 [pid 6630] ioctl(4, LOOP_CLR_FD) = 0 [pid 6630] close(4 [pid 6629] <... chdir resumed>) = 0 [pid 6630] <... close resumed>) = 0 [pid 6629] ioctl(4, LOOP_CLR_FD [pid 6628] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6630] exit_group(0 [pid 6629] <... ioctl resumed>) = 0 [pid 6628] <... openat resumed>) = 3 [pid 6629] close(4 [pid 6628] chdir("./file0" [pid 6629] <... close resumed>) = 0 [pid 6628] <... chdir resumed>) = 0 [pid 6629] exit_group(0 [pid 6628] ioctl(4, LOOP_CLR_FD [pid 6629] <... exit_group resumed>) = ? [pid 6628] <... ioctl resumed>) = 0 [pid 6628] close(4) = 0 [pid 6628] exit_group(0 [pid 6633] <... memfd_create resumed>) = 3 [pid 6629] +++ exited with 0 +++ [pid 6628] <... exit_group resumed>) = ? [pid 6633] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6630] <... exit_group resumed>) = ? [pid 6628] +++ exited with 0 +++ [pid 6630] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6629, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6628, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6630, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5029] umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6633] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 4 [pid 5029] newfstatat(3, "", [pid 5032] newfstatat(4, "", [pid 5034] openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5034] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./265/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./265/binderfs") = 0 [pid 5029] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6632] <... ioctl resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 5033] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6632] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(3, "", [pid 5032] getdents64(4, [pid 5034] getdents64(3, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] getdents64(3, [pid 5032] close(4 [pid 5034] umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... close resumed>) = 0 [pid 5033] umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./266/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./259/binderfs", [pid 5034] newfstatat(AT_FDCWD, "./257/binderfs", [pid 6632] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(3, [pid 6632] mkdir("./file0", 0777 [pid 5034] unlink("./257/binderfs" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6632] <... mkdir resumed>) = 0 [ 231.458337][ T6632] loop2: detected capacity change from 0 to 4096 [pid 5034] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(3 [pid 5033] unlink("./259/binderfs" [pid 5032] <... close resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5032] rmdir("./266") = 0 [pid 5033] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6632] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5032] mkdir("./267", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6634 attached , child_tidptr=0x55555635e650) = 6634 [pid 6634] set_robust_list(0x55555635e660, 24) = 0 [pid 6634] chdir("./267" [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5034] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./259/file0", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./257/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 6634] <... chdir resumed>) = 0 [pid 6634] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] rmdir("./257/file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6634] <... prctl resumed>) = 0 [pid 6634] setpgid(0, 0 [pid 6633] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 6634] <... setpgid resumed>) = 0 [ 231.504616][ T6632] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6634] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] getdents64(3, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5034] close(3) = 0 [pid 6634] <... openat resumed>) = 3 [pid 5033] newfstatat(4, "", [pid 5034] rmdir("./257") = 0 [pid 5034] mkdir("./258", 0777 [pid 6634] write(3, "1000", 4 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6634] <... write resumed>) = 4 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6634] close(3) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 5029] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6634] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6634] <... symlink resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6632] <... mount resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] newfstatat(AT_FDCWD, "./265/file0", [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./259/file0" [pid 6632] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6632] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 5029] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6632] chdir("./file0" [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6632] <... chdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6635 attached [pid 6632] ioctl(4, LOOP_CLR_FD [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6635 [pid 5029] <... openat resumed>) = 4 [pid 6632] <... ioctl resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 6632] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6632] <... close resumed>) = 0 [pid 5029] getdents64(4, [pid 6635] set_robust_list(0x55555635e660, 24 [pid 6632] exit_group(0 [pid 5033] <... rmdir resumed>) = 0 [pid 6632] <... exit_group resumed>) = ? [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6634] memfd_create("syzkaller", 0 [pid 6632] +++ exited with 0 +++ [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./265/file0" [pid 5033] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 6635] <... set_robust_list resumed>) = 0 [pid 6634] <... memfd_create resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 6635] chdir("./258" [pid 5033] close(3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6632, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6635] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6635] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] rmdir("./259" [pid 6634] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./265" [pid 6635] <... prctl resumed>) = 0 [pid 6634] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6635] setpgid(0, 0 [pid 5031] umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] mkdir("./266", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6636 attached , child_tidptr=0x55555635e650) = 6636 [pid 6636] set_robust_list(0x55555635e660, 24) = 0 [pid 6636] chdir("./266") = 0 [pid 6635] <... setpgid resumed>) = 0 [pid 6633] <... write resumed>) = 2097152 [pid 5033] mkdir("./260", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6636] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6636] setpgid(0, 0) = 0 [pid 6636] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... mkdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6635] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6636] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6636] write(3, "1000", 4 [pid 6635] <... openat resumed>) = 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(3, "", [pid 6636] <... write resumed>) = 4 [pid 6633] munmap(0x7ff0df171000, 138412032 [pid 6636] close(3 [pid 6633] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6636] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 6636] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6635] write(3, "1000", 4 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6636] memfd_create("syzkaller", 0 [pid 6635] <... write resumed>) = 4 [pid 6636] <... memfd_create resumed>) = 3 [pid 6636] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 ./strace-static-x86_64: Process 6637 attached [pid 6635] close(3 [pid 6634] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6637] set_robust_list(0x55555635e660, 24 [pid 6635] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./263/binderfs", [pid 6635] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6637] <... set_robust_list resumed>) = 0 [pid 6635] <... symlink resumed>) = 0 [pid 6633] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6637 [pid 5031] unlink("./263/binderfs" [pid 6633] <... openat resumed>) = 4 [pid 6633] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... unlink resumed>) = 0 [pid 6637] chdir("./260" [pid 6635] memfd_create("syzkaller", 0 [pid 5031] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6637] <... chdir resumed>) = 0 [pid 6637] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6635] <... memfd_create resumed>) = 3 [pid 6637] <... prctl resumed>) = 0 [pid 6635] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6633] <... ioctl resumed>) = 0 [pid 6635] <... mmap resumed>) = 0x7ff0df171000 [pid 6637] setpgid(0, 0 [pid 6633] close(3 [pid 6637] <... setpgid resumed>) = 0 [pid 6633] <... close resumed>) = 0 [pid 6633] mkdir("./file0", 0777 [pid 6637] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6633] <... mkdir resumed>) = 0 [pid 6633] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6637] <... openat resumed>) = 3 [pid 6637] write(3, "1000", 4) = 4 [pid 6637] close(3) = 0 [pid 6637] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6637] memfd_create("syzkaller", 0 [pid 6636] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./263/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6637] <... memfd_create resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6637] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... openat resumed>) = 4 [pid 6637] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [ 231.699471][ T6633] loop1: detected capacity change from 0 to 4096 [ 231.731001][ T6633] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(4, [pid 6634] <... write resumed>) = 2097152 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./263/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./263") = 0 [pid 5031] mkdir("./264", 0777) = 0 [pid 6635] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6634] munmap(0x7ff0df171000, 138412032 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6634] <... munmap resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6634] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] close(3 [pid 6634] <... openat resumed>) = 4 [pid 5031] <... close resumed>) = 0 [pid 6636] <... write resumed>) = 2097152 [pid 6634] ioctl(4, LOOP_SET_FD, 3 [pid 6633] <... mount resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6638 attached [pid 6633] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6633] chdir("./file0") = 0 [pid 6633] ioctl(4, LOOP_CLR_FD) = 0 [pid 6633] close(4 [pid 6638] set_robust_list(0x55555635e660, 24 [pid 6633] <... close resumed>) = 0 [pid 6633] exit_group(0 [pid 6638] <... set_robust_list resumed>) = 0 [pid 6633] <... exit_group resumed>) = ? [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6638 [pid 6638] chdir("./264" [pid 6633] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6633, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5030] umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6638] <... chdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6638] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6638] <... prctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6638] setpgid(0, 0 [pid 5030] newfstatat(AT_FDCWD, "./264/binderfs", [pid 6638] <... setpgid resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6638] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] unlink("./264/binderfs" [pid 6638] <... openat resumed>) = 3 [pid 6634] <... ioctl resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6634] close(3 [pid 5030] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6637] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6634] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6638] write(3, "1000", 4 [pid 6636] munmap(0x7ff0df171000, 138412032 [pid 5030] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6638] <... write resumed>) = 4 [pid 6634] mkdir("./file0", 0777 [pid 6638] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6638] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./264/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6634] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6638] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6638] memfd_create("syzkaller", 0 [pid 6634] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] <... openat resumed>) = 4 [pid 6636] <... munmap resumed>) = 0 [pid 6636] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5030] newfstatat(4, "", [pid 6638] <... memfd_create resumed>) = 3 [ 231.835229][ T6634] loop3: detected capacity change from 0 to 4096 [pid 6636] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6638] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6636] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, [pid 6638] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./264/file0") = 0 [pid 6635] <... write resumed>) = 2097152 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./264") = 0 [pid 6636] <... ioctl resumed>) = 0 [pid 6636] close(3) = 0 [pid 6636] mkdir("./file0", 0777 [pid 5030] mkdir("./265", 0777 [pid 6636] <... mkdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 6636] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] <... close resumed>) = 0 [ 231.882109][ T6636] loop0: detected capacity change from 0 to 4096 [ 231.889607][ T6634] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6639 attached , child_tidptr=0x55555635e650) = 6639 [pid 6635] munmap(0x7ff0df171000, 138412032 [pid 6639] set_robust_list(0x55555635e660, 24 [pid 6635] <... munmap resumed>) = 0 [pid 6639] <... set_robust_list resumed>) = 0 [pid 6639] chdir("./265") = 0 [pid 6639] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6639] setpgid(0, 0) = 0 [pid 6639] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6639] write(3, "1000", 4) = 4 [pid 6639] close(3 [pid 6635] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6639] <... close resumed>) = 0 [pid 6635] <... openat resumed>) = 4 [pid 6639] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6635] ioctl(4, LOOP_SET_FD, 3 [pid 6639] memfd_create("syzkaller", 0 [pid 6637] <... write resumed>) = 2097152 [pid 6637] munmap(0x7ff0df171000, 138412032 [pid 6639] <... memfd_create resumed>) = 3 [pid 6639] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6637] <... munmap resumed>) = 0 [pid 6634] <... mount resumed>) = 0 [pid 6637] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6634] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 231.924394][ T6636] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 231.950267][ T6635] loop5: detected capacity change from 0 to 4096 [pid 6637] <... openat resumed>) = 4 [pid 6634] chdir("./file0" [pid 6637] ioctl(4, LOOP_SET_FD, 3 [pid 6634] <... chdir resumed>) = 0 [pid 6634] ioctl(4, LOOP_CLR_FD [pid 6638] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6635] <... ioctl resumed>) = 0 [pid 6635] close(3) = 0 [pid 6635] mkdir("./file0", 0777) = 0 [pid 6634] <... ioctl resumed>) = 0 [pid 6634] close(4) = 0 [pid 6634] exit_group(0) = ? [pid 6635] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6634] +++ exited with 0 +++ [pid 6637] <... ioctl resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6634, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6637] close(3 [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6637] <... close resumed>) = 0 [pid 6637] mkdir("./file0", 0777 [pid 5032] umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6637] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6637] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6636] <... mount resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6636] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 6636] <... openat resumed>) = 3 [pid 6636] chdir("./file0") = 0 [pid 6636] ioctl(4, LOOP_CLR_FD) = 0 [pid 6636] close(4) = 0 [pid 6636] exit_group(0) = ? [pid 6636] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 231.984883][ T6637] loop4: detected capacity change from 0 to 4096 [ 232.000213][ T6635] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6636, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] getdents64(3, [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6639] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... restart_syscall resumed>) = 0 [pid 5029] umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6638] <... write resumed>) = 2097152 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./266/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./266/binderfs") = 0 [pid 5029] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./267/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./267/binderfs") = 0 [ 232.043146][ T6637] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6638] munmap(0x7ff0df171000, 138412032 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./267/file0", [pid 6635] <... mount resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = 0 [pid 6638] <... munmap resumed>) = 0 [pid 6637] <... mount resumed>) = 0 [pid 6635] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6635] <... openat resumed>) = 3 [pid 6638] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6637] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6635] chdir("./file0" [pid 6638] <... openat resumed>) = 4 [pid 6637] <... openat resumed>) = 3 [pid 6635] <... chdir resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6637] chdir("./file0" [pid 6635] ioctl(4, LOOP_CLR_FD [pid 5032] newfstatat(4, "", [pid 6638] ioctl(4, LOOP_SET_FD, 3 [pid 6637] <... chdir resumed>) = 0 [pid 6635] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6637] ioctl(4, LOOP_CLR_FD [pid 6635] close(4) = 0 [pid 6635] exit_group(0 [pid 6637] <... ioctl resumed>) = 0 [pid 6635] <... exit_group resumed>) = ? [pid 6637] close(4 [pid 5032] getdents64(4, [pid 6637] <... close resumed>) = 0 [pid 6635] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6635, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./266/file0", [pid 5034] openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] newfstatat(3, "", [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6639] <... write resumed>) = 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6637] exit_group(0 [pid 5034] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(4, "", [pid 6637] <... exit_group resumed>) = ? [pid 5034] newfstatat(AT_FDCWD, "./258/binderfs", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5034] unlink("./258/binderfs" [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./266/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6638] <... ioctl resumed>) = 0 [pid 5034] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6638] close(3 [pid 5029] rmdir("./266" [pid 6638] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6638] mkdir("./file0", 0777 [pid 5029] mkdir("./267", 0777 [pid 6638] <... mkdir resumed>) = 0 [pid 6637] +++ exited with 0 +++ [pid 5032] close(4 [pid 5029] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6637, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5032] rmdir("./267/file0" [pid 6638] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5033] umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5029] close(3 [pid 5033] newfstatat(3, "", [pid 5032] rmdir("./267" [pid 5029] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6639] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(3, [pid 5032] mkdir("./268", 0777 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6640 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 232.130507][ T6638] loop2: detected capacity change from 0 to 4096 [ 232.168962][ T6638] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 ./strace-static-x86_64: Process 6640 attached [pid 6639] <... munmap resumed>) = 0 [pid 6640] set_robust_list(0x55555635e660, 24 [pid 6639] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] newfstatat(AT_FDCWD, "./260/binderfs", [pid 6639] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6640] <... set_robust_list resumed>) = 0 [pid 6639] ioctl(4, LOOP_SET_FD, 3 [pid 6640] chdir("./267" [pid 5033] unlink("./260/binderfs" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6640] <... chdir resumed>) = 0 [pid 6640] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6640] setpgid(0, 0 [pid 5032] close(3 [pid 6640] <... setpgid resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6640] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6640] <... openat resumed>) = 3 [pid 6640] write(3, "1000", 4) = 4 [pid 6640] close(3) = 0 [pid 6640] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 6641 attached ) = 0 [pid 5033] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6641] set_robust_list(0x55555635e660, 24 [pid 6640] memfd_create("syzkaller", 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6641 [pid 6640] <... memfd_create resumed>) = 3 [pid 6640] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6641] <... set_robust_list resumed>) = 0 [pid 6641] chdir("./268" [pid 6639] <... ioctl resumed>) = 0 [pid 6641] <... chdir resumed>) = 0 [pid 6640] <... mmap resumed>) = 0x7ff0df171000 [pid 6639] close(3) = 0 [pid 6641] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6639] mkdir("./file0", 0777 [ 232.188489][ T6639] loop1: detected capacity change from 0 to 4096 [pid 6641] setpgid(0, 0) = 0 [pid 6639] <... mkdir resumed>) = 0 [pid 6639] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./258/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6641] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = 0 [pid 6641] write(3, "1000", 4) = 4 [pid 6641] close(3) = 0 [pid 6641] symlink("/dev/binderfs", "./binderfs" [pid 5034] newfstatat(4, "", [pid 6641] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./260/file0", [pid 6641] memfd_create("syzkaller", 0 [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] newfstatat(4, "", [pid 5034] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 6641] <... memfd_create resumed>) = 3 [pid 5034] rmdir("./258/file0" [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6641] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] getdents64(4, [pid 6641] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6638] <... mount resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] close(4 [pid 6638] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 6638] <... openat resumed>) = 3 [pid 5034] getdents64(3, [ 232.254258][ T6639] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] rmdir("./260/file0" [pid 6640] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6638] chdir("./file0" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./260") = 0 [pid 5034] close(3) = 0 [pid 6638] <... chdir resumed>) = 0 [pid 5034] rmdir("./258" [pid 6638] ioctl(4, LOOP_CLR_FD [pid 5034] <... rmdir resumed>) = 0 [pid 5033] mkdir("./261", 0777) = 0 [pid 6638] <... ioctl resumed>) = 0 [pid 6638] close(4) = 0 [pid 6638] exit_group(0 [pid 5034] mkdir("./259", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6638] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 3 [pid 6638] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6638, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6642 attached [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6642] set_robust_list(0x55555635e660, 24 [pid 5034] close(3 [pid 5031] openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6642] <... set_robust_list resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6642 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 6642] chdir("./261" [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6642] <... chdir resumed>) = 0 [pid 5031] getdents64(3, [pid 6642] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 6643 attached ) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6643] set_robust_list(0x55555635e660, 24 [pid 6642] setpgid(0, 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6643 [pid 5031] umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6643] <... set_robust_list resumed>) = 0 [pid 6642] <... setpgid resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6643] chdir("./259" [pid 6642] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6643] <... chdir resumed>) = 0 [pid 6642] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./264/binderfs", [pid 6642] write(3, "1000", 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6643] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6642] <... write resumed>) = 4 [pid 5031] unlink("./264/binderfs" [pid 6643] <... prctl resumed>) = 0 [pid 6642] close(3 [pid 6643] setpgid(0, 0) = 0 [pid 6642] <... close resumed>) = 0 [pid 6643] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... unlink resumed>) = 0 [pid 6643] <... openat resumed>) = 3 [pid 6642] symlink("/dev/binderfs", "./binderfs" [pid 5031] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6643] write(3, "1000", 4 [pid 6642] <... symlink resumed>) = 0 [pid 6643] <... write resumed>) = 4 [pid 6643] close(3) = 0 [pid 6643] symlink("/dev/binderfs", "./binderfs" [pid 6642] memfd_create("syzkaller", 0 [pid 6643] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6643] memfd_create("syzkaller", 0 [pid 6642] <... memfd_create resumed>) = 3 [pid 6642] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6642] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6643] <... memfd_create resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./264/file0", [pid 6639] <... mount resumed>) = 0 [pid 6643] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6641] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6640] <... write resumed>) = 2097152 [pid 6639] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6639] <... openat resumed>) = 3 [pid 6640] munmap(0x7ff0df171000, 138412032 [pid 5031] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6639] chdir("./file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6640] <... munmap resumed>) = 0 [pid 6639] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6639] ioctl(4, LOOP_CLR_FD) = 0 [pid 6639] close(4) = 0 [pid 6639] exit_group(0) = ? [pid 6639] +++ exited with 0 +++ [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6639, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./265/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(4, [pid 5030] unlink("./265/binderfs") = 0 [pid 5030] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6640] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6640] <... openat resumed>) = 4 [pid 5031] getdents64(4, [pid 6640] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 6641] <... write resumed>) = 2097152 [pid 6640] <... ioctl resumed>) = 0 [pid 5031] rmdir("./264/file0" [pid 6641] munmap(0x7ff0df171000, 138412032 [pid 6640] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 6641] <... munmap resumed>) = 0 [pid 6640] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 6640] mkdir("./file0", 0777 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6642] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6640] <... mkdir resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./264" [pid 6640] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./265", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [ 232.439082][ T6640] loop0: detected capacity change from 0 to 4096 [pid 6641] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] close(3) = 0 [pid 6641] <... openat resumed>) = 4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6644 attached [pid 6644] set_robust_list(0x55555635e660, 24) = 0 [pid 6644] chdir("./265" [pid 6641] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6644 [pid 6644] <... chdir resumed>) = 0 [pid 6644] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6644] setpgid(0, 0) = 0 [pid 6644] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6644] write(3, "1000", 4 [pid 5030] <... umount2 resumed>) = 0 [pid 6644] <... write resumed>) = 4 [pid 6644] close(3) = 0 [pid 6644] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6644] memfd_create("syzkaller", 0) = 3 [pid 6644] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6641] <... ioctl resumed>) = 0 [pid 6641] close(3) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6641] mkdir("./file0", 0777 [pid 5030] newfstatat(AT_FDCWD, "./265/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6643] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6641] <... mkdir resumed>) = 0 [ 232.495603][ T6640] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 232.507693][ T6641] loop3: detected capacity change from 0 to 4096 [pid 5030] newfstatat(4, "", [pid 6641] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./265/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./265") = 0 [pid 5030] mkdir("./266", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6645 attached [pid 6645] set_robust_list(0x55555635e660, 24 [pid 6642] <... write resumed>) = 2097152 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6645 [pid 6643] <... write resumed>) = 2097152 [pid 6645] <... set_robust_list resumed>) = 0 [pid 6645] chdir("./266") = 0 [pid 6642] munmap(0x7ff0df171000, 138412032 [pid 6643] munmap(0x7ff0df171000, 138412032 [pid 6642] <... munmap resumed>) = 0 [pid 6645] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6645] setpgid(0, 0) = 0 [pid 6643] <... munmap resumed>) = 0 [pid 6645] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6643] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6645] <... openat resumed>) = 3 [pid 6643] <... openat resumed>) = 4 [ 232.579031][ T6641] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6645] write(3, "1000", 4 [pid 6643] ioctl(4, LOOP_SET_FD, 3 [pid 6645] <... write resumed>) = 4 [pid 6645] close(3 [pid 6642] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6645] <... close resumed>) = 0 [pid 6645] symlink("/dev/binderfs", "./binderfs" [pid 6642] <... openat resumed>) = 4 [pid 6645] <... symlink resumed>) = 0 [pid 6642] ioctl(4, LOOP_SET_FD, 3 [pid 6645] memfd_create("syzkaller", 0) = 3 [pid 6644] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6645] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6640] <... mount resumed>) = 0 [pid 6640] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6640] chdir("./file0") = 0 [pid 6640] ioctl(4, LOOP_CLR_FD) = 0 [pid 6640] close(4 [pid 6643] <... ioctl resumed>) = 0 [pid 6640] <... close resumed>) = 0 [pid 6642] <... ioctl resumed>) = 0 [ 232.625838][ T6643] loop5: detected capacity change from 0 to 4096 [ 232.627549][ T6642] loop4: detected capacity change from 0 to 4096 [pid 6642] close(3 [pid 6643] close(3 [pid 6641] <... mount resumed>) = 0 [pid 6640] exit_group(0 [pid 6643] <... close resumed>) = 0 [pid 6640] <... exit_group resumed>) = ? [pid 6643] mkdir("./file0", 0777 [pid 6641] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6643] <... mkdir resumed>) = 0 [pid 6642] <... close resumed>) = 0 [pid 6641] <... openat resumed>) = 3 [pid 6640] +++ exited with 0 +++ [pid 6641] chdir("./file0" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6640, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6641] <... chdir resumed>) = 0 [pid 6642] mkdir("./file0", 0777 [pid 6643] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6642] <... mkdir resumed>) = 0 [pid 6641] ioctl(4, LOOP_CLR_FD [pid 6642] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6641] <... ioctl resumed>) = 0 [pid 5029] umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./267/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./267/binderfs") = 0 [pid 5029] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6641] close(4 [pid 6644] <... write resumed>) = 2097152 [pid 6641] <... close resumed>) = 0 [pid 6644] munmap(0x7ff0df171000, 138412032 [pid 6641] exit_group(0) = ? [pid 6645] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6644] <... munmap resumed>) = 0 [pid 6641] +++ exited with 0 +++ [pid 5029] <... umount2 resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6641, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5029] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(AT_FDCWD, "./267/file0", [pid 5032] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(3, "", [pid 5029] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 232.698545][ T6642] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 232.699635][ T6643] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6644] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] getdents64(3, [pid 5029] <... openat resumed>) = 4 [pid 6644] <... openat resumed>) = 4 [pid 6644] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6644] <... ioctl resumed>) = 0 [pid 6643] <... mount resumed>) = 0 [pid 5032] umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6643] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./268/binderfs", [pid 6643] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] unlink("./268/binderfs" [pid 6643] chdir("./file0" [pid 5029] close(4 [pid 6643] <... chdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 6643] ioctl(4, LOOP_CLR_FD [pid 5029] rmdir("./267/file0" [pid 6643] <... ioctl resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6643] close(4 [pid 5029] getdents64(3, [pid 6643] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6643] exit_group(0 [pid 5029] close(3 [pid 6643] <... exit_group resumed>) = ? [pid 5032] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./267" [pid 6644] close(3 [pid 6643] +++ exited with 0 +++ [pid 5029] <... rmdir resumed>) = 0 [pid 6644] <... close resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6643, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5029] mkdir("./268", 0777 [pid 6644] mkdir("./file0", 0777) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6644] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./259/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./259/binderfs") = 0 [pid 5034] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6645] <... write resumed>) = 2097152 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6642] <... mount resumed>) = 0 [pid 6642] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6646 attached ) = 3 [pid 6646] set_robust_list(0x55555635e660, 24 [pid 6642] chdir("./file0" [pid 6646] <... set_robust_list resumed>) = 0 [pid 6642] <... chdir resumed>) = 0 [pid 6646] chdir("./268" [pid 6642] ioctl(4, LOOP_CLR_FD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6646 [pid 6642] <... ioctl resumed>) = 0 [pid 6642] close(4) = 0 [pid 6646] <... chdir resumed>) = 0 [pid 6642] exit_group(0) = ? [pid 6646] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6645] munmap(0x7ff0df171000, 138412032 [pid 6642] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6642, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 6646] <... prctl resumed>) = 0 [ 232.764064][ T6644] loop2: detected capacity change from 0 to 4096 [ 232.791896][ T6644] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6645] <... munmap resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6646] setpgid(0, 0 [pid 5032] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6646] <... setpgid resumed>) = 0 [pid 5033] umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6646] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./268/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6646] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6646] write(3, "1000", 4 [pid 5033] openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 4 [pid 6646] <... write resumed>) = 4 [pid 5033] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", [pid 6646] close(3 [pid 5033] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6646] <... close resumed>) = 0 [pid 6645] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6645] <... openat resumed>) = 4 [pid 6646] symlink("/dev/binderfs", "./binderfs" [pid 5033] getdents64(3, [pid 6646] <... symlink resumed>) = 0 [pid 6645] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5033] newfstatat(AT_FDCWD, "./261/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6646] memfd_create("syzkaller", 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] unlink("./261/binderfs") = 0 [pid 5032] getdents64(4, [pid 5033] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./268/file0") = 0 [pid 6645] <... ioctl resumed>) = 0 [pid 6646] <... memfd_create resumed>) = 3 [pid 6646] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] getdents64(3, [pid 6646] <... mmap resumed>) = 0x7ff0df171000 [pid 6645] close(3) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] rmdir("./268" [pid 6645] mkdir("./file0", 0777) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./269", 0777) = 0 [pid 6645] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./259/file0", [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6647 ./strace-static-x86_64: Process 6647 attached [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6647] set_robust_list(0x55555635e660, 24 [pid 5034] getdents64(4, [pid 6647] <... set_robust_list resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6647] chdir("./269" [ 232.855283][ T6645] loop1: detected capacity change from 0 to 4096 [ 232.888789][ T6645] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] close(4) = 0 [pid 5034] rmdir("./259/file0" [pid 6647] <... chdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6647] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] getdents64(3, [pid 6647] <... prctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6647] setpgid(0, 0 [pid 5034] close(3) = 0 [pid 6647] <... setpgid resumed>) = 0 [pid 5034] rmdir("./259" [pid 6647] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... rmdir resumed>) = 0 [pid 6647] <... openat resumed>) = 3 [pid 5034] mkdir("./260", 0777 [pid 6644] <... mount resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6647] write(3, "1000", 4 [pid 6644] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6647] <... write resumed>) = 4 [pid 6644] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 6644] chdir("./file0" [pid 6647] close(3 [pid 6644] <... chdir resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6647] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6647] symlink("/dev/binderfs", "./binderfs" [pid 5034] close(3 [pid 6645] <... mount resumed>) = 0 [pid 6644] ioctl(4, LOOP_CLR_FD [pid 6645] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6644] <... ioctl resumed>) = 0 [pid 6647] <... symlink resumed>) = 0 [pid 6644] close(4 [pid 5034] <... close resumed>) = 0 [pid 6644] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6645] <... openat resumed>) = 3 [pid 6644] exit_group(0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6648 [pid 6644] <... exit_group resumed>) = ? [pid 6645] chdir("./file0"./strace-static-x86_64: Process 6648 attached [pid 6647] memfd_create("syzkaller", 0 [pid 6645] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./261/file0", [pid 6647] <... memfd_create resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6647] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6645] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6644] +++ exited with 0 +++ [pid 5033] openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", [pid 6648] set_robust_list(0x55555635e660, 24 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6644, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6648] <... set_robust_list resumed>) = 0 [pid 6645] <... ioctl resumed>) = 0 [pid 5031] umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6648] chdir("./260" [pid 6645] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6648] <... chdir resumed>) = 0 [pid 6647] <... mmap resumed>) = 0x7ff0df171000 [pid 6645] <... close resumed>) = 0 [pid 6648] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6645] exit_group(0 [pid 5033] getdents64(4, [pid 5031] <... openat resumed>) = 3 [pid 6648] <... prctl resumed>) = 0 [pid 6646] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6645] <... exit_group resumed>) = ? [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] newfstatat(3, "", [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 6648] setpgid(0, 0 [pid 6645] +++ exited with 0 +++ [pid 5033] rmdir("./261/file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6648] <... setpgid resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6645, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6648] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6648] <... openat resumed>) = 3 [pid 5031] umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6648] write(3, "1000", 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6648] <... write resumed>) = 4 [pid 5031] newfstatat(AT_FDCWD, "./265/binderfs", [pid 6648] close(3) = 0 [pid 5033] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6648] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./265/binderfs" [pid 5030] openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] close(3 [pid 5030] <... openat resumed>) = 3 [pid 6648] <... symlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6648] memfd_create("syzkaller", 0 [pid 5033] rmdir("./261" [pid 5031] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6648] <... memfd_create resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6648] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] mkdir("./262", 0777 [pid 5030] newfstatat(AT_FDCWD, "./266/binderfs", [pid 6648] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./266/binderfs") = 0 [pid 5030] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6649 attached , child_tidptr=0x55555635e650) = 6649 [pid 6649] set_robust_list(0x55555635e660, 24 [pid 6647] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6646] <... write resumed>) = 2097152 [pid 6649] <... set_robust_list resumed>) = 0 [pid 6649] chdir("./262") = 0 [pid 6646] munmap(0x7ff0df171000, 138412032 [pid 6649] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6646] <... munmap resumed>) = 0 [pid 6649] <... prctl resumed>) = 0 [pid 6649] setpgid(0, 0) = 0 [pid 6649] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6649] write(3, "1000", 4) = 4 [pid 6649] close(3) = 0 [pid 6649] symlink("/dev/binderfs", "./binderfs" [pid 6646] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6649] <... symlink resumed>) = 0 [pid 6646] <... openat resumed>) = 4 [pid 6646] ioctl(4, LOOP_SET_FD, 3 [pid 6649] memfd_create("syzkaller", 0) = 3 [pid 6649] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6646] <... ioctl resumed>) = 0 [pid 6646] close(3) = 0 [pid 6646] mkdir("./file0", 0777) = 0 [pid 6646] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6648] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6647] <... write resumed>) = 2097152 [pid 5030] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./266/file0", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./265/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 233.096553][ T6646] loop0: detected capacity change from 0 to 4096 [ 233.126678][ T6646] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6647] munmap(0x7ff0df171000, 138412032 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6647] <... munmap resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] close(4) = 0 [pid 5031] rmdir("./265/file0") = 0 [pid 5030] <... openat resumed>) = 4 [pid 5031] getdents64(3, [pid 5030] newfstatat(4, "", [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] close(3 [pid 5030] getdents64(4, [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./265") = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] mkdir("./266", 0777 [pid 6649] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] getdents64(4, [pid 6647] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6648] <... write resumed>) = 2097152 [pid 6647] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... openat resumed>) = 3 [pid 5030] close(4 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6648] munmap(0x7ff0df171000, 138412032 [pid 6646] <... mount resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./266/file0" [pid 6648] <... munmap resumed>) = 0 [pid 6646] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... rmdir resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] getdents64(3, [pid 6646] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6646] chdir("./file0" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6650 [pid 6646] <... chdir resumed>) = 0 [pid 6646] ioctl(4, LOOP_CLR_FD) = 0 [pid 6646] close(4) = 0 [pid 6646] exit_group(0) = ? ./strace-static-x86_64: Process 6650 attached [pid 5030] close(3 [pid 6650] set_robust_list(0x55555635e660, 24 [pid 6648] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6650] <... set_robust_list resumed>) = 0 [pid 6650] chdir("./266" [pid 5030] <... close resumed>) = 0 [pid 6650] <... chdir resumed>) = 0 [pid 6648] <... openat resumed>) = 4 [pid 6650] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6646] +++ exited with 0 +++ [pid 6650] <... prctl resumed>) = 0 [pid 6648] ioctl(4, LOOP_SET_FD, 3 [pid 6647] <... ioctl resumed>) = 0 [pid 5030] rmdir("./266" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6646, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6650] setpgid(0, 0 [pid 6647] close(3 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6650] <... setpgid resumed>) = 0 [pid 6647] <... close resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6650] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6647] mkdir("./file0", 0777 [pid 6650] <... openat resumed>) = 3 [pid 6650] write(3, "1000", 4 [pid 5029] umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6650] <... write resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6650] close(3 [pid 6647] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6650] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6650] symlink("/dev/binderfs", "./binderfs" [pid 5029] newfstatat(3, "", [pid 6650] <... symlink resumed>) = 0 [pid 6647] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] mkdir("./267", 0777 [ 233.211202][ T6647] loop3: detected capacity change from 0 to 4096 [ 233.240835][ T6648] loop5: detected capacity change from 0 to 4096 [pid 5029] umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6649] <... write resumed>) = 2097152 [pid 6648] <... ioctl resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6650] memfd_create("syzkaller", 0) = 3 [pid 6648] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6650] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6649] munmap(0x7ff0df171000, 138412032 [pid 6648] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./268/binderfs", [pid 6648] mkdir("./file0", 0777 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./268/binderfs" [pid 6648] <... mkdir resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... unlink resumed>) = 0 [pid 6648] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6651 ./strace-static-x86_64: Process 6651 attached [pid 6651] set_robust_list(0x55555635e660, 24) = 0 [pid 6649] <... munmap resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6651] chdir("./267" [pid 5029] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6651] <... chdir resumed>) = 0 [pid 6649] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6649] <... openat resumed>) = 4 [pid 6651] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] newfstatat(AT_FDCWD, "./268/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 233.253391][ T6647] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 233.276652][ T6648] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6651] <... prctl resumed>) = 0 [pid 6649] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./268/file0" [pid 6651] setpgid(0, 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./268") = 0 [pid 6651] <... setpgid resumed>) = 0 [pid 6651] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] mkdir("./269", 0777 [pid 6651] <... openat resumed>) = 3 [pid 6651] write(3, "1000", 4 [pid 6649] <... ioctl resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6651] <... write resumed>) = 4 [pid 6650] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6649] close(3 [pid 6647] <... mount resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6651] close(3 [pid 6649] <... close resumed>) = 0 [pid 6651] <... close resumed>) = 0 [pid 6649] mkdir("./file0", 0777 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6647] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6647] <... openat resumed>) = 3 [pid 5029] close(3 [pid 6651] symlink("/dev/binderfs", "./binderfs" [pid 6649] <... mkdir resumed>) = 0 [pid 6647] chdir("./file0" [pid 5029] <... close resumed>) = 0 [pid 6651] <... symlink resumed>) = 0 [pid 6649] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6647] <... chdir resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6647] ioctl(4, LOOP_CLR_FD./strace-static-x86_64: Process 6652 attached ) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6652 [pid 6652] set_robust_list(0x55555635e660, 24 [pid 6647] close(4 [pid 6652] <... set_robust_list resumed>) = 0 [pid 6647] <... close resumed>) = 0 [pid 6652] chdir("./269" [pid 6647] exit_group(0) = ? [pid 6652] <... chdir resumed>) = 0 [pid 6647] +++ exited with 0 +++ [pid 6652] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6652] setpgid(0, 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6647, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6652] <... setpgid resumed>) = 0 [pid 5032] umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6652] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6652] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6652] write(3, "1000", 4 [pid 5032] newfstatat(3, "", [pid 6652] <... write resumed>) = 4 [pid 6652] close(3 [pid 6651] memfd_create("syzkaller", 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6652] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 6652] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6652] <... symlink resumed>) = 0 [pid 5032] umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6652] memfd_create("syzkaller", 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./269/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./269/binderfs") = 0 [pid 5032] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6652] <... memfd_create resumed>) = 3 [pid 6652] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6651] <... memfd_create resumed>) = 3 [pid 6651] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6652] <... mmap resumed>) = 0x7ff0df171000 [pid 6651] <... mmap resumed>) = 0x7ff0df171000 [pid 6648] <... mount resumed>) = 0 [ 233.316714][ T6649] loop4: detected capacity change from 0 to 4096 [ 233.350466][ T6649] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6648] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6648] chdir("./file0") = 0 [pid 6648] ioctl(4, LOOP_CLR_FD) = 0 [pid 6648] close(4) = 0 [pid 6648] exit_group(0) = ? [pid 6651] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6648] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6648, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./260/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./260/binderfs") = 0 [pid 5034] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6650] <... write resumed>) = 2097152 [pid 6649] <... mount resumed>) = 0 [pid 6649] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6650] munmap(0x7ff0df171000, 138412032 [pid 6649] chdir("./file0" [pid 6650] <... munmap resumed>) = 0 [pid 6652] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6649] <... chdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6649] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6649] close(4 [pid 6650] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6650] <... openat resumed>) = 4 [pid 5032] newfstatat(AT_FDCWD, "./269/file0", [pid 6650] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6649] <... close resumed>) = 0 [pid 5032] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6649] exit_group(0 [pid 5032] openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6649] <... exit_group resumed>) = ? [pid 5032] <... openat resumed>) = 4 [pid 6649] +++ exited with 0 +++ [pid 5032] newfstatat(4, "", [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6649, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5033] openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 5032] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 5032] rmdir("./269/file0" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... rmdir resumed>) = 0 [pid 6650] <... ioctl resumed>) = 0 [pid 5033] umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 6650] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6650] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./262/binderfs", [pid 6650] mkdir("./file0", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(3 [pid 6650] <... mkdir resumed>) = 0 [pid 5033] unlink("./262/binderfs" [pid 5032] <... close resumed>) = 0 [pid 6650] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... unlink resumed>) = 0 [pid 5032] rmdir("./269" [pid 6651] <... write resumed>) = 2097152 [pid 5033] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./270", 0777) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6651] munmap(0x7ff0df171000, 138412032 [pid 5032] <... openat resumed>) = 3 [pid 6651] <... munmap resumed>) = 0 [pid 5034] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5034] newfstatat(AT_FDCWD, "./260/file0", [pid 5032] <... close resumed>) = 0 [pid 6651] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6651] <... openat resumed>) = 4 [ 233.501209][ T6650] loop2: detected capacity change from 0 to 4096 [ 233.533467][ T6650] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6651] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6653 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6653 attached [pid 6653] set_robust_list(0x55555635e660, 24) = 0 [pid 6653] chdir("./270" [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./260/file0" [pid 6653] <... chdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [pid 6653] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./260" [pid 6653] <... prctl resumed>) = 0 [pid 6651] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6653] setpgid(0, 0 [pid 6652] <... write resumed>) = 2097152 [pid 6651] close(3 [pid 5034] mkdir("./261", 0777 [pid 5033] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6653] <... setpgid resumed>) = 0 [pid 6651] <... close resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6653] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6651] mkdir("./file0", 0777 [pid 5033] newfstatat(AT_FDCWD, "./262/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6653] <... openat resumed>) = 3 [pid 6651] <... mkdir resumed>) = 0 [pid 5033] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 233.567884][ T6651] loop1: detected capacity change from 0 to 4096 [pid 6653] write(3, "1000", 4 [pid 6651] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6652] munmap(0x7ff0df171000, 138412032 [pid 5034] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6652] <... munmap resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... openat resumed>) = 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] newfstatat(4, "", [pid 5034] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4./strace-static-x86_64: Process 6654 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6654 [pid 5033] <... close resumed>) = 0 [pid 6654] set_robust_list(0x55555635e660, 24 [pid 5033] rmdir("./262/file0" [pid 6653] <... write resumed>) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6654] <... set_robust_list resumed>) = 0 [pid 6654] chdir("./261" [pid 5033] close(3 [pid 6654] <... chdir resumed>) = 0 [pid 6654] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... close resumed>) = 0 [pid 6654] <... prctl resumed>) = 0 [pid 6654] setpgid(0, 0 [pid 6652] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] rmdir("./262" [pid 6654] <... setpgid resumed>) = 0 [pid 6653] close(3 [pid 6652] <... openat resumed>) = 4 [pid 6654] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6653] <... close resumed>) = 0 [pid 6652] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... rmdir resumed>) = 0 [pid 6654] <... openat resumed>) = 3 [pid 6653] symlink("/dev/binderfs", "./binderfs" [pid 6654] write(3, "1000", 4 [pid 6653] <... symlink resumed>) = 0 [pid 6654] <... write resumed>) = 4 [pid 6653] memfd_create("syzkaller", 0 [pid 5033] mkdir("./263", 0777 [pid 6653] <... memfd_create resumed>) = 3 [pid 6650] <... mount resumed>) = 0 [pid 6653] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6650] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6653] <... mmap resumed>) = 0x7ff0df171000 [pid 6654] close(3 [pid 6650] <... openat resumed>) = 3 [pid 6654] <... close resumed>) = 0 [pid 6650] chdir("./file0" [pid 6654] symlink("/dev/binderfs", "./binderfs" [pid 6650] <... chdir resumed>) = 0 [pid 6654] <... symlink resumed>) = 0 [pid 6654] memfd_create("syzkaller", 0 [pid 6650] ioctl(4, LOOP_CLR_FD) = 0 [pid 6650] close(4) = 0 [pid 6650] exit_group(0) = ? [pid 6650] +++ exited with 0 +++ [pid 6654] <... memfd_create resumed>) = 3 [pid 5033] <... mkdir resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6650, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 6654] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6654] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6652] <... ioctl resumed>) = 0 [pid 5033] close(3 [pid 5031] openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6655 attached ) = -1 EINVAL (Invalid argument) [pid 6655] set_robust_list(0x55555635e660, 24 [pid 6652] close(3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6655 [pid 5031] newfstatat(AT_FDCWD, "./266/binderfs", [pid 6652] <... close resumed>) = 0 [pid 6652] mkdir("./file0", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6655] <... set_robust_list resumed>) = 0 [pid 6652] <... mkdir resumed>) = 0 [pid 6652] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] unlink("./266/binderfs" [pid 6655] chdir("./263" [pid 6651] <... mount resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6655] <... chdir resumed>) = 0 [ 233.615435][ T6651] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 233.634229][ T6652] loop0: detected capacity change from 0 to 4096 [pid 6655] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6651] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6655] setpgid(0, 0) = 0 [pid 6655] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6651] <... openat resumed>) = 3 [pid 6655] <... openat resumed>) = 3 [pid 6651] chdir("./file0") = 0 [pid 6655] write(3, "1000", 4) = 4 [pid 6655] close(3) = 0 [pid 6655] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6651] ioctl(4, LOOP_CLR_FD) = 0 [pid 6651] close(4) = 0 [pid 6651] exit_group(0) = ? [pid 6655] memfd_create("syzkaller", 0 [pid 6651] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6651, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6655] <... memfd_create resumed>) = 3 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6655] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./266/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./267/binderfs", [pid 5031] openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./267/binderfs" [pid 5031] <... openat resumed>) = 4 [pid 5030] <... unlink resumed>) = 0 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 233.689404][ T6652] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./266/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./266") = 0 [pid 6654] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] mkdir("./267", 0777 [pid 6653] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./267/file0", [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6656 ./strace-static-x86_64: Process 6656 attached [pid 5030] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6656] set_robust_list(0x55555635e660, 24 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6656] <... set_robust_list resumed>) = 0 [pid 5030] getdents64(4, [pid 6656] chdir("./267") = 0 [pid 6656] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6656] <... prctl resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6656] setpgid(0, 0 [pid 5030] rmdir("./267/file0" [pid 6656] <... setpgid resumed>) = 0 [pid 6656] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... rmdir resumed>) = 0 [pid 6656] <... openat resumed>) = 3 [pid 6652] <... mount resumed>) = 0 [pid 6656] write(3, "1000", 4 [pid 6654] <... write resumed>) = 2097152 [pid 6652] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] getdents64(3, [pid 6656] <... write resumed>) = 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6656] close(3 [pid 5030] close(3 [pid 6656] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6656] symlink("/dev/binderfs", "./binderfs" [pid 5030] rmdir("./267") = 0 [pid 6656] <... symlink resumed>) = 0 [pid 5030] mkdir("./268", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = 0 [pid 6656] memfd_create("syzkaller", 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6656] <... memfd_create resumed>) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6657 [pid 6656] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6652] <... openat resumed>) = 3 [pid 6652] chdir("./file0"./strace-static-x86_64: Process 6657 attached ) = 0 [pid 6654] munmap(0x7ff0df171000, 138412032) = 0 [pid 6652] ioctl(4, LOOP_CLR_FD [pid 6657] set_robust_list(0x55555635e660, 24) = 0 [pid 6652] <... ioctl resumed>) = 0 [pid 6657] chdir("./268" [pid 6652] close(4 [pid 6657] <... chdir resumed>) = 0 [pid 6657] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6657] setpgid(0, 0) = 0 [pid 6657] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6657] write(3, "1000", 4 [pid 6654] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6657] <... write resumed>) = 4 [pid 6654] <... openat resumed>) = 4 [pid 6652] <... close resumed>) = 0 [pid 6657] close(3 [pid 6654] ioctl(4, LOOP_SET_FD, 3 [pid 6657] <... close resumed>) = 0 [pid 6653] <... write resumed>) = 2097152 [pid 6652] exit_group(0 [pid 6657] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6655] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6653] munmap(0x7ff0df171000, 138412032 [pid 6652] <... exit_group resumed>) = ? [pid 6657] memfd_create("syzkaller", 0 [pid 6652] +++ exited with 0 +++ [pid 6653] <... munmap resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6652, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6657] <... memfd_create resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6657] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6654] <... ioctl resumed>) = 0 [pid 5029] getdents64(3, [pid 6654] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6654] <... close resumed>) = 0 [pid 6654] mkdir("./file0", 0777 [pid 5029] umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6654] <... mkdir resumed>) = 0 [pid 6654] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6657] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] newfstatat(AT_FDCWD, "./269/binderfs", [pid 6653] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 233.864646][ T6654] loop5: detected capacity change from 0 to 4096 [ 233.903958][ T6654] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6653] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./269/binderfs") = 0 [pid 5029] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6653] <... ioctl resumed>) = 0 [pid 6655] <... write resumed>) = 2097152 [pid 6653] close(3) = 0 [pid 6653] mkdir("./file0", 0777 [pid 6656] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6653] <... mkdir resumed>) = 0 [ 233.932374][ T6653] loop3: detected capacity change from 0 to 4096 [pid 6653] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6655] munmap(0x7ff0df171000, 138412032) = 0 [pid 6655] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6655] ioctl(4, LOOP_SET_FD, 3 [pid 6657] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6655] <... ioctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6655] close(3) = 0 [pid 6654] <... mount resumed>) = 0 [pid 5029] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6656] <... write resumed>) = 2097152 [pid 6655] mkdir("./file0", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6656] munmap(0x7ff0df171000, 138412032 [pid 6655] <... mkdir resumed>) = 0 [pid 6654] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] newfstatat(AT_FDCWD, "./269/file0", [pid 6656] <... munmap resumed>) = 0 [pid 6655] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6654] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6654] chdir("./file0" [ 233.982531][ T6653] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 234.013341][ T6655] loop4: detected capacity change from 0 to 4096 [pid 5029] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6654] <... chdir resumed>) = 0 [pid 6653] <... mount resumed>) = 0 [pid 6656] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6654] ioctl(4, LOOP_CLR_FD [pid 5029] openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6657] <... write resumed>) = 2097152 [pid 6656] <... openat resumed>) = 4 [pid 6653] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6654] <... ioctl resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 6657] munmap(0x7ff0df171000, 138412032 [pid 6654] close(4 [pid 6653] <... openat resumed>) = 3 [pid 6656] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6654] <... close resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./269/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6657] <... munmap resumed>) = 0 [pid 6653] chdir("./file0") = 0 [pid 6654] exit_group(0 [pid 6653] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] <... close resumed>) = 0 [pid 6657] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6656] <... ioctl resumed>) = 0 [pid 6655] <... mount resumed>) = 0 [pid 6654] <... exit_group resumed>) = ? [pid 6653] close(4 [pid 6657] <... openat resumed>) = 4 [pid 6656] close(3 [pid 6655] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6653] <... close resumed>) = 0 [pid 5029] rmdir("./269" [pid 6655] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [ 234.063562][ T6655] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 234.079780][ T6656] loop2: detected capacity change from 0 to 4096 [pid 6657] ioctl(4, LOOP_SET_FD, 3 [pid 6656] <... close resumed>) = 0 [pid 6655] chdir("./file0" [pid 6654] +++ exited with 0 +++ [pid 6653] exit_group(0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6654, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6655] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6655] ioctl(4, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6655] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5029] mkdir("./270", 0777 [pid 6655] close(4 [pid 5034] newfstatat(3, "", [pid 5029] <... mkdir resumed>) = 0 [pid 6655] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./261/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6655] exit_group(0 [pid 5034] unlink("./261/binderfs" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6656] mkdir("./file0", 0777 [pid 6655] <... exit_group resumed>) = ? [pid 6653] <... exit_group resumed>) = ? [pid 5034] <... unlink resumed>) = 0 [pid 6656] <... mkdir resumed>) = 0 [pid 5034] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 6656] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6653] +++ exited with 0 +++ [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6655] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6653, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6655, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=0} --- [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... close resumed>) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5032] openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... restart_syscall resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./270/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6658 attached [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./270/binderfs" [pid 6658] set_robust_list(0x55555635e660, 24 [pid 5033] openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... unlink resumed>) = 0 [pid 6658] <... set_robust_list resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6658 [pid 6658] chdir("./270" [pid 5033] newfstatat(3, "", [pid 6658] <... chdir resumed>) = 0 [pid 6657] <... ioctl resumed>) = 0 [pid 6657] close(3) = 0 [pid 6658] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6657] mkdir("./file0", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6658] <... prctl resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6658] setpgid(0, 0 [pid 6657] <... mkdir resumed>) = 0 [ 234.107453][ T6657] loop1: detected capacity change from 0 to 4096 [ 234.121549][ T6656] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6657] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6658] <... setpgid resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./263/binderfs", [pid 6658] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./263/binderfs") = 0 [pid 6658] <... openat resumed>) = 3 [pid 5033] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./261/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 6658] write(3, "1000", 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6658] <... write resumed>) = 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6658] close(3 [pid 5034] <... close resumed>) = 0 [pid 6658] <... close resumed>) = 0 [pid 5034] rmdir("./261/file0" [pid 6658] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... rmdir resumed>) = 0 [pid 6658] <... symlink resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./261") = 0 [pid 5034] mkdir("./262", 0777) = 0 [pid 6658] memfd_create("syzkaller", 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [ 234.151733][ T6657] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6658] <... memfd_create resumed>) = 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6658] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] close(3) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6659 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6659 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6659] set_robust_list(0x55555635e660, 24 [pid 5032] newfstatat(AT_FDCWD, "./270/file0", [pid 6659] <... set_robust_list resumed>) = 0 [pid 6659] chdir("./262" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6659] <... chdir resumed>) = 0 [pid 5032] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6659] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6659] <... prctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6659] setpgid(0, 0 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 6659] <... setpgid resumed>) = 0 [pid 6659] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6659] write(3, "1000", 4 [pid 6656] <... mount resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 6659] <... write resumed>) = 4 [pid 6656] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6659] close(3 [pid 5032] <... close resumed>) = 0 [pid 6659] <... close resumed>) = 0 [pid 5032] rmdir("./270/file0" [pid 6659] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6656] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 6656] chdir("./file0") = 0 [pid 6656] ioctl(4, LOOP_CLR_FD [pid 5033] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6656] <... ioctl resumed>) = 0 [pid 6656] close(4) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6656] exit_group(0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./263/file0", [pid 5032] close(3 [pid 6656] <... exit_group resumed>) = ? [pid 6659] memfd_create("syzkaller", 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6656] +++ exited with 0 +++ [pid 5032] <... close resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6656, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5031] umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6659] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./270" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./267/binderfs", [pid 5033] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6659] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] newfstatat(4, "", [pid 5032] <... rmdir resumed>) = 0 [pid 5031] unlink("./267/binderfs" [pid 6659] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] mkdir("./271", 0777 [pid 5031] <... unlink resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./263/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./263") = 0 [pid 5031] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] mkdir("./264", 0777) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 [pid 6657] <... mount resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6657] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6658] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6660 [pid 5032] <... close resumed>) = 0 [pid 6657] <... openat resumed>) = 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6660 attached [pid 6660] set_robust_list(0x55555635e660, 24) = 0 [pid 6660] chdir("./264") = 0 [pid 6660] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6660] setpgid(0, 0) = 0 [pid 6660] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6660] write(3, "1000", 4) = 4 [pid 6660] close(3) = 0 [pid 6660] symlink("/dev/binderfs", "./binderfs") = 0 ./strace-static-x86_64: Process 6661 attached [pid 6657] chdir("./file0") = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6661 [pid 6661] set_robust_list(0x55555635e660, 24 [pid 6657] ioctl(4, LOOP_CLR_FD [pid 6661] <... set_robust_list resumed>) = 0 [pid 6657] <... ioctl resumed>) = 0 [pid 6661] chdir("./271" [pid 6657] close(4 [pid 6661] <... chdir resumed>) = 0 [pid 6660] memfd_create("syzkaller", 0 [pid 6657] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6661] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6657] exit_group(0 [pid 6661] <... prctl resumed>) = 0 [pid 6657] <... exit_group resumed>) = ? [pid 6661] setpgid(0, 0) = 0 [pid 6660] <... memfd_create resumed>) = 3 [pid 6658] <... write resumed>) = 2097152 [pid 6661] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6660] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6661] <... openat resumed>) = 3 [pid 6659] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6657] +++ exited with 0 +++ [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6661] write(3, "1000", 4 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6657, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6661] <... write resumed>) = 4 [pid 6661] close(3 [pid 5031] newfstatat(AT_FDCWD, "./267/file0", [pid 6661] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6661] symlink("/dev/binderfs", "./binderfs" [pid 5031] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6661] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6661] memfd_create("syzkaller", 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 3 [pid 5031] newfstatat(4, "", [pid 5030] newfstatat(3, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5030] getdents64(3, [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] getdents64(4, [pid 5030] umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(4 [pid 5030] newfstatat(AT_FDCWD, "./268/binderfs", [pid 6661] <... memfd_create resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] rmdir("./267/file0" [pid 5030] unlink("./268/binderfs" [pid 6658] munmap(0x7ff0df171000, 138412032 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6658] <... munmap resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6661] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 6661] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./267") = 0 [pid 5031] mkdir("./268", 0777) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6658] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6658] ioctl(4, LOOP_SET_FD, 3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6662 attached [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6662 [pid 6662] set_robust_list(0x55555635e660, 24) = 0 [pid 6662] chdir("./268") = 0 [pid 6662] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6662] setpgid(0, 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6662] <... setpgid resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./268/file0", [pid 6662] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6658] <... ioctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6662] <... openat resumed>) = 3 [pid 6658] close(3) = 0 [pid 6658] mkdir("./file0", 0777 [pid 6662] write(3, "1000", 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6662] <... write resumed>) = 4 [pid 6662] close(3 [pid 5030] openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6662] <... close resumed>) = 0 [pid 6662] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6662] memfd_create("syzkaller", 0 [pid 6658] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6658] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [ 234.435213][ T6658] loop0: detected capacity change from 0 to 4096 [pid 6662] <... memfd_create resumed>) = 3 [pid 6659] <... write resumed>) = 2097152 [pid 5030] close(4 [pid 6662] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./268/file0" [pid 6662] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... rmdir resumed>) = 0 [pid 6660] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] getdents64(3, [pid 6659] munmap(0x7ff0df171000, 138412032 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./268") = 0 [pid 6659] <... munmap resumed>) = 0 [pid 5030] mkdir("./269", 0777) = 0 [pid 6659] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6659] ioctl(4, LOOP_SET_FD, 3 [ 234.477101][ T6658] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 6661] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6659] <... ioctl resumed>) = 0 [pid 6659] close(3 [pid 5030] close(3 [pid 6659] <... close resumed>) = 0 [pid 6659] mkdir("./file0", 0777 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6659] <... mkdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6663 ./strace-static-x86_64: Process 6663 attached [pid 6659] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6663] set_robust_list(0x55555635e660, 24) = 0 [pid 6660] <... write resumed>) = 2097152 [pid 6662] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6663] chdir("./269") = 0 [pid 6658] <... mount resumed>) = 0 [pid 6663] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6658] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6663] <... prctl resumed>) = 0 [pid 6661] <... write resumed>) = 2097152 [pid 6663] setpgid(0, 0 [pid 6661] munmap(0x7ff0df171000, 138412032 [pid 6660] munmap(0x7ff0df171000, 138412032 [pid 6663] <... setpgid resumed>) = 0 [pid 6663] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6658] <... openat resumed>) = 3 [ 234.522696][ T6659] loop5: detected capacity change from 0 to 4096 [ 234.554257][ T6659] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6663] <... openat resumed>) = 3 [pid 6658] chdir("./file0" [pid 6663] write(3, "1000", 4 [pid 6658] <... chdir resumed>) = 0 [pid 6663] <... write resumed>) = 4 [pid 6658] ioctl(4, LOOP_CLR_FD [pid 6663] close(3 [pid 6661] <... munmap resumed>) = 0 [pid 6658] <... ioctl resumed>) = 0 [pid 6663] <... close resumed>) = 0 [pid 6660] <... munmap resumed>) = 0 [pid 6663] symlink("/dev/binderfs", "./binderfs" [pid 6661] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6660] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6658] close(4 [pid 6661] <... openat resumed>) = 4 [pid 6660] <... openat resumed>) = 4 [pid 6658] <... close resumed>) = 0 [pid 6663] <... symlink resumed>) = 0 [pid 6661] ioctl(4, LOOP_SET_FD, 3 [pid 6660] ioctl(4, LOOP_SET_FD, 3 [pid 6658] exit_group(0) = ? [pid 6658] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6658, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6662] <... write resumed>) = 2097152 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./270/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6662] munmap(0x7ff0df171000, 138412032 [pid 6663] memfd_create("syzkaller", 0 [pid 5029] unlink("./270/binderfs") = 0 [pid 5029] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6663] <... memfd_create resumed>) = 3 [pid 6662] <... munmap resumed>) = 0 [pid 6661] <... ioctl resumed>) = 0 [pid 6660] <... ioctl resumed>) = 0 [pid 6659] <... mount resumed>) = 0 [pid 6663] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6662] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6661] close(3 [pid 6660] close(3 [pid 6659] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6663] <... mmap resumed>) = 0x7ff0df171000 [pid 6662] <... openat resumed>) = 4 [pid 6661] <... close resumed>) = 0 [pid 6660] <... close resumed>) = 0 [pid 6659] <... openat resumed>) = 3 [ 234.622539][ T6661] loop3: detected capacity change from 0 to 4096 [ 234.629805][ T6660] loop4: detected capacity change from 0 to 4096 [pid 6662] ioctl(4, LOOP_SET_FD, 3 [pid 6661] mkdir("./file0", 0777 [pid 6660] mkdir("./file0", 0777 [pid 6659] chdir("./file0" [pid 5029] <... umount2 resumed>) = 0 [pid 6659] <... chdir resumed>) = 0 [pid 6659] ioctl(4, LOOP_CLR_FD [pid 5029] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./270/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./270/file0" [pid 6659] <... ioctl resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6659] close(4 [pid 5029] getdents64(3, [pid 6660] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./270" [pid 6661] <... mkdir resumed>) = 0 [pid 6660] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6659] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./271", 0777 [pid 6659] exit_group(0 [pid 5029] <... mkdir resumed>) = 0 [pid 6661] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6659] <... exit_group resumed>) = ? [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 6659] +++ exited with 0 +++ [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6659, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6664 attached , child_tidptr=0x55555635e650) = 6664 [pid 6664] set_robust_list(0x55555635e660, 24) = 0 [pid 6664] chdir("./271") = 0 [pid 6664] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6664] setpgid(0, 0) = 0 [pid 6664] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6664] write(3, "1000", 4) = 4 [pid 6664] close(3) = 0 [pid 6664] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6664] memfd_create("syzkaller", 0 [pid 5034] openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 6664] <... memfd_create resumed>) = 3 [pid 6664] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6662] <... ioctl resumed>) = 0 [pid 5034] umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./262/binderfs", [pid 6662] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6662] <... close resumed>) = 0 [pid 6663] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6662] mkdir("./file0", 0777 [pid 5034] unlink("./262/binderfs" [pid 6662] <... mkdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6662] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 234.673880][ T6662] loop2: detected capacity change from 0 to 4096 [ 234.694673][ T6661] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 234.704150][ T6660] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6663] <... write resumed>) = 2097152 [pid 6663] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 234.750139][ T6662] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] newfstatat(AT_FDCWD, "./262/file0", [pid 6663] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6662] <... mount resumed>) = 0 [pid 5034] umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./262/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6664] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] close(3 [pid 6662] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./262" [pid 6662] <... openat resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6662] chdir("./file0") = 0 [pid 6661] <... mount resumed>) = 0 [pid 6662] ioctl(4, LOOP_CLR_FD [pid 6661] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6662] <... ioctl resumed>) = 0 [pid 6661] <... openat resumed>) = 3 [pid 6662] close(4) = 0 [pid 6661] chdir("./file0") = 0 [pid 6662] exit_group(0 [pid 6661] ioctl(4, LOOP_CLR_FD) = 0 [pid 6661] close(4) = 0 [pid 6661] exit_group(0) = ? [pid 6662] <... exit_group resumed>) = ? [pid 6661] +++ exited with 0 +++ [pid 5034] mkdir("./263", 0777 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6661, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] <... mkdir resumed>) = 0 [pid 5032] umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6662] +++ exited with 0 +++ [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6663] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6663] <... openat resumed>) = 4 [pid 5032] <... openat resumed>) = 3 [pid 6663] ioctl(4, LOOP_SET_FD, 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] newfstatat(3, "", [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6662, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5031] umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./271/binderfs", [pid 6660] <... mount resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5032] unlink("./271/binderfs") = 0 [pid 5031] newfstatat(3, "", [pid 5032] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 5031] umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6660] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6660] chdir("./file0") = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(AT_FDCWD, "./268/binderfs", [pid 6660] ioctl(4, LOOP_CLR_FD) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6660] close(4) = 0 [pid 6660] exit_group(0) = ? [pid 6660] +++ exited with 0 +++ ./strace-static-x86_64: Process 6665 attached [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6660, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] unlink("./268/binderfs" [pid 6665] set_robust_list(0x55555635e660, 24 [pid 5031] <... unlink resumed>) = 0 [pid 6663] <... ioctl resumed>) = 0 [pid 5033] umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6665] <... set_robust_list resumed>) = 0 [pid 5031] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6663] close(3) = 0 [pid 6663] mkdir("./file0", 0777) = 0 [pid 6663] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6665] chdir("./263" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6665] <... chdir resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6665 [pid 5033] <... openat resumed>) = 3 [pid 6665] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] newfstatat(3, "", [pid 6665] <... prctl resumed>) = 0 [pid 6664] <... write resumed>) = 2097152 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6665] setpgid(0, 0) = 0 [pid 5033] getdents64(3, [pid 6665] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6664] munmap(0x7ff0df171000, 138412032 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6665] <... openat resumed>) = 3 [pid 6664] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6665] write(3, "1000", 4 [pid 6664] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] newfstatat(AT_FDCWD, "./264/binderfs", [pid 6665] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6665] close(3) = 0 [pid 6665] symlink("/dev/binderfs", "./binderfs" [pid 5033] unlink("./264/binderfs" [pid 6665] <... symlink resumed>) = 0 [ 234.846899][ T6663] loop1: detected capacity change from 0 to 4096 [ 234.885249][ T6663] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6664] <... openat resumed>) = 4 [pid 6664] ioctl(4, LOOP_SET_FD, 3 [pid 6665] memfd_create("syzkaller", 0 [pid 6663] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6663] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6663] chdir("./file0") = 0 [pid 6663] ioctl(4, LOOP_CLR_FD) = 0 [pid 6663] close(4) = 0 [pid 5032] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6663] exit_group(0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./271/file0", [pid 6663] <... exit_group resumed>) = ? [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6665] <... memfd_create resumed>) = 3 [pid 6663] +++ exited with 0 +++ [pid 5032] openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = 0 [pid 6665] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6663, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 6665] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5032] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./269/binderfs", [pid 5032] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./269/binderfs" [pid 5032] close(4 [pid 5030] <... unlink resumed>) = 0 [pid 6664] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./271/file0" [pid 5031] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6664] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6664] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] newfstatat(AT_FDCWD, "./268/file0", [pid 6664] mkdir("./file0", 0777 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(3 [pid 5031] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./271" [pid 5031] openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6664] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5032] mkdir("./272", 0777 [pid 5031] newfstatat(4, "", [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] getdents64(4, [pid 5032] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 234.932108][ T6664] loop0: detected capacity change from 0 to 4096 [pid 6664] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] getdents64(4, [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5031] close(4 [pid 5032] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] rmdir("./268/file0") = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6666 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 ./strace-static-x86_64: Process 6666 attached [pid 5031] rmdir("./268") = 0 [pid 5031] mkdir("./269", 0777 [pid 6666] set_robust_list(0x55555635e660, 24 [pid 5031] <... mkdir resumed>) = 0 [pid 6666] <... set_robust_list resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6666] chdir("./272" [pid 5031] <... openat resumed>) = 3 [pid 6666] <... chdir resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6666] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6666] <... prctl resumed>) = 0 [pid 5031] close(3 [pid 6666] setpgid(0, 0 [pid 5031] <... close resumed>) = 0 [pid 6666] <... setpgid resumed>) = 0 [pid 6666] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6666] <... openat resumed>) = 3 [pid 6666] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 6667 attached [pid 6666] close(3 [pid 6667] set_robust_list(0x55555635e660, 24 [pid 6666] <... close resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6667 [pid 6666] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6667] <... set_robust_list resumed>) = 0 [pid 6666] memfd_create("syzkaller", 0 [pid 6667] chdir("./269") = 0 [pid 6667] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6667] setpgid(0, 0) = 0 [pid 6667] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6666] <... memfd_create resumed>) = 3 [pid 6666] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6667] write(3, "1000", 4) = 4 [pid 6667] close(3) = 0 [pid 6667] symlink("/dev/binderfs", "./binderfs" [pid 6665] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = 0 [pid 6667] <... symlink resumed>) = 0 [pid 5033] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6667] memfd_create("syzkaller", 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./264/file0", [pid 6667] <... memfd_create resumed>) = 3 [pid 6667] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 235.008819][ T6664] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5030] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./269/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(4, "", [pid 6664] <... mount resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 6666] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6665] <... write resumed>) = 2097152 [pid 6664] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 6664] <... openat resumed>) = 3 [pid 5030] openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 5033] close(4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] close(4 [pid 6664] chdir("./file0" [pid 5033] rmdir("./264/file0" [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./269/file0" [pid 6664] <... chdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6664] ioctl(4, LOOP_CLR_FD [pid 5033] getdents64(3, [pid 5030] getdents64(3, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6664] <... ioctl resumed>) = 0 [pid 5033] close(3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./269" [pid 6665] munmap(0x7ff0df171000, 138412032 [pid 6664] close(4 [pid 5033] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6664] <... close resumed>) = 0 [pid 5033] rmdir("./264" [pid 5030] mkdir("./270", 0777 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5033] mkdir("./265", 0777 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6664] exit_group(0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6664] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 3 [pid 5030] close(3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... close resumed>) = 0 [pid 6664] +++ exited with 0 +++ [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6665] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6664, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- ./strace-static-x86_64: Process 6668 attached [pid 6667] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6665] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... close resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6668 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6668] set_robust_list(0x55555635e660, 24) = 0 [pid 6668] chdir("./270") = 0 [pid 6668] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6669 attached [pid 6668] <... prctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6669 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6669] set_robust_list(0x55555635e660, 24 [pid 6668] setpgid(0, 0 [pid 6665] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6669] <... set_robust_list resumed>) = 0 [pid 6668] <... setpgid resumed>) = 0 [pid 6669] chdir("./265" [pid 6668] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6665] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 3 [pid 6668] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 6668] write(3, "1000", 4) = 4 [pid 6668] close(3) = 0 [pid 6668] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6669] <... chdir resumed>) = 0 [pid 6668] memfd_create("syzkaller", 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6669] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6669] <... prctl resumed>) = 0 [pid 6668] <... memfd_create resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./271/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6669] setpgid(0, 0 [pid 6668] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] unlink("./271/binderfs" [pid 6669] <... setpgid resumed>) = 0 [pid 6665] <... ioctl resumed>) = 0 [pid 6669] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6666] <... write resumed>) = 2097152 [pid 6665] close(3 [pid 5029] <... unlink resumed>) = 0 [pid 6669] write(3, "1000", 4 [pid 6665] <... close resumed>) = 0 [pid 6669] <... write resumed>) = 4 [pid 6665] mkdir("./file0", 0777 [pid 6669] close(3 [pid 5029] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6669] <... close resumed>) = 0 [pid 6669] symlink("/dev/binderfs", "./binderfs" [pid 6665] <... mkdir resumed>) = 0 [pid 6669] <... symlink resumed>) = 0 [pid 6665] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [ 235.179452][ T6665] loop5: detected capacity change from 0 to 4096 [pid 6669] memfd_create("syzkaller", 0 [pid 6666] munmap(0x7ff0df171000, 138412032 [pid 6669] <... memfd_create resumed>) = 3 [pid 6669] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6666] <... munmap resumed>) = 0 [pid 6667] <... write resumed>) = 2097152 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./271/file0", [pid 6666] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6667] munmap(0x7ff0df171000, 138412032) = 0 [pid 6666] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 235.228352][ T6665] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6669] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6667] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6666] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 6667] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6667] ioctl(4, LOOP_SET_FD, 3 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./271/file0" [pid 6665] <... mount resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6666] <... ioctl resumed>) = 0 [pid 6665] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6668] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6666] close(3 [pid 5029] getdents64(3, [pid 6666] <... close resumed>) = 0 [pid 6667] <... ioctl resumed>) = 0 [pid 6665] chdir("./file0" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6666] mkdir("./file0", 0777 [pid 6665] <... chdir resumed>) = 0 [pid 6665] ioctl(4, LOOP_CLR_FD) = 0 [pid 6666] <... mkdir resumed>) = 0 [pid 6665] close(4) = 0 [pid 6665] exit_group(0) = ? [pid 5029] close(3 [pid 6665] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6665, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5034] umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6666] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6667] close(3 [pid 5034] openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [ 235.300113][ T6666] loop3: detected capacity change from 0 to 4096 [ 235.307395][ T6667] loop2: detected capacity change from 0 to 4096 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] rmdir("./271" [pid 6667] <... close resumed>) = 0 [pid 6669] <... write resumed>) = 2097152 [pid 6667] mkdir("./file0", 0777 [pid 5034] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./263/binderfs", [pid 6667] <... mkdir resumed>) = 0 [pid 5029] mkdir("./272", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./263/binderfs" [pid 6667] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] <... mkdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6669] munmap(0x7ff0df171000, 138412032 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6670 attached [pid 6669] <... munmap resumed>) = 0 [pid 6668] <... write resumed>) = 2097152 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6670 [pid 6669] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6670] set_robust_list(0x55555635e660, 24 [pid 6669] ioctl(4, LOOP_SET_FD, 3 [pid 6670] <... set_robust_list resumed>) = 0 [pid 6670] chdir("./272") = 0 [pid 6668] munmap(0x7ff0df171000, 138412032 [ 235.345510][ T6666] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 235.360145][ T6667] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6670] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6670] setpgid(0, 0) = 0 [pid 6670] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6668] <... munmap resumed>) = 0 [pid 6670] write(3, "1000", 4) = 4 [pid 6670] close(3) = 0 [pid 6670] symlink("/dev/binderfs", "./binderfs" [pid 6668] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6670] <... symlink resumed>) = 0 [pid 6668] <... openat resumed>) = 4 [pid 6669] <... ioctl resumed>) = 0 [pid 6668] ioctl(4, LOOP_SET_FD, 3 [pid 6670] memfd_create("syzkaller", 0 [pid 6669] close(3 [pid 5034] <... umount2 resumed>) = 0 [pid 6669] <... close resumed>) = 0 [pid 6669] mkdir("./file0", 0777) = 0 [ 235.399600][ T6669] loop4: detected capacity change from 0 to 4096 [ 235.434328][ T6668] loop1: detected capacity change from 0 to 4096 [pid 6669] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6670] <... memfd_create resumed>) = 3 [pid 5034] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6670] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6670] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] newfstatat(AT_FDCWD, "./263/file0", [pid 6668] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6668] close(3) = 0 [pid 5034] umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6668] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6668] <... mkdir resumed>) = 0 [pid 6668] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./263/file0" [pid 6666] <... mount resumed>) = 0 [pid 6666] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6667] <... mount resumed>) = 0 [pid 6666] chdir("./file0" [pid 5034] getdents64(3, [pid 6667] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6666] <... chdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6666] ioctl(4, LOOP_CLR_FD [pid 5034] close(3 [pid 6667] <... openat resumed>) = 3 [pid 6666] <... ioctl resumed>) = 0 [pid 6667] chdir("./file0" [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./263" [pid 6666] close(4 [pid 6667] <... chdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6669] <... mount resumed>) = 0 [pid 6666] <... close resumed>) = 0 [pid 5034] mkdir("./264", 0777 [pid 6667] ioctl(4, LOOP_CLR_FD [pid 6669] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6667] <... ioctl resumed>) = 0 [pid 6669] chdir("./file0" [pid 6667] close(4 [pid 6666] exit_group(0 [pid 5034] <... mkdir resumed>) = 0 [pid 6667] <... close resumed>) = 0 [pid 6666] <... exit_group resumed>) = ? [pid 6669] <... chdir resumed>) = 0 [pid 6667] exit_group(0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6669] ioctl(4, LOOP_CLR_FD [pid 6667] <... exit_group resumed>) = ? [pid 5034] <... openat resumed>) = 3 [pid 6669] <... ioctl resumed>) = 0 [pid 6669] close(4) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6669] exit_group(0) = ? [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6669] +++ exited with 0 +++ [pid 6666] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6669, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6667] +++ exited with 0 +++ [pid 5034] close(3 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6666, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5034] <... close resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6667, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6670] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 ./strace-static-x86_64: Process 6671 attached [pid 5033] umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6671] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6671 [pid 5033] <... openat resumed>) = 3 [pid 6671] <... set_robust_list resumed>) = 0 [ 235.448043][ T6669] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 235.467115][ T6668] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6671] chdir("./264" [pid 5032] umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6671] <... chdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./265/binderfs", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6671] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./265/binderfs" [pid 6668] <... mount resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6671] <... prctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6671] setpgid(0, 0 [pid 6668] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... openat resumed>) = 3 [pid 6671] <... setpgid resumed>) = 0 [pid 6668] <... openat resumed>) = 3 [pid 5033] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 6671] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6668] chdir("./file0" [pid 5032] newfstatat(3, "", [pid 5031] getdents64(3, [pid 6668] <... chdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6671] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6671] write(3, "1000", 4 [pid 6668] ioctl(4, LOOP_CLR_FD [pid 5032] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6671] <... write resumed>) = 4 [pid 6668] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] newfstatat(AT_FDCWD, "./269/binderfs", [pid 6671] close(3 [pid 6668] close(4 [pid 5032] umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6668] <... close resumed>) = 0 [pid 6668] exit_group(0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6671] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6671] symlink("/dev/binderfs", "./binderfs" [pid 6668] <... exit_group resumed>) = ? [pid 5032] newfstatat(AT_FDCWD, "./272/binderfs", [pid 6671] <... symlink resumed>) = 0 [pid 6668] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./269/binderfs" [pid 6671] memfd_create("syzkaller", 0 [pid 5032] unlink("./272/binderfs" [pid 5031] <... unlink resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6668, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./270/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6671] <... memfd_create resumed>) = 3 [pid 5030] unlink("./270/binderfs") = 0 [pid 5030] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6671] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./265/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./265/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./265" [pid 6670] <... write resumed>) = 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./272/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] mkdir("./266", 0777 [pid 5032] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 6670] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./272/file0" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... rmdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] close(3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... close resumed>) = 0 [pid 6670] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 5032] rmdir("./272") = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] mkdir("./273", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6670] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5030] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 6672 attached ./strace-static-x86_64: Process 6673 attached [pid 6672] set_robust_list(0x55555635e660, 24 [pid 6670] <... openat resumed>) = 4 [pid 6673] set_robust_list(0x55555635e660, 24 [pid 6672] <... set_robust_list resumed>) = 0 [pid 6670] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6672 [pid 6672] chdir("./266" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6673 [pid 6672] <... chdir resumed>) = 0 [pid 6672] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6672] setpgid(0, 0) = 0 [pid 6672] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6672] write(3, "1000", 4) = 4 [pid 6672] close(3) = 0 [pid 6672] symlink("/dev/binderfs", "./binderfs" [pid 6673] <... set_robust_list resumed>) = 0 [pid 6672] <... symlink resumed>) = 0 [pid 6670] <... ioctl resumed>) = 0 [pid 6673] chdir("./273") = 0 [pid 6672] memfd_create("syzkaller", 0 [pid 6671] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 6673] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6673] setpgid(0, 0 [pid 5030] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6673] <... setpgid resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6673] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6670] close(3 [pid 5031] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./270/file0", [pid 6673] <... openat resumed>) = 3 [pid 6672] <... memfd_create resumed>) = 3 [pid 6670] <... close resumed>) = 0 [pid 6673] write(3, "1000", 4 [pid 6672] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6673] <... write resumed>) = 4 [pid 6672] <... mmap resumed>) = 0x7ff0df171000 [pid 6670] mkdir("./file0", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6673] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6673] <... close resumed>) = 0 [pid 6670] <... mkdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./269/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6673] symlink("/dev/binderfs", "./binderfs" [pid 6670] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6673] <... symlink resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./270/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(4, "", [pid 5030] close(3) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] rmdir("./270" [pid 6673] memfd_create("syzkaller", 0 [pid 5031] getdents64(4, [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./271", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5031] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 6673] <... memfd_create resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6673] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] close(4) = 0 [pid 6673] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] rmdir("./269/file0") = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./269") = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6674 [pid 5031] mkdir("./270", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [ 235.664787][ T6670] loop0: detected capacity change from 0 to 4096 [ 235.698014][ T6670] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 6674 attached ) = -1 ENXIO (No such device or address) [pid 6674] set_robust_list(0x55555635e660, 24 [pid 5031] close(3 [pid 6674] <... set_robust_list resumed>) = 0 [pid 6674] chdir("./271" [pid 5031] <... close resumed>) = 0 [pid 6674] <... chdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6674] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6674] setpgid(0, 0) = 0 [pid 6674] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6674] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 6675 attached [pid 6672] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6675] set_robust_list(0x55555635e660, 24) = 0 [pid 6674] close(3 [pid 6675] chdir("./270" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6675 [pid 6674] <... close resumed>) = 0 [pid 6675] <... chdir resumed>) = 0 [pid 6674] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6675] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6674] memfd_create("syzkaller", 0 [pid 6671] <... write resumed>) = 2097152 [pid 6675] <... prctl resumed>) = 0 [pid 6675] setpgid(0, 0) = 0 [pid 6675] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6675] write(3, "1000", 4 [pid 6671] munmap(0x7ff0df171000, 138412032 [pid 6675] <... write resumed>) = 4 [pid 6674] <... memfd_create resumed>) = 3 [pid 6674] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6675] close(3 [pid 6671] <... munmap resumed>) = 0 [pid 6675] <... close resumed>) = 0 [pid 6675] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6670] <... mount resumed>) = 0 [pid 6671] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6671] ioctl(4, LOOP_SET_FD, 3 [pid 6675] memfd_create("syzkaller", 0 [pid 6670] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6671] <... ioctl resumed>) = 0 [pid 6670] <... openat resumed>) = 3 [pid 6675] <... memfd_create resumed>) = 3 [pid 6675] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6670] chdir("./file0" [pid 6675] <... mmap resumed>) = 0x7ff0df171000 [pid 6670] <... chdir resumed>) = 0 [pid 6670] ioctl(4, LOOP_CLR_FD) = 0 [pid 6670] close(4) = 0 [pid 6671] close(3) = 0 [pid 6671] mkdir("./file0", 0777) = 0 [pid 6674] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6672] <... write resumed>) = 2097152 [pid 6671] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6670] exit_group(0) = ? [ 235.796250][ T6671] loop5: detected capacity change from 0 to 4096 [pid 6673] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6672] munmap(0x7ff0df171000, 138412032) = 0 [pid 6670] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6670, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6672] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./272/binderfs", [pid 6672] <... openat resumed>) = 4 [ 235.857378][ T6671] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6672] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./272/binderfs") = 0 [pid 5029] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6675] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6672] <... ioctl resumed>) = 0 [pid 6672] close(3) = 0 [pid 6672] mkdir("./file0", 0777) = 0 [pid 6673] <... write resumed>) = 2097152 [ 235.898048][ T6672] loop4: detected capacity change from 0 to 4096 [pid 6673] munmap(0x7ff0df171000, 138412032 [pid 6674] <... write resumed>) = 2097152 [pid 6673] <... munmap resumed>) = 0 [pid 6672] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6673] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./272/file0", [pid 6673] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6673] ioctl(4, LOOP_SET_FD, 3 [pid 5029] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6674] munmap(0x7ff0df171000, 138412032) = 0 [pid 6674] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6674] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 6673] <... ioctl resumed>) = 0 [pid 6671] <... mount resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6673] close(3 [pid 5029] getdents64(4, [pid 6673] <... close resumed>) = 0 [pid 6673] mkdir("./file0", 0777 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6673] <... mkdir resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6673] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6671] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [ 235.969144][ T6672] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 235.982217][ T6673] loop3: detected capacity change from 0 to 4096 [ 235.991937][ T6674] loop1: detected capacity change from 0 to 4096 [pid 6671] <... openat resumed>) = 3 [pid 5029] rmdir("./272/file0" [pid 6674] <... ioctl resumed>) = 0 [pid 6674] close(3) = 0 [pid 6674] mkdir("./file0", 0777 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6675] <... write resumed>) = 2097152 [pid 6671] chdir("./file0" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6675] munmap(0x7ff0df171000, 138412032 [pid 6674] <... mkdir resumed>) = 0 [pid 5029] close(3 [pid 6674] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6675] <... munmap resumed>) = 0 [pid 6671] <... chdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6675] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6671] ioctl(4, LOOP_CLR_FD [pid 5029] rmdir("./272" [pid 6671] <... ioctl resumed>) = 0 [pid 6675] <... openat resumed>) = 4 [pid 6672] <... mount resumed>) = 0 [ 236.031050][ T6673] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 236.053449][ T6674] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6671] close(4 [pid 5029] <... rmdir resumed>) = 0 [pid 6675] ioctl(4, LOOP_SET_FD, 3 [pid 6672] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6671] <... close resumed>) = 0 [pid 5029] mkdir("./273", 0777 [pid 6672] <... openat resumed>) = 3 [pid 6671] exit_group(0 [pid 6672] chdir("./file0" [pid 6671] <... exit_group resumed>) = ? [pid 5029] <... mkdir resumed>) = 0 [pid 6672] <... chdir resumed>) = 0 [pid 6672] ioctl(4, LOOP_CLR_FD) = 0 [pid 6672] close(4) = 0 [pid 6672] exit_group(0) = ? [pid 6672] +++ exited with 0 +++ [pid 6675] <... ioctl resumed>) = 0 [pid 6671] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6672, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6675] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6671, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6675] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6675] mkdir("./file0", 0777 [pid 5033] umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6675] <... mkdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] newfstatat(3, "", [pid 5029] close(3 [pid 6675] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./266/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] unlink("./266/binderfs"./strace-static-x86_64: Process 6676 attached ) = 0 [pid 5034] newfstatat(3, "", [pid 5033] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6676 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6676] set_robust_list(0x55555635e660, 24 [pid 6674] <... mount resumed>) = 0 [pid 5034] umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6676] <... set_robust_list resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6676] chdir("./273" [pid 5034] newfstatat(AT_FDCWD, "./264/binderfs", [pid 6676] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./264/binderfs" [pid 6676] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6674] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6676] <... prctl resumed>) = 0 [pid 6674] <... openat resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [pid 6674] chdir("./file0" [pid 5034] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6676] setpgid(0, 0 [pid 6674] <... chdir resumed>) = 0 [pid 6676] <... setpgid resumed>) = 0 [pid 6674] ioctl(4, LOOP_CLR_FD [pid 6676] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6674] <... ioctl resumed>) = 0 [pid 6676] <... openat resumed>) = 3 [pid 6674] close(4 [pid 6676] write(3, "1000", 4 [pid 6674] <... close resumed>) = 0 [pid 6676] <... write resumed>) = 4 [pid 6674] exit_group(0) = ? [pid 6676] close(3 [pid 6674] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6674, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6676] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6676] symlink("/dev/binderfs", "./binderfs" [pid 5030] openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6676] <... symlink resumed>) = 0 [ 236.085394][ T6675] loop2: detected capacity change from 0 to 4096 [ 236.117012][ T6675] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6673] <... mount resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6676] memfd_create("syzkaller", 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 6673] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] newfstatat(AT_FDCWD, "./266/file0", [pid 6673] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6673] chdir("./file0" [pid 5033] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6676] <... memfd_create resumed>) = 3 [pid 6673] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6676] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6673] ioctl(4, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6676] <... mmap resumed>) = 0x7ff0df171000 [pid 6673] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6673] close(4 [pid 5033] newfstatat(4, "", [pid 5030] newfstatat(AT_FDCWD, "./271/binderfs", [pid 6673] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6673] exit_group(0 [pid 5033] getdents64(4, [pid 5030] unlink("./271/binderfs" [pid 6673] <... exit_group resumed>) = ? [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... unlink resumed>) = 0 [pid 6673] +++ exited with 0 +++ [pid 5033] getdents64(4, [pid 5030] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6673, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5033] close(4) = 0 [pid 5033] rmdir("./266/file0") = 0 [pid 5032] umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(3, [pid 5032] openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5033] close(3 [pid 5032] newfstatat(3, "", [pid 5033] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] rmdir("./266" [pid 5032] getdents64(3, [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] mkdir("./267", 0777 [pid 5032] umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./273/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./273/binderfs") = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./271/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5030] openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5034] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6677 attached [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./271/file0" [pid 6677] set_robust_list(0x55555635e660, 24 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6677 [pid 5030] <... rmdir resumed>) = 0 [pid 6677] <... set_robust_list resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./264/file0", [pid 6675] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(3, [pid 6677] chdir("./267" [pid 5034] umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6677] <... chdir resumed>) = 0 [pid 6675] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(3 [pid 6677] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6675] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5030] <... close resumed>) = 0 [pid 6675] chdir("./file0" [pid 5030] rmdir("./271" [pid 6677] <... prctl resumed>) = 0 [pid 6675] <... chdir resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5030] <... rmdir resumed>) = 0 [pid 6677] setpgid(0, 0 [pid 6675] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6677] <... setpgid resumed>) = 0 [pid 6675] <... ioctl resumed>) = 0 [pid 5034] getdents64(4, [pid 6675] close(4 [pid 6677] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6675] <... close resumed>) = 0 [pid 6675] exit_group(0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./272", 0777 [pid 6675] <... exit_group resumed>) = ? [pid 5034] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6677] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6677] write(3, "1000", 4 [pid 6675] +++ exited with 0 +++ [pid 5032] newfstatat(AT_FDCWD, "./273/file0", [pid 6677] <... write resumed>) = 4 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6675, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6677] close(3) = 0 [pid 5034] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6677] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... close resumed>) = 0 [pid 5032] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6677] <... symlink resumed>) = 0 [pid 5034] rmdir("./264/file0" [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(4 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6677] memfd_create("syzkaller", 0 [pid 5032] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./273/file0" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] getdents64(3, [pid 5034] <... close resumed>) = 0 [pid 5030] close(3 [pid 5034] rmdir("./264" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... close resumed>) = 0 [pid 5032] close(3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6678 attached [pid 6677] <... memfd_create resumed>) = 3 [pid 6676] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5034] mkdir("./265", 0777 [pid 5031] newfstatat(3, "", [pid 6678] set_robust_list(0x55555635e660, 24 [pid 5032] rmdir("./273" [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6678 [pid 6678] <... set_robust_list resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6678] chdir("./272" [pid 6677] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] mkdir("./274", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6678] <... chdir resumed>) = 0 [pid 6677] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 6678] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6678] <... prctl resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6678] setpgid(0, 0) = 0 [pid 6678] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6678] write(3, "1000", 4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... ioctl resumed>) = 0 [pid 5031] umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6678] <... write resumed>) = 4 [pid 5032] close(3 [pid 6678] close(3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6678] <... close resumed>) = 0 [pid 5034] close(3 [pid 5032] <... close resumed>) = 0 [pid 6678] symlink("/dev/binderfs", "./binderfs" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6678] <... symlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./270/binderfs", ./strace-static-x86_64: Process 6679 attached [pid 6678] memfd_create("syzkaller", 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6679] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6679 [pid 6679] chdir("./274") = 0 [pid 6679] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6678] <... memfd_create resumed>) = 3 [pid 6679] <... prctl resumed>) = 0 [pid 6678] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6679] setpgid(0, 0 [pid 6678] <... mmap resumed>) = 0x7ff0df171000 [pid 6679] <... setpgid resumed>) = 0 [pid 6679] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] unlink("./270/binderfs") = 0 [pid 6679] <... openat resumed>) = 3 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6680 [pid 5031] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6679] write(3, "1000", 4) = 4 [pid 6679] close(3./strace-static-x86_64: Process 6680 attached ) = 0 [pid 6680] set_robust_list(0x55555635e660, 24 [pid 6679] symlink("/dev/binderfs", "./binderfs" [pid 6680] <... set_robust_list resumed>) = 0 [pid 6679] <... symlink resumed>) = 0 [pid 6680] chdir("./265" [pid 6679] memfd_create("syzkaller", 0 [pid 6680] <... chdir resumed>) = 0 [pid 6680] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6679] <... memfd_create resumed>) = 3 [pid 6680] <... prctl resumed>) = 0 [pid 6679] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6680] setpgid(0, 0) = 0 [pid 6680] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6680] write(3, "1000", 4 [pid 6676] <... write resumed>) = 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 6680] <... write resumed>) = 4 [pid 5031] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6680] close(3) = 0 [pid 5031] newfstatat(AT_FDCWD, "./270/file0", [pid 6680] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6680] memfd_create("syzkaller", 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6680] <... memfd_create resumed>) = 3 [pid 6677] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6676] munmap(0x7ff0df171000, 138412032 [pid 5031] openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6680] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... openat resumed>) = 4 [pid 6680] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] newfstatat(4, "", [pid 6676] <... munmap resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6678] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6676] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6676] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./270/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./270") = 0 [pid 5031] mkdir("./271", 0777) = 0 [pid 6676] <... ioctl resumed>) = 0 [ 236.446448][ T6676] loop0: detected capacity change from 0 to 4096 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 6676] close(3) = 0 [pid 6676] mkdir("./file0", 0777) = 0 [pid 6676] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6680] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6679] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6677] <... write resumed>) = 2097152 [pid 6677] munmap(0x7ff0df171000, 138412032) = 0 [pid 6677] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6678] <... write resumed>) = 2097152 [ 236.509850][ T6676] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6678] munmap(0x7ff0df171000, 138412032) = 0 [pid 6677] ioctl(4, LOOP_SET_FD, 3 [pid 6678] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6678] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... ioctl resumed>) = 0 [pid 6677] <... ioctl resumed>) = 0 [pid 6677] close(3) = 0 [pid 6678] <... ioctl resumed>) = 0 [pid 6677] mkdir("./file0", 0777 [pid 6676] <... mount resumed>) = 0 [pid 5031] close(3 [pid 6677] <... mkdir resumed>) = 0 [pid 6677] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6679] <... write resumed>) = 2097152 [pid 6678] close(3 [pid 6676] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 6676] <... openat resumed>) = 3 [pid 6676] chdir("./file0") = 0 [pid 6679] munmap(0x7ff0df171000, 138412032 [pid 6676] ioctl(4, LOOP_CLR_FD) = 0 [pid 6676] close(4) = 0 [pid 6676] exit_group(0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6678] <... close resumed>) = 0 [pid 6678] mkdir("./file0", 0777 [pid 6676] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 6681 attached [pid 6680] <... write resumed>) = 2097152 [pid 6678] <... mkdir resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6681 [pid 6681] set_robust_list(0x55555635e660, 24) = 0 [pid 6680] munmap(0x7ff0df171000, 138412032 [pid 6681] chdir("./271" [pid 6678] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6676] +++ exited with 0 +++ [pid 6681] <... chdir resumed>) = 0 [pid 6679] <... munmap resumed>) = 0 [pid 6681] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6676, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 6681] <... prctl resumed>) = 0 [pid 6679] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6681] setpgid(0, 0 [pid 6679] <... openat resumed>) = 4 [pid 6681] <... setpgid resumed>) = 0 [ 236.594121][ T6677] loop4: detected capacity change from 0 to 4096 [ 236.598910][ T6678] loop1: detected capacity change from 0 to 4096 [ 236.619927][ T6677] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6679] ioctl(4, LOOP_SET_FD, 3 [pid 6681] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6680] <... munmap resumed>) = 0 [pid 6681] <... openat resumed>) = 3 [pid 6680] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6680] ioctl(4, LOOP_SET_FD, 3 [pid 6681] write(3, "1000", 4) = 4 [pid 6681] close(3) = 0 [pid 6681] symlink("/dev/binderfs", "./binderfs" [pid 5029] umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6681] <... symlink resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 6681] memfd_create("syzkaller", 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6681] <... memfd_create resumed>) = 3 [pid 6679] <... ioctl resumed>) = 0 [pid 6679] close(3) = 0 [ 236.647573][ T6679] loop3: detected capacity change from 0 to 4096 [ 236.653928][ T6678] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 236.660743][ T6680] loop5: detected capacity change from 0 to 4096 [pid 6679] mkdir("./file0", 0777) = 0 [pid 5029] getdents64(3, [pid 6679] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6681] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6680] <... ioctl resumed>) = 0 [pid 6680] close(3) = 0 [pid 6680] mkdir("./file0", 0777 [pid 5029] newfstatat(AT_FDCWD, "./273/binderfs", [pid 6680] <... mkdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6680] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] unlink("./273/binderfs") = 0 [pid 5029] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6677] <... mount resumed>) = 0 [pid 6677] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6677] chdir("./file0") = 0 [ 236.694479][ T6679] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 236.719311][ T6680] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6677] ioctl(4, LOOP_CLR_FD) = 0 [pid 6677] close(4) = 0 [pid 6678] <... mount resumed>) = 0 [pid 6677] exit_group(0) = ? [pid 6677] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6677, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6678] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6678] <... openat resumed>) = 3 [pid 6681] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6678] chdir("./file0" [pid 5033] openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6678] <... chdir resumed>) = 0 [pid 6678] ioctl(4, LOOP_CLR_FD [pid 5033] <... openat resumed>) = 3 [pid 6679] <... mount resumed>) = 0 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 6679] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6679] <... openat resumed>) = 3 [pid 5033] umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6679] chdir("./file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6679] <... chdir resumed>) = 0 [pid 6678] <... ioctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./267/binderfs", [pid 6679] ioctl(4, LOOP_CLR_FD [pid 6678] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6679] <... ioctl resumed>) = 0 [pid 5033] unlink("./267/binderfs" [pid 6679] close(4 [pid 5033] <... unlink resumed>) = 0 [pid 6679] <... close resumed>) = 0 [pid 5033] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6679] exit_group(0) = ? [pid 6678] <... close resumed>) = 0 [pid 6679] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6679, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6678] exit_group(0 [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 6678] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6678] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6678, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... umount2 resumed>) = 0 [pid 5032] umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... restart_syscall resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./274/binderfs", [pid 5033] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./274/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./267/file0", [pid 5032] <... unlink resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./272/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./272/binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5030] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./267/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./267") = 0 [pid 6681] <... write resumed>) = 2097152 [pid 6681] munmap(0x7ff0df171000, 138412032 [pid 5033] mkdir("./268", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... umount2 resumed>) = 0 [pid 6681] <... munmap resumed>) = 0 [pid 6680] <... mount resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5029] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6681] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6680] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6681] <... openat resumed>) = 4 [pid 6680] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6681] ioctl(4, LOOP_SET_FD, 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = 0 [pid 6680] chdir("./file0" [pid 5029] newfstatat(AT_FDCWD, "./273/file0", [pid 6680] <... chdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6680] ioctl(4, LOOP_CLR_FD) = 0 [pid 6680] close(4) = 0 [pid 6680] exit_group(0) = ? [pid 6680] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6680, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5034] umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(4, "", [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] newfstatat(AT_FDCWD, "./265/binderfs", [pid 5029] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] unlink("./265/binderfs" [pid 5029] close(4 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./273/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./273") = 0 [pid 5029] mkdir("./274", 0777 [pid 5032] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./274/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6681] <... ioctl resumed>) = 0 [pid 6681] close(3) = 0 [pid 6681] mkdir("./file0", 0777) = 0 [pid 6681] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 5032] openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6682 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6682 attached [pid 5032] close(4 [pid 6682] set_robust_list(0x55555635e660, 24 [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6682] <... set_robust_list resumed>) = 0 [pid 5032] rmdir("./274/file0" [pid 6682] chdir("./274") = 0 [pid 6682] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6682] setpgid(0, 0) = 0 [pid 6682] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 236.877350][ T6681] loop2: detected capacity change from 0 to 4096 [ 236.914515][ T6681] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6682] write(3, "1000", 4) = 4 [pid 6682] close(3) = 0 [pid 6682] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6682] memfd_create("syzkaller", 0 [pid 5032] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./272/file0", [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6682] <... memfd_create resumed>) = 3 [pid 5032] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6682] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 6682] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] rmdir("./274" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] mkdir("./275", 0777 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(4 [pid 5032] close(3 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./272/file0" [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5033] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6683 attached [pid 5030] close(3 [pid 5034] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6683 [pid 5030] <... close resumed>) = 0 [pid 6683] set_robust_list(0x55555635e660, 24 [pid 5030] rmdir("./272" [pid 6683] <... set_robust_list resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 6683] chdir("./275" [pid 5034] newfstatat(AT_FDCWD, "./265/file0", [pid 5033] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6683] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] mkdir("./273", 0777 [pid 6683] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6684 attached [pid 6683] <... prctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... mkdir resumed>) = 0 [pid 6684] set_robust_list(0x55555635e660, 24 [pid 6683] setpgid(0, 0 [pid 5034] openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6684 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6684] <... set_robust_list resumed>) = 0 [pid 6683] <... setpgid resumed>) = 0 [pid 6681] <... mount resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 3 [pid 6684] chdir("./268" [pid 6681] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6684] <... chdir resumed>) = 0 [pid 6683] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6681] <... openat resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6681] chdir("./file0" [pid 6683] <... openat resumed>) = 3 [pid 6681] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(3 [pid 6683] write(3, "1000", 4 [pid 6681] ioctl(4, LOOP_CLR_FD [pid 5034] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 6681] <... ioctl resumed>) = 0 [pid 6684] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6683] <... write resumed>) = 4 [pid 6681] close(4 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6684] <... prctl resumed>) = 0 [pid 6683] close(3 [pid 6682] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6681] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6684] setpgid(0, 0 [pid 6683] <... close resumed>) = 0 [pid 6681] exit_group(0 [pid 5034] getdents64(4, [pid 6684] <... setpgid resumed>) = 0 [pid 6683] symlink("/dev/binderfs", "./binderfs" [pid 6681] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 6685 attached [pid 6684] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6681] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6685] set_robust_list(0x55555635e660, 24 [pid 6684] <... openat resumed>) = 3 [pid 5034] close(4 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6681, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6685 [pid 6685] <... set_robust_list resumed>) = 0 [pid 6683] <... symlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6684] write(3, "1000", 4 [pid 5034] rmdir("./265/file0" [pid 5031] umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6684] <... write resumed>) = 4 [pid 5031] openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6685] chdir("./273" [pid 5031] <... openat resumed>) = 3 [pid 6685] <... chdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6684] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6683] memfd_create("syzkaller", 0 [pid 5031] getdents64(3, [pid 6685] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6684] <... close resumed>) = 0 [pid 6683] <... memfd_create resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6685] <... prctl resumed>) = 0 [pid 6684] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(3, [pid 5031] umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6685] setpgid(0, 0 [pid 6684] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6685] <... setpgid resumed>) = 0 [pid 6683] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(AT_FDCWD, "./271/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6685] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] close(3 [pid 6683] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... close resumed>) = 0 [pid 5031] unlink("./271/binderfs" [pid 5034] rmdir("./265" [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 6685] <... openat resumed>) = 3 [pid 6684] memfd_create("syzkaller", 0 [pid 5034] mkdir("./266", 0777 [pid 6685] write(3, "1000", 4 [pid 6684] <... memfd_create resumed>) = 3 [pid 5034] <... mkdir resumed>) = 0 [pid 6685] <... write resumed>) = 4 [pid 6684] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 6685] close(3 [pid 6684] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6685] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6685] symlink("/dev/binderfs", "./binderfs" [pid 5034] close(3) = 0 [pid 6685] <... symlink resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6686 attached [pid 6686] set_robust_list(0x55555635e660, 24 [pid 6685] memfd_create("syzkaller", 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6686 [pid 5031] <... umount2 resumed>) = 0 [pid 6686] <... set_robust_list resumed>) = 0 [pid 6686] chdir("./266") = 0 [pid 6686] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6686] setpgid(0, 0) = 0 [pid 6686] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6685] <... memfd_create resumed>) = 3 [pid 5031] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6686] write(3, "1000", 4 [pid 6685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6686] <... write resumed>) = 4 [pid 6682] <... write resumed>) = 2097152 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6686] close(3 [pid 6685] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] newfstatat(AT_FDCWD, "./271/file0", [pid 6686] <... close resumed>) = 0 [pid 6682] munmap(0x7ff0df171000, 138412032 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6686] symlink("/dev/binderfs", "./binderfs" [pid 5031] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6686] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6686] memfd_create("syzkaller", 0 [pid 6682] <... munmap resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6686] <... memfd_create resumed>) = 3 [pid 5031] getdents64(4, [pid 6686] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6682] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6686] <... mmap resumed>) = 0x7ff0df171000 [pid 6682] <... openat resumed>) = 4 [pid 5031] getdents64(4, [pid 6682] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6683] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] close(4) = 0 [pid 5031] rmdir("./271/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./271") = 0 [pid 5031] mkdir("./272", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6687 attached [pid 6682] <... ioctl resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6687 [pid 6682] close(3 [pid 6687] set_robust_list(0x55555635e660, 24 [pid 6682] <... close resumed>) = 0 [pid 6682] mkdir("./file0", 0777 [pid 6687] <... set_robust_list resumed>) = 0 [pid 6684] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6682] <... mkdir resumed>) = 0 [pid 6687] chdir("./272" [ 237.182520][ T6682] loop0: detected capacity change from 0 to 4096 [pid 6682] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6687] <... chdir resumed>) = 0 [pid 6687] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6687] setpgid(0, 0) = 0 [pid 6687] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6687] write(3, "1000", 4) = 4 [pid 6683] <... write resumed>) = 2097152 [pid 6687] close(3) = 0 [pid 6687] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6687] memfd_create("syzkaller", 0 [pid 6685] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6687] <... memfd_create resumed>) = 3 [pid 6687] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6684] <... write resumed>) = 2097152 [ 237.229419][ T6682] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6683] munmap(0x7ff0df171000, 138412032 [pid 6686] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6684] munmap(0x7ff0df171000, 138412032 [pid 6683] <... munmap resumed>) = 0 [pid 6683] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6683] ioctl(4, LOOP_SET_FD, 3 [pid 6684] <... munmap resumed>) = 0 [pid 6684] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6684] ioctl(4, LOOP_SET_FD, 3 [pid 6683] <... ioctl resumed>) = 0 [pid 6683] close(3) = 0 [pid 6684] <... ioctl resumed>) = 0 [pid 6683] mkdir("./file0", 0777 [pid 6685] <... write resumed>) = 2097152 [pid 6684] close(3 [pid 6683] <... mkdir resumed>) = 0 [pid 6685] munmap(0x7ff0df171000, 138412032 [pid 6684] <... close resumed>) = 0 [pid 6684] mkdir("./file0", 0777) = 0 [pid 6687] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6685] <... munmap resumed>) = 0 [pid 6684] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [ 237.305239][ T6683] loop3: detected capacity change from 0 to 4096 [ 237.327708][ T6684] loop4: detected capacity change from 0 to 4096 [pid 6683] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6686] <... write resumed>) = 2097152 [pid 6685] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6686] munmap(0x7ff0df171000, 138412032 [pid 6685] <... openat resumed>) = 4 [pid 6686] <... munmap resumed>) = 0 [pid 6685] ioctl(4, LOOP_SET_FD, 3 [pid 6686] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6685] <... ioctl resumed>) = 0 [pid 6685] close(3 [pid 6686] <... openat resumed>) = 4 [pid 6685] <... close resumed>) = 0 [pid 6686] ioctl(4, LOOP_SET_FD, 3 [pid 6685] mkdir("./file0", 0777 [pid 6682] <... mount resumed>) = 0 [pid 6685] <... mkdir resumed>) = 0 [ 237.362026][ T6684] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 237.373440][ T6683] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 237.392518][ T6685] loop1: detected capacity change from 0 to 4096 [ 237.401992][ T6686] loop5: detected capacity change from 0 to 4096 [pid 6685] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6682] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6686] <... ioctl resumed>) = 0 [pid 6682] <... openat resumed>) = 3 [pid 6686] close(3 [pid 6683] <... mount resumed>) = 0 [pid 6687] <... write resumed>) = 2097152 [pid 6687] munmap(0x7ff0df171000, 138412032 [pid 6686] <... close resumed>) = 0 [pid 6684] <... mount resumed>) = 0 [pid 6682] chdir("./file0" [pid 6686] mkdir("./file0", 0777 [pid 6684] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6683] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6682] <... chdir resumed>) = 0 [pid 6686] <... mkdir resumed>) = 0 [pid 6684] <... openat resumed>) = 3 [pid 6683] <... openat resumed>) = 3 [pid 6682] ioctl(4, LOOP_CLR_FD [pid 6686] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6684] chdir("./file0" [pid 6683] chdir("./file0" [pid 6682] <... ioctl resumed>) = 0 [pid 6687] <... munmap resumed>) = 0 [pid 6684] <... chdir resumed>) = 0 [pid 6683] <... chdir resumed>) = 0 [pid 6682] close(4) = 0 [pid 6684] ioctl(4, LOOP_CLR_FD [pid 6683] ioctl(4, LOOP_CLR_FD [pid 6684] <... ioctl resumed>) = 0 [pid 6683] <... ioctl resumed>) = 0 [pid 6683] close(4 [pid 6682] exit_group(0 [pid 6683] <... close resumed>) = 0 [pid 6682] <... exit_group resumed>) = ? [pid 6687] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6683] exit_group(0 [pid 6687] <... openat resumed>) = 4 [pid 6687] ioctl(4, LOOP_SET_FD, 3 [pid 6684] close(4) = 0 [pid 6684] exit_group(0 [pid 6683] <... exit_group resumed>) = ? [pid 6682] +++ exited with 0 +++ [pid 6684] <... exit_group resumed>) = ? [pid 6683] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6682, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6687] <... ioctl resumed>) = 0 [pid 6684] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6683, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6687] close(3 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6687] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6684, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5032] umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... restart_syscall resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(3, "", [pid 5029] <... openat resumed>) = 3 [pid 6687] mkdir("./file0", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 5029] newfstatat(3, "", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6687] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 6687] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6685] <... mount resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 237.417112][ T6685] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 237.437794][ T6686] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 237.450371][ T6687] loop2: detected capacity change from 0 to 4096 [pid 6685] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] newfstatat(3, "", [pid 5032] newfstatat(AT_FDCWD, "./275/binderfs", [pid 5029] umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6685] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6685] chdir("./file0" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] unlink("./275/binderfs" [pid 5029] newfstatat(AT_FDCWD, "./274/binderfs", [pid 6685] <... chdir resumed>) = 0 [pid 5033] umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6685] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./268/binderfs", [pid 6686] <... mount resumed>) = 0 [pid 6685] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./274/binderfs" [pid 6686] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6685] close(4 [pid 5033] unlink("./268/binderfs" [pid 5029] <... unlink resumed>) = 0 [pid 6685] <... close resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5029] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6685] exit_group(0) = ? [pid 6686] <... openat resumed>) = 3 [pid 6686] chdir("./file0") = 0 [pid 6685] +++ exited with 0 +++ [ 237.474368][ T6687] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6685, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 6686] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6686] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6686] <... close resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6686] exit_group(0) = ? [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./273/binderfs", [pid 5032] newfstatat(AT_FDCWD, "./275/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./273/binderfs" [pid 5032] openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6686] +++ exited with 0 +++ [pid 5032] <... openat resumed>) = 4 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6686, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=10 /* 0.10 s */} --- [pid 5034] umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(4, "", [pid 5034] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(3, "", [pid 5032] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6687] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] newfstatat(AT_FDCWD, "./266/binderfs", [pid 6687] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] getdents64(4, [pid 6687] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6687] chdir("./file0" [pid 5034] unlink("./266/binderfs" [pid 5032] close(4 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6687] <... chdir resumed>) = 0 [pid 5032] rmdir("./275/file0" [pid 5034] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6687] ioctl(4, LOOP_CLR_FD [pid 5032] <... rmdir resumed>) = 0 [pid 6687] <... ioctl resumed>) = 0 [pid 5032] getdents64(3, [pid 6687] close(4) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6687] exit_group(0 [pid 5032] close(3 [pid 6687] <... exit_group resumed>) = ? [pid 5032] <... close resumed>) = 0 [pid 6687] +++ exited with 0 +++ [pid 5032] rmdir("./275" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6687, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./276", 0777 [pid 5031] umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./272/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./272/binderfs") = 0 [pid 5031] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./274/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5033] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./274/file0" [pid 5033] newfstatat(AT_FDCWD, "./268/file0", [pid 5029] <... rmdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] close(3 [pid 5033] <... openat resumed>) = 4 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./274" [pid 5033] newfstatat(4, "", [pid 5029] <... rmdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] mkdir("./275", 0777 [pid 5033] getdents64(4, [pid 5029] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] close(4 [pid 5029] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] rmdir("./268/file0" [pid 5032] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... rmdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 5033] getdents64(3, [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6688 attached [pid 5033] close(3 [pid 5032] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6688 [pid 5033] rmdir("./268") = 0 [pid 5033] mkdir("./269", 0777 [pid 6688] set_robust_list(0x55555635e660, 24 [pid 5033] <... mkdir resumed>) = 0 [pid 6688] <... set_robust_list resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6688] chdir("./275" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6689 [pid 6688] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6689 attached [pid 6688] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = 0 [pid 6688] <... prctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6689] set_robust_list(0x55555635e660, 24 [pid 6688] setpgid(0, 0 [pid 5033] close(3 [pid 6688] <... setpgid resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6688] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6689] <... set_robust_list resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6689] chdir("./276" [pid 6688] <... openat resumed>) = 3 [pid 6688] write(3, "1000", 4) = 4 [pid 6688] close(3) = 0 [pid 6688] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5030] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6688] memfd_create("syzkaller", 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6690 [pid 5030] newfstatat(AT_FDCWD, "./273/file0", ./strace-static-x86_64: Process 6690 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6690] set_robust_list(0x55555635e660, 24 [pid 6689] <... chdir resumed>) = 0 [pid 5030] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6690] <... set_robust_list resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6690] chdir("./269" [pid 6689] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6690] <... chdir resumed>) = 0 [pid 6688] <... memfd_create resumed>) = 3 [pid 5030] <... openat resumed>) = 4 [pid 6690] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6688] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6690] <... prctl resumed>) = 0 [pid 6688] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] newfstatat(4, "", [pid 6690] setpgid(0, 0 [pid 6689] <... prctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 6690] <... setpgid resumed>) = 0 [pid 6690] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6690] <... openat resumed>) = 3 [pid 6689] setpgid(0, 0 [pid 5030] getdents64(4, [pid 6689] <... setpgid resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6689] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... close resumed>) = 0 [pid 6690] write(3, "1000", 4 [pid 5030] rmdir("./273/file0" [pid 6690] <... write resumed>) = 4 [pid 6689] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 6689] write(3, "1000", 4) = 4 [pid 6689] close(3) = 0 [pid 6689] symlink("/dev/binderfs", "./binderfs" [pid 6690] close(3) = 0 [pid 6690] symlink("/dev/binderfs", "./binderfs" [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6690] <... symlink resumed>) = 0 [pid 5030] close(3) = 0 [pid 6689] <... symlink resumed>) = 0 [pid 5030] rmdir("./273") = 0 [pid 6690] memfd_create("syzkaller", 0 [pid 5030] mkdir("./274", 0777) = 0 [pid 6689] memfd_create("syzkaller", 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6689] <... memfd_create resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6690] <... memfd_create resumed>) = 3 [pid 5030] close(3 [pid 6690] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6689] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... close resumed>) = 0 [pid 6690] <... mmap resumed>) = 0x7ff0df171000 [pid 6689] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6691 ./strace-static-x86_64: Process 6691 attached [pid 5034] <... umount2 resumed>) = 0 [pid 6691] set_robust_list(0x55555635e660, 24) = 0 [pid 6691] chdir("./274" [pid 5034] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6691] <... chdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./266/file0", [pid 6691] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6691] <... prctl resumed>) = 0 [pid 5034] umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6691] setpgid(0, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6691] <... setpgid resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6691] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... openat resumed>) = 4 [pid 6691] <... openat resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 6691] write(3, "1000", 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6691] <... write resumed>) = 4 [pid 5034] getdents64(4, [pid 6691] close(3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6691] <... close resumed>) = 0 [pid 5034] getdents64(4, [pid 6691] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6688] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... close resumed>) = 0 [pid 6691] <... symlink resumed>) = 0 [pid 5034] rmdir("./266/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./266" [pid 5031] <... umount2 resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6691] memfd_create("syzkaller", 0 [pid 5034] mkdir("./267", 0777 [pid 5031] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./272/file0", [pid 6691] <... memfd_create resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6691] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6691] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... openat resumed>) = 4 [pid 5034] close(3 [pid 5031] newfstatat(4, "", [pid 5034] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(4, [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6692 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 6692 attached [pid 6690] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] getdents64(4, [pid 6692] set_robust_list(0x55555635e660, 24) = 0 [pid 6692] chdir("./267") = 0 [pid 6692] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6692] setpgid(0, 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./272/file0" [pid 6692] <... setpgid resumed>) = 0 [pid 6689] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 6692] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] getdents64(3, [pid 6692] <... openat resumed>) = 3 [pid 6692] write(3, "1000", 4) = 4 [pid 6692] close(3) = 0 [pid 6692] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6692] memfd_create("syzkaller", 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./272" [pid 6692] <... memfd_create resumed>) = 3 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./273", 0777 [pid 6692] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6693 attached , child_tidptr=0x55555635e650) = 6693 [pid 6693] set_robust_list(0x55555635e660, 24) = 0 [pid 6688] <... write resumed>) = 2097152 [pid 6693] chdir("./273" [pid 6688] munmap(0x7ff0df171000, 138412032) = 0 [pid 6688] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6693] <... chdir resumed>) = 0 [pid 6693] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6688] <... openat resumed>) = 4 [pid 6688] ioctl(4, LOOP_SET_FD, 3 [pid 6693] <... prctl resumed>) = 0 [pid 6693] setpgid(0, 0 [pid 6691] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6693] <... setpgid resumed>) = 0 [pid 6690] <... write resumed>) = 2097152 [pid 6689] <... write resumed>) = 2097152 [pid 6693] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6689] munmap(0x7ff0df171000, 138412032 [pid 6693] write(3, "1000", 4 [pid 6689] <... munmap resumed>) = 0 [pid 6693] <... write resumed>) = 4 [pid 6693] close(3 [pid 6689] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6693] <... close resumed>) = 0 [pid 6689] <... openat resumed>) = 4 [pid 6693] symlink("/dev/binderfs", "./binderfs" [pid 6689] ioctl(4, LOOP_SET_FD, 3 [pid 6690] munmap(0x7ff0df171000, 138412032) = 0 [pid 6688] <... ioctl resumed>) = 0 [pid 6688] close(3) = 0 [pid 6688] mkdir("./file0", 0777) = 0 [pid 6688] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6693] <... symlink resumed>) = 0 [pid 6690] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6693] memfd_create("syzkaller", 0 [pid 6690] <... openat resumed>) = 4 [ 237.899682][ T6688] loop0: detected capacity change from 0 to 4096 [ 237.931140][ T6689] loop3: detected capacity change from 0 to 4096 [ 237.940845][ T6688] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6690] ioctl(4, LOOP_SET_FD, 3 [pid 6693] <... memfd_create resumed>) = 3 [pid 6693] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6689] <... ioctl resumed>) = 0 [pid 6693] <... mmap resumed>) = 0x7ff0df171000 [pid 6689] close(3) = 0 [pid 6689] mkdir("./file0", 0777 [pid 6692] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6689] <... mkdir resumed>) = 0 [pid 6690] <... ioctl resumed>) = 0 [pid 6690] close(3) = 0 [pid 6691] <... write resumed>) = 2097152 [pid 6690] mkdir("./file0", 0777) = 0 [pid 6689] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 237.951760][ T6690] loop4: detected capacity change from 0 to 4096 [ 237.984917][ T6689] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6690] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6691] munmap(0x7ff0df171000, 138412032) = 0 [pid 6691] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6691] ioctl(4, LOOP_SET_FD, 3 [pid 6689] <... mount resumed>) = 0 [pid 6689] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6691] <... ioctl resumed>) = 0 [pid 6693] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6691] close(3 [pid 6689] chdir("./file0" [pid 6688] <... mount resumed>) = 0 [pid 6692] <... write resumed>) = 2097152 [pid 6691] <... close resumed>) = 0 [pid 6689] <... chdir resumed>) = 0 [pid 6692] munmap(0x7ff0df171000, 138412032 [pid 6689] ioctl(4, LOOP_CLR_FD [pid 6688] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6688] chdir("./file0") = 0 [pid 6688] ioctl(4, LOOP_CLR_FD [pid 6692] <... munmap resumed>) = 0 [pid 6689] <... ioctl resumed>) = 0 [pid 6688] <... ioctl resumed>) = 0 [ 237.995815][ T6690] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 238.018687][ T6691] loop1: detected capacity change from 0 to 4096 [pid 6688] close(4 [pid 6691] mkdir("./file0", 0777 [pid 6692] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6689] close(4 [pid 6688] <... close resumed>) = 0 [pid 6692] <... openat resumed>) = 4 [pid 6691] <... mkdir resumed>) = 0 [pid 6689] <... close resumed>) = 0 [pid 6688] exit_group(0 [pid 6692] ioctl(4, LOOP_SET_FD, 3 [pid 6689] exit_group(0 [pid 6688] <... exit_group resumed>) = ? [pid 6691] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6689] <... exit_group resumed>) = ? [pid 6688] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6688, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6689] +++ exited with 0 +++ [pid 5029] umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6689, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5029] openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./275/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./275/binderfs" [pid 5032] <... restart_syscall resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5032] umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6692] <... ioctl resumed>) = 0 [pid 6690] <... mount resumed>) = 0 [pid 6692] close(3 [pid 6690] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6692] <... close resumed>) = 0 [pid 6692] mkdir("./file0", 0777 [pid 6690] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 6690] chdir("./file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6692] <... mkdir resumed>) = 0 [pid 6690] <... chdir resumed>) = 0 [pid 5032] getdents64(3, [pid 6692] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6690] ioctl(4, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6690] <... ioctl resumed>) = 0 [pid 5032] umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6690] close(4) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./276/binderfs", [pid 6690] exit_group(0) = ? [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./276/binderfs") = 0 [pid 5032] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6690] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6690, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6693] <... write resumed>) = 2097152 [pid 5033] openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6693] munmap(0x7ff0df171000, 138412032 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6693] <... munmap resumed>) = 0 [pid 5033] getdents64(3, [pid 6693] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6693] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./269/binderfs", [pid 6693] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 238.066924][ T6692] loop5: detected capacity change from 0 to 4096 [ 238.077815][ T6691] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 238.101001][ T6692] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5033] unlink("./269/binderfs") = 0 [pid 5033] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6693] <... ioctl resumed>) = 0 [pid 6693] close(3) = 0 [pid 6693] mkdir("./file0", 0777) = 0 [pid 6693] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] <... umount2 resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6692] <... mount resumed>) = 0 [pid 6691] <... mount resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6692] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6691] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] newfstatat(AT_FDCWD, "./275/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6691] <... openat resumed>) = 3 [pid 6692] <... openat resumed>) = 3 [pid 5029] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6692] chdir("./file0" [pid 6691] chdir("./file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6691] <... chdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6691] ioctl(4, LOOP_CLR_FD [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6691] <... ioctl resumed>) = 0 [pid 5032] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 6691] close(4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6692] <... chdir resumed>) = 0 [pid 5029] close(4 [pid 6692] ioctl(4, LOOP_CLR_FD [pid 6691] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... close resumed>) = 0 [pid 6692] <... ioctl resumed>) = 0 [pid 6691] exit_group(0 [pid 5033] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./276/file0", [pid 5029] rmdir("./275/file0" [pid 6692] close(4 [pid 6691] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 238.135389][ T6693] loop2: detected capacity change from 0 to 4096 [ 238.168146][ T6693] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5029] <... rmdir resumed>) = 0 [pid 6693] <... mount resumed>) = 0 [pid 6692] <... close resumed>) = 0 [pid 6691] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./269/file0", [pid 5032] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 6692] exit_group(0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6693] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6692] <... exit_group resumed>) = ? [pid 5033] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] close(3 [pid 6693] <... openat resumed>) = 3 [pid 6692] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 4 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6691, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] <... close resumed>) = 0 [pid 6693] chdir("./file0" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6692, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(4, "", [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5029] rmdir("./275" [pid 6693] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5034] umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] mkdir("./276", 0777 [pid 5034] openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(4, "", [pid 5032] getdents64(4, [pid 5030] umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(3, "", [pid 5033] getdents64(4, [pid 5032] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... mkdir resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5033] close(4 [pid 5030] newfstatat(3, "", [pid 5033] <... close resumed>) = 0 [pid 5032] rmdir("./276/file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5034] getdents64(3, [pid 5033] rmdir("./269/file0" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(3, [pid 5030] umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./267/binderfs", [pid 5033] getdents64(3, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6693] ioctl(4, LOOP_CLR_FD [pid 5034] unlink("./267/binderfs" [pid 5033] close(3 [pid 5032] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./274/binderfs", [pid 5029] <... openat resumed>) = 3 [pid 6693] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6693] close(4 [pid 5034] <... unlink resumed>) = 0 [pid 5033] rmdir("./269" [pid 5030] unlink("./274/binderfs" [pid 5032] rmdir("./276" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6693] <... close resumed>) = 0 [pid 5034] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6693] exit_group(0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] mkdir("./270", 0777 [pid 6693] <... exit_group resumed>) = ? [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6693] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6693, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5032] mkdir("./277", 0777./strace-static-x86_64: Process 6694 attached [pid 5031] <... restart_syscall resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6694 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] newfstatat(AT_FDCWD, "./273/binderfs", [pid 6694] set_robust_list(0x55555635e660, 24 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6694] <... set_robust_list resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6694] chdir("./276" [pid 5033] close(3 [pid 6694] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] unlink("./273/binderfs" [pid 6694] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... unlink resumed>) = 0 [pid 6694] <... prctl resumed>) = 0 [pid 5031] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6695 attached [pid 6694] setpgid(0, 0) = 0 [pid 6694] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6695] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6695] chdir("./270" [pid 6694] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 6695] <... chdir resumed>) = 0 [pid 6695] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6694] write(3, "1000", 4 [pid 6695] <... prctl resumed>) = 0 [pid 6694] <... write resumed>) = 4 [pid 6695] setpgid(0, 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6695 [pid 6695] <... setpgid resumed>) = 0 [pid 6694] close(3 [pid 6695] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6694] <... close resumed>) = 0 [pid 6694] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6695] <... openat resumed>) = 3 [pid 6695] write(3, "1000", 4) = 4 [pid 6695] close(3 [pid 6694] memfd_create("syzkaller", 0 [pid 6695] <... close resumed>) = 0 [pid 6695] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6694] <... memfd_create resumed>) = 3 [pid 5032] close(3 [pid 6694] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6694] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6696 ./strace-static-x86_64: Process 6696 attached [pid 6696] set_robust_list(0x55555635e660, 24) = 0 [pid 6695] memfd_create("syzkaller", 0) = 3 [pid 6695] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6696] chdir("./277" [pid 5030] <... umount2 resumed>) = 0 [pid 6695] <... mmap resumed>) = 0x7ff0df171000 [pid 6696] <... chdir resumed>) = 0 [pid 6696] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6696] <... prctl resumed>) = 0 [pid 6696] setpgid(0, 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./274/file0", [pid 6696] <... setpgid resumed>) = 0 [pid 6696] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6696] write(3, "1000", 4 [pid 5030] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6696] <... write resumed>) = 4 [pid 5030] openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6696] close(3) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6696] symlink("/dev/binderfs", "./binderfs" [pid 5030] newfstatat(4, "", [pid 6696] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./274/file0" [pid 5031] newfstatat(AT_FDCWD, "./273/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 5031] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(4, "", [pid 5030] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] rmdir("./274" [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] rmdir("./273/file0" [pid 5030] mkdir("./275", 0777 [pid 5034] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6696] memfd_create("syzkaller", 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(3, [pid 6696] <... memfd_create resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./267/file0", [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6696] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] close(3 [pid 5034] umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 6696] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./273" [pid 5030] <... mkdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./274", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6694] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6697 ./strace-static-x86_64: Process 6697 attached [pid 6697] set_robust_list(0x55555635e660, 24 [pid 5034] openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 6697] <... set_robust_list resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6697] chdir("./274" [pid 5034] newfstatat(4, "", [pid 6697] <... chdir resumed>) = 0 [pid 6697] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6697] <... prctl resumed>) = 0 [pid 6695] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] getdents64(4, [pid 5030] close(3 [pid 6697] setpgid(0, 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6697] <... setpgid resumed>) = 0 [pid 6697] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6697] write(3, "1000", 4) = 4 [pid 6697] close(3 [pid 5034] close(4./strace-static-x86_64: Process 6698 attached [pid 6698] set_robust_list(0x55555635e660, 24 [pid 5034] <... close resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6698 [pid 6697] <... close resumed>) = 0 [pid 5034] rmdir("./267/file0" [pid 6698] <... set_robust_list resumed>) = 0 [pid 6697] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6697] memfd_create("syzkaller", 0) = 3 [pid 6697] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6698] chdir("./275" [pid 5034] <... rmdir resumed>) = 0 [pid 6698] <... chdir resumed>) = 0 [pid 5034] getdents64(3, [pid 6698] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6698] setpgid(0, 0 [pid 5034] close(3 [pid 6698] <... setpgid resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./267" [pid 6698] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6698] write(3, "1000", 4) = 4 [pid 5034] mkdir("./268", 0777 [pid 6698] close(3 [pid 5034] <... mkdir resumed>) = 0 [pid 6698] <... close resumed>) = 0 [pid 6698] symlink("/dev/binderfs", "./binderfs" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6698] <... symlink resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6694] <... write resumed>) = 2097152 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6698] memfd_create("syzkaller", 0 [pid 6696] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6698] <... memfd_create resumed>) = 3 [pid 6694] munmap(0x7ff0df171000, 138412032) = 0 [pid 6698] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6695] <... write resumed>) = 2097152 [pid 6695] munmap(0x7ff0df171000, 138412032) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6699 ./strace-static-x86_64: Process 6699 attached [pid 6694] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6694] ioctl(4, LOOP_SET_FD, 3 [pid 6699] set_robust_list(0x55555635e660, 24 [pid 6694] <... ioctl resumed>) = 0 [pid 6699] <... set_robust_list resumed>) = 0 [pid 6697] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6695] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6695] ioctl(4, LOOP_SET_FD, 3 [pid 6699] chdir("./268" [pid 6695] <... ioctl resumed>) = 0 [pid 6699] <... chdir resumed>) = 0 [pid 6699] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6694] close(3) = 0 [pid 6694] mkdir("./file0", 0777 [pid 6699] <... prctl resumed>) = 0 [pid 6694] <... mkdir resumed>) = 0 [pid 6694] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6699] setpgid(0, 0) = 0 [pid 6696] <... write resumed>) = 2097152 [pid 6699] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6699] write(3, "1000", 4) = 4 [pid 6695] close(3) = 0 [ 238.484537][ T6694] loop0: detected capacity change from 0 to 4096 [ 238.503784][ T6695] loop4: detected capacity change from 0 to 4096 [ 238.525155][ T6694] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6695] mkdir("./file0", 0777 [pid 6699] close(3 [pid 6696] munmap(0x7ff0df171000, 138412032 [pid 6695] <... mkdir resumed>) = 0 [pid 6695] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6699] <... close resumed>) = 0 [pid 6698] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6696] <... munmap resumed>) = 0 [pid 6699] symlink("/dev/binderfs", "./binderfs" [pid 6696] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6699] <... symlink resumed>) = 0 [pid 6699] memfd_create("syzkaller", 0 [pid 6696] <... openat resumed>) = 4 [pid 6696] ioctl(4, LOOP_SET_FD, 3 [pid 6699] <... memfd_create resumed>) = 3 [pid 6699] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6696] <... ioctl resumed>) = 0 [pid 6696] close(3) = 0 [pid 6696] mkdir("./file0", 0777 [pid 6695] <... mount resumed>) = 0 [pid 6696] <... mkdir resumed>) = 0 [pid 6695] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6696] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6695] chdir("./file0") = 0 [ 238.551974][ T6695] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 238.576129][ T6696] loop3: detected capacity change from 0 to 4096 [pid 6695] ioctl(4, LOOP_CLR_FD) = 0 [pid 6695] close(4) = 0 [pid 6695] exit_group(0) = ? [pid 6695] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6695, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6697] <... write resumed>) = 2097152 [pid 5033] umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./270/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./270/binderfs") = 0 [pid 5033] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6697] munmap(0x7ff0df171000, 138412032) = 0 [pid 6698] <... write resumed>) = 2097152 [pid 6697] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6699] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6698] munmap(0x7ff0df171000, 138412032 [pid 6697] ioctl(4, LOOP_SET_FD, 3 [pid 6694] <... mount resumed>) = 0 [ 238.615473][ T6696] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6698] <... munmap resumed>) = 0 [pid 6697] <... ioctl resumed>) = 0 [pid 6694] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6694] chdir("./file0") = 0 [pid 6694] ioctl(4, LOOP_CLR_FD) = 0 [pid 6694] close(4) = 0 [pid 6697] close(3 [pid 6698] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6697] <... close resumed>) = 0 [pid 6694] exit_group(0 [pid 6697] mkdir("./file0", 0777) = 0 [pid 6694] <... exit_group resumed>) = ? [pid 6698] <... openat resumed>) = 4 [pid 6697] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6694] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6694, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6698] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./276/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./276/binderfs") = 0 [pid 5029] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./270/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 6698] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6698] close(3 [pid 5033] rmdir("./270/file0") = 0 [pid 6699] <... write resumed>) = 2097152 [pid 6698] <... close resumed>) = 0 [pid 6698] mkdir("./file0", 0777 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./270" [pid 6699] munmap(0x7ff0df171000, 138412032 [pid 6698] <... mkdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./271", 0777) = 0 [ 238.673216][ T6697] loop2: detected capacity change from 0 to 4096 [ 238.706385][ T6697] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 238.716206][ T6698] loop1: detected capacity change from 0 to 4096 [pid 6698] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6696] <... mount resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6696] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... openat resumed>) = 3 [pid 6696] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6699] <... munmap resumed>) = 0 [pid 6696] chdir("./file0" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = 0 [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6700 attached [pid 6700] set_robust_list(0x55555635e660, 24) = 0 [pid 6700] chdir("./271" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6700 [pid 6700] <... chdir resumed>) = 0 [pid 6700] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6700] setpgid(0, 0 [pid 6699] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6696] <... chdir resumed>) = 0 [pid 5029] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6699] <... openat resumed>) = 4 [pid 6696] ioctl(4, LOOP_CLR_FD [pid 6700] <... setpgid resumed>) = 0 [pid 6700] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6696] <... ioctl resumed>) = 0 [pid 6700] write(3, "1000", 4) = 4 [pid 6700] close(3) = 0 [pid 6700] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6700] memfd_create("syzkaller", 0) = 3 [pid 6697] <... mount resumed>) = 0 [pid 6700] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6697] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6699] ioctl(4, LOOP_SET_FD, 3 [pid 6697] <... openat resumed>) = 3 [pid 6696] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6697] chdir("./file0") = 0 [pid 6697] ioctl(4, LOOP_CLR_FD) = 0 [pid 6697] close(4) = 0 [pid 6696] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./276/file0", [pid 6696] exit_group(0 [pid 6697] exit_group(0 [pid 6696] <... exit_group resumed>) = ? [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6697] <... exit_group resumed>) = ? [pid 6699] <... ioctl resumed>) = 0 [pid 6696] +++ exited with 0 +++ [pid 5029] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6697] +++ exited with 0 +++ [pid 6699] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6696, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=2 /* 0.02 s */} --- [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6699] <... close resumed>) = 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5029] openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6699] mkdir("./file0", 0777 [pid 5029] <... openat resumed>) = 4 [pid 6699] <... mkdir resumed>) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6697, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] getdents64(4, [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6699] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5032] umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 5029] rmdir("./276/file0" [pid 5032] newfstatat(3, "", [pid 5031] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./274/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 238.769486][ T6698] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 238.804269][ T6699] loop5: detected capacity change from 0 to 4096 [pid 5032] newfstatat(AT_FDCWD, "./277/binderfs", [pid 5031] unlink("./274/binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5029] getdents64(3, [pid 5031] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] unlink("./277/binderfs" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5029] close(3 [pid 5032] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./276") = 0 [pid 5029] mkdir("./277", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6701 attached [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6701] set_robust_list(0x55555635e660, 24 [pid 5032] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6701 [pid 6701] <... set_robust_list resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6701] chdir("./277" [pid 5032] newfstatat(AT_FDCWD, "./277/file0", [pid 5031] newfstatat(AT_FDCWD, "./274/file0", [pid 6701] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6701] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6701] <... prctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6701] setpgid(0, 0 [pid 5032] openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6701] <... setpgid resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6701] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6701] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", [pid 5031] getdents64(4, [pid 6701] write(3, "1000", 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6701] <... write resumed>) = 4 [pid 5032] getdents64(4, [pid 5031] getdents64(4, [pid 6701] close(3 [pid 6698] <... mount resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [ 238.847774][ T6699] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6701] <... close resumed>) = 0 [pid 6698] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] getdents64(4, [pid 5031] close(4 [pid 6701] symlink("/dev/binderfs", "./binderfs" [pid 6698] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 6701] <... symlink resumed>) = 0 [pid 6700] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6698] chdir("./file0") = 0 [pid 5031] rmdir("./274/file0" [pid 6698] ioctl(4, LOOP_CLR_FD [pid 5031] <... rmdir resumed>) = 0 [pid 5032] close(4 [pid 5031] getdents64(3, [pid 5032] <... close resumed>) = 0 [pid 6701] memfd_create("syzkaller", 0) = 3 [pid 5032] rmdir("./277/file0" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6701] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] close(3 [pid 6701] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] getdents64(3, [pid 6698] <... ioctl resumed>) = 0 [pid 6698] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] close(3 [pid 5031] rmdir("./274") = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./277") = 0 [pid 6698] <... close resumed>) = 0 [pid 5032] mkdir("./278", 0777 [pid 6698] exit_group(0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] mkdir("./275", 0777 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6698] <... exit_group resumed>) = ? [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6702 attached [pid 6702] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6702 [pid 6702] chdir("./275") = 0 [pid 6698] +++ exited with 0 +++ [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6698, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6702] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] close(3 [pid 6702] <... prctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6702] setpgid(0, 0 [pid 5030] openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6702] <... setpgid resumed>) = 0 [pid 5030] umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6702] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6703 attached [pid 6702] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6703 [pid 5030] newfstatat(AT_FDCWD, "./275/binderfs", [pid 6703] set_robust_list(0x55555635e660, 24 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6703] <... set_robust_list resumed>) = 0 [pid 5030] unlink("./275/binderfs" [pid 6703] chdir("./278" [pid 5030] <... unlink resumed>) = 0 [pid 6702] write(3, "1000", 4 [pid 5030] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6702] <... write resumed>) = 4 [pid 6702] close(3) = 0 [pid 6702] symlink("/dev/binderfs", "./binderfs" [pid 6703] <... chdir resumed>) = 0 [pid 6702] <... symlink resumed>) = 0 [pid 6703] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6702] memfd_create("syzkaller", 0 [pid 6703] setpgid(0, 0 [pid 6699] <... mount resumed>) = 0 [pid 6703] <... setpgid resumed>) = 0 [pid 6703] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./275/file0", [pid 6702] <... memfd_create resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6702] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6702] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6703] <... openat resumed>) = 3 [pid 6700] <... write resumed>) = 2097152 [pid 6699] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5030] <... openat resumed>) = 4 [pid 6703] write(3, "1000", 4 [pid 6699] chdir("./file0" [pid 5030] newfstatat(4, "", [pid 6699] <... chdir resumed>) = 0 [pid 6703] <... write resumed>) = 4 [pid 6703] close(3 [pid 6699] ioctl(4, LOOP_CLR_FD [pid 6703] <... close resumed>) = 0 [pid 6703] symlink("/dev/binderfs", "./binderfs" [pid 6701] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6699] <... ioctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6699] close(4 [pid 6703] <... symlink resumed>) = 0 [pid 6699] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 6699] exit_group(0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6699] <... exit_group resumed>) = ? [pid 6700] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(4, [pid 6703] memfd_create("syzkaller", 0 [pid 6700] <... munmap resumed>) = 0 [pid 6699] +++ exited with 0 +++ [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6699, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] close(4) = 0 [pid 6703] <... memfd_create resumed>) = 3 [pid 5034] umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6703] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./275/file0" [pid 5034] openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6703] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 5030] getdents64(3, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] getdents64(3, [pid 5030] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6700] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 6700] <... openat resumed>) = 4 [pid 5030] rmdir("./275") = 0 [pid 6700] ioctl(4, LOOP_SET_FD, 3 [pid 5030] mkdir("./276", 0777) = 0 [pid 5034] umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./268/binderfs", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD) = 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] unlink("./268/binderfs") = 0 ./strace-static-x86_64: Process 6704 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6704 [pid 6704] set_robust_list(0x55555635e660, 24) = 0 [pid 6704] chdir("./276") = 0 [pid 6704] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6704] setpgid(0, 0) = 0 [pid 6704] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6704] write(3, "1000", 4) = 4 [pid 6704] close(3) = 0 [pid 6704] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6700] <... ioctl resumed>) = 0 [pid 5034] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6704] memfd_create("syzkaller", 0 [pid 6700] close(3) = 0 [pid 6700] mkdir("./file0", 0777) = 0 [pid 6704] <... memfd_create resumed>) = 3 [pid 6700] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6704] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 239.069356][ T6700] loop4: detected capacity change from 0 to 4096 [pid 6701] <... write resumed>) = 2097152 [pid 6702] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6701] munmap(0x7ff0df171000, 138412032 [pid 6703] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6701] <... munmap resumed>) = 0 [pid 6701] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 239.123825][ T6700] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6701] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6701] <... ioctl resumed>) = 0 [pid 6701] close(3 [pid 5034] newfstatat(AT_FDCWD, "./268/file0", [pid 6701] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6701] mkdir("./file0", 0777 [pid 5034] umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 239.170711][ T6701] loop0: detected capacity change from 0 to 4096 [pid 5034] openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6702] <... write resumed>) = 2097152 [pid 6701] <... mkdir resumed>) = 0 [pid 6700] <... mount resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 6700] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6700] chdir("./file0" [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6701] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6700] <... chdir resumed>) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./268/file0" [pid 6700] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6700] close(4) = 0 [pid 6700] exit_group(0) = ? [pid 6704] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6702] munmap(0x7ff0df171000, 138412032 [pid 6700] +++ exited with 0 +++ [pid 6702] <... munmap resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6700, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] getdents64(3, [pid 5033] umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5033] openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6703] <... write resumed>) = 2097152 [pid 5034] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6703] munmap(0x7ff0df171000, 138412032 [pid 5034] rmdir("./268" [pid 5033] newfstatat(3, "", [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5034] mkdir("./269", 0777 [pid 6702] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6702] <... openat resumed>) = 4 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6702] ioctl(4, LOOP_SET_FD, 3 [pid 5033] newfstatat(AT_FDCWD, "./271/binderfs", [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6703] <... munmap resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] unlink("./271/binderfs" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6705 attached , child_tidptr=0x55555635e650) = 6705 [pid 6705] set_robust_list(0x55555635e660, 24 [pid 6702] <... ioctl resumed>) = 0 [pid 6702] close(3 [pid 6705] <... set_robust_list resumed>) = 0 [pid 6703] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6705] chdir("./269" [pid 6702] <... close resumed>) = 0 [pid 6703] <... openat resumed>) = 4 [pid 6705] <... chdir resumed>) = 0 [pid 6703] ioctl(4, LOOP_SET_FD, 3 [pid 6705] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 239.248284][ T6701] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 239.282476][ T6702] loop2: detected capacity change from 0 to 4096 [pid 6705] setpgid(0, 0 [pid 6702] mkdir("./file0", 0777) = 0 [pid 6702] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6705] <... setpgid resumed>) = 0 [pid 6703] <... ioctl resumed>) = 0 [pid 6705] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6704] <... write resumed>) = 2097152 [pid 6703] close(3 [pid 5033] <... umount2 resumed>) = 0 [pid 6703] <... close resumed>) = 0 [pid 6705] <... openat resumed>) = 3 [pid 6703] mkdir("./file0", 0777 [pid 6705] write(3, "1000", 4 [pid 5033] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6703] <... mkdir resumed>) = 0 [pid 6705] <... write resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6705] close(3 [pid 5033] newfstatat(AT_FDCWD, "./271/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6705] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6705] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... openat resumed>) = 4 [pid 6705] <... symlink resumed>) = 0 [pid 6703] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 6704] munmap(0x7ff0df171000, 138412032) = 0 [pid 6704] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6704] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6705] memfd_create("syzkaller", 0 [pid 5033] close(4 [pid 6705] <... memfd_create resumed>) = 3 [pid 5033] <... close resumed>) = 0 [ 239.318459][ T6703] loop3: detected capacity change from 0 to 4096 [ 239.323559][ T6702] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 239.350383][ T6703] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6705] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] rmdir("./271/file0" [pid 6705] <... mmap resumed>) = 0x7ff0df171000 [pid 6704] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./271") = 0 [pid 6704] close(3 [pid 5033] mkdir("./272", 0777 [pid 6704] <... close resumed>) = 0 [pid 6704] mkdir("./file0", 0777 [pid 6701] <... mount resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6704] <... mkdir resumed>) = 0 [pid 6701] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... openat resumed>) = 3 [pid 6704] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6701] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6703] <... mount resumed>) = 0 [ 239.362843][ T6704] loop1: detected capacity change from 0 to 4096 [pid 6701] chdir("./file0" [pid 6703] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6703] chdir("./file0") = 0 [pid 6703] ioctl(4, LOOP_CLR_FD) = 0 [pid 6703] close(4) = 0 [pid 6701] <... chdir resumed>) = 0 [pid 6703] exit_group(0 [pid 6702] <... mount resumed>) = 0 [pid 6701] ioctl(4, LOOP_CLR_FD [pid 6703] <... exit_group resumed>) = ? [pid 6702] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6701] <... ioctl resumed>) = 0 [pid 6703] +++ exited with 0 +++ [pid 6702] <... openat resumed>) = 3 [pid 6701] close(4 [pid 6702] chdir("./file0" [pid 6701] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6703, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 6704] <... mount resumed>) = 0 [pid 6702] <... chdir resumed>) = 0 [pid 6701] exit_group(0 [pid 6702] ioctl(4, LOOP_CLR_FD [pid 6704] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6702] <... ioctl resumed>) = 0 [pid 6702] close(4 [pid 6704] <... openat resumed>) = 3 [pid 6704] chdir("./file0" [pid 6702] <... close resumed>) = 0 [pid 6704] <... chdir resumed>) = 0 [pid 6702] exit_group(0 [pid 6704] ioctl(4, LOOP_CLR_FD [pid 6702] <... exit_group resumed>) = ? [pid 6704] <... ioctl resumed>) = 0 [pid 6704] close(4 [pid 6701] <... exit_group resumed>) = ? [pid 5032] umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6704] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 6704] exit_group(0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6704] <... exit_group resumed>) = ? [pid 6702] +++ exited with 0 +++ [pid 6701] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6701, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6702, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... restart_syscall resumed>) = 0 [pid 5029] umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./278/binderfs", [pid 5029] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(3, "", [pid 5032] unlink("./278/binderfs" [pid 5031] umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 5032] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... openat resumed>) = 3 [pid 5029] umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./277/binderfs", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(3, [pid 5029] unlink("./277/binderfs" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./275/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./275/binderfs") = 0 [pid 5031] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [ 239.401460][ T6704] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6705] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6704] +++ exited with 0 +++ [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./278/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./278/file0") = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6704, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- [pid 5030] umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./276/binderfs", [pid 5033] <... ioctl resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./276/binderfs" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./278" [pid 5030] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./279", 0777) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = 0 [pid 5032] close(3) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] close(3./strace-static-x86_64: Process 6706 attached [pid 6706] set_robust_list(0x55555635e660, 24) = 0 [pid 6706] chdir("./279" [pid 5033] <... close resumed>) = 0 [pid 5029] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6706] <... chdir resumed>) = 0 [pid 6706] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6706] setpgid(0, 0) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6706 [pid 6706] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6706] write(3, "1000", 4) = 4 [pid 6706] close(3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6707 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6707 attached [pid 5031] newfstatat(AT_FDCWD, "./275/file0", [pid 5029] newfstatat(AT_FDCWD, "./277/file0", [pid 6707] set_robust_list(0x55555635e660, 24 [pid 6706] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6707] <... set_robust_list resumed>) = 0 [pid 5031] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6707] chdir("./272" [pid 6706] symlink("/dev/binderfs", "./binderfs" [pid 6707] <... chdir resumed>) = 0 [pid 6706] <... symlink resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5029] <... openat resumed>) = 4 [pid 6707] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] newfstatat(4, "", [pid 5029] newfstatat(4, "", [pid 6707] <... prctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6707] setpgid(0, 0 [pid 5031] getdents64(4, [pid 5029] getdents64(4, [pid 6707] <... setpgid resumed>) = 0 [pid 6707] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6706] memfd_create("syzkaller", 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 6707] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6707] write(3, "1000", 4 [pid 6706] <... memfd_create resumed>) = 3 [pid 6705] <... write resumed>) = 2097152 [pid 5031] getdents64(4, [pid 5029] close(4 [pid 6707] <... write resumed>) = 4 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6707] close(3 [pid 5031] close(4 [pid 5029] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] rmdir("./277/file0" [pid 6707] <... close resumed>) = 0 [pid 6706] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] rmdir("./275/file0" [pid 5029] <... rmdir resumed>) = 0 [pid 6706] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] getdents64(3, [pid 6705] munmap(0x7ff0df171000, 138412032) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6707] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... umount2 resumed>) = 0 [pid 5029] close(3 [pid 6707] <... symlink resumed>) = 0 [pid 5031] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5030] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./276/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6705] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] getdents64(4, [pid 6705] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] rmdir("./277" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6707] memfd_create("syzkaller", 0 [pid 6705] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, [pid 6707] <... memfd_create resumed>) = 3 [pid 5031] close(3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] close(4) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] mkdir("./278", 0777 [pid 5031] rmdir("./275" [pid 5030] rmdir("./276/file0" [pid 6707] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5031] mkdir("./276", 0777 [pid 6707] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./276" [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5030] mkdir("./277", 0777 [pid 5029] <... openat resumed>) = 3 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5031] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3./strace-static-x86_64: Process 6708 attached [pid 6705] <... ioctl resumed>) = 0 [pid 6708] set_robust_list(0x55555635e660, 24 [pid 6705] close(3 [pid 5030] <... close resumed>) = 0 [pid 6708] <... set_robust_list resumed>) = 0 [pid 6705] <... close resumed>) = 0 [pid 6708] chdir("./276" [pid 6705] mkdir("./file0", 0777 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6708] <... chdir resumed>) = 0 [pid 6705] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 6710 attached ./strace-static-x86_64: Process 6709 attached [pid 6708] prctl(PR_SET_PDEATHSIG, SIGKILL [ 239.581547][ T6705] loop5: detected capacity change from 0 to 4096 [pid 6705] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6710] set_robust_list(0x55555635e660, 24 [pid 6709] set_robust_list(0x55555635e660, 24 [pid 6708] <... prctl resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6708 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6710 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6709 [pid 6706] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6708] setpgid(0, 0) = 0 [pid 6710] <... set_robust_list resumed>) = 0 [pid 6708] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6710] chdir("./277" [pid 6708] <... openat resumed>) = 3 [pid 6708] write(3, "1000", 4) = 4 [pid 6708] close(3 [pid 6710] <... chdir resumed>) = 0 [pid 6708] <... close resumed>) = 0 [pid 6710] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6708] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6710] <... prctl resumed>) = 0 [pid 6709] <... set_robust_list resumed>) = 0 [pid 6708] memfd_create("syzkaller", 0 [pid 6710] setpgid(0, 0 [pid 6709] chdir("./278" [pid 6710] <... setpgid resumed>) = 0 [pid 6710] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6709] <... chdir resumed>) = 0 [pid 6710] <... openat resumed>) = 3 [pid 6709] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6710] write(3, "1000", 4 [pid 6709] <... prctl resumed>) = 0 [pid 6710] <... write resumed>) = 4 [pid 6710] close(3 [pid 6709] setpgid(0, 0 [pid 6708] <... memfd_create resumed>) = 3 [pid 6710] <... close resumed>) = 0 [pid 6708] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6710] symlink("/dev/binderfs", "./binderfs" [pid 6708] <... mmap resumed>) = 0x7ff0df171000 [pid 6710] <... symlink resumed>) = 0 [pid 6709] <... setpgid resumed>) = 0 [pid 6709] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 239.624013][ T6705] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6710] memfd_create("syzkaller", 0 [pid 6709] write(3, "1000", 4) = 4 [pid 6709] close(3 [pid 6710] <... memfd_create resumed>) = 3 [pid 6710] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6709] <... close resumed>) = 0 [pid 6709] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6707] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6710] <... mmap resumed>) = 0x7ff0df171000 [pid 6709] memfd_create("syzkaller", 0) = 3 [pid 6709] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6705] <... mount resumed>) = 0 [pid 6705] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6706] <... write resumed>) = 2097152 [pid 6705] chdir("./file0") = 0 [pid 6705] ioctl(4, LOOP_CLR_FD) = 0 [pid 6705] close(4) = 0 [pid 6705] exit_group(0) = ? [pid 6705] +++ exited with 0 +++ [pid 6707] <... write resumed>) = 2097152 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6705, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6706] munmap(0x7ff0df171000, 138412032) = 0 [pid 6708] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6706] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6706] ioctl(4, LOOP_SET_FD, 3 [pid 6707] munmap(0x7ff0df171000, 138412032 [pid 6706] <... ioctl resumed>) = 0 [pid 5034] umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 6707] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6709] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6707] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6706] close(3 [pid 5034] getdents64(3, [pid 6707] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6707] ioctl(4, LOOP_SET_FD, 3 [pid 6706] <... close resumed>) = 0 [pid 5034] umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6706] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6706] <... mkdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./269/binderfs", [pid 6710] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6706] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 239.784069][ T6706] loop3: detected capacity change from 0 to 4096 [ 239.812740][ T6707] loop4: detected capacity change from 0 to 4096 [pid 6707] <... ioctl resumed>) = 0 [pid 5034] unlink("./269/binderfs" [pid 6707] close(3 [pid 5034] <... unlink resumed>) = 0 [pid 6707] <... close resumed>) = 0 [pid 5034] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6707] mkdir("./file0", 0777) = 0 [pid 6709] <... write resumed>) = 2097152 [ 239.834963][ T6706] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6707] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6709] munmap(0x7ff0df171000, 138412032 [pid 6708] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 6708] munmap(0x7ff0df171000, 138412032) = 0 [pid 6708] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6708] ioctl(4, LOOP_SET_FD, 3 [pid 6709] <... munmap resumed>) = 0 [pid 5034] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./269/file0", [pid 6709] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6709] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6709] ioctl(4, LOOP_SET_FD, 3 [pid 5034] openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6710] <... write resumed>) = 2097152 [pid 6710] munmap(0x7ff0df171000, 138412032 [pid 6709] <... ioctl resumed>) = 0 [pid 6708] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 6710] <... munmap resumed>) = 0 [pid 6710] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6710] ioctl(4, LOOP_SET_FD, 3 [pid 5034] newfstatat(4, "", [pid 6709] close(3 [pid 6708] close(3 [pid 6709] <... close resumed>) = 0 [pid 6708] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6709] mkdir("./file0", 0777 [pid 6708] mkdir("./file0", 0777 [pid 5034] getdents64(4, [pid 6709] <... mkdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 6708] <... mkdir resumed>) = 0 [pid 6709] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6708] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [ 239.886468][ T6707] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 239.896537][ T6708] loop2: detected capacity change from 0 to 4096 [ 239.906664][ T6709] loop0: detected capacity change from 0 to 4096 [ 239.926396][ T6710] loop1: detected capacity change from 0 to 4096 [pid 6710] <... ioctl resumed>) = 0 [pid 6710] close(3) = 0 [pid 6707] <... mount resumed>) = 0 [pid 6710] mkdir("./file0", 0777) = 0 [pid 5034] rmdir("./269/file0" [pid 6707] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6710] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6707] <... openat resumed>) = 3 [pid 6707] chdir("./file0") = 0 [pid 6707] ioctl(4, LOOP_CLR_FD) = 0 [pid 6707] close(4) = 0 [pid 6707] exit_group(0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6707] <... exit_group resumed>) = ? [pid 5034] close(3 [pid 6707] +++ exited with 0 +++ [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./269") = 0 [pid 5034] mkdir("./270", 0777 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6707, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] close(3 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... close resumed>) = 0 [pid 5033] umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6711 [pid 5033] newfstatat(AT_FDCWD, "./272/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./272/binderfs") = 0 [pid 5033] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6711 attached [pid 6711] set_robust_list(0x55555635e660, 24) = 0 [pid 6711] chdir("./270") = 0 [pid 6711] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6711] setpgid(0, 0) = 0 [pid 6711] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6710] <... mount resumed>) = 0 [pid 6711] <... openat resumed>) = 3 [pid 6711] write(3, "1000", 4 [pid 6710] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6706] <... mount resumed>) = 0 [pid 6711] <... write resumed>) = 4 [pid 6710] <... openat resumed>) = 3 [pid 6706] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = 0 [pid 6711] close(3 [pid 6710] chdir("./file0" [pid 6711] <... close resumed>) = 0 [pid 6710] <... chdir resumed>) = 0 [pid 6711] symlink("/dev/binderfs", "./binderfs" [pid 6710] ioctl(4, LOOP_CLR_FD [pid 6711] <... symlink resumed>) = 0 [pid 6710] <... ioctl resumed>) = 0 [pid 6706] <... openat resumed>) = 3 [ 239.938023][ T6708] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 239.948361][ T6709] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 239.956781][ T6710] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6710] close(4 [pid 6706] chdir("./file0" [pid 6710] <... close resumed>) = 0 [pid 6706] <... chdir resumed>) = 0 [pid 6710] exit_group(0 [pid 6706] ioctl(4, LOOP_CLR_FD [pid 5033] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6710] <... exit_group resumed>) = ? [pid 6706] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6711] memfd_create("syzkaller", 0 [pid 6706] close(4 [pid 5033] newfstatat(AT_FDCWD, "./272/file0", [pid 6706] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6711] <... memfd_create resumed>) = 3 [pid 6706] exit_group(0 [pid 5033] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6706] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6711] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6710] +++ exited with 0 +++ [pid 6706] +++ exited with 0 +++ [pid 5033] openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6706, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 6711] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6710, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6709] <... mount resumed>) = 0 [pid 5032] umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6709] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] close(4 [pid 6709] <... openat resumed>) = 3 [pid 5030] openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 6709] chdir("./file0" [pid 5033] <... close resumed>) = 0 [pid 6709] <... chdir resumed>) = 0 [pid 5033] rmdir("./272/file0" [pid 5030] <... openat resumed>) = 3 [pid 6709] ioctl(4, LOOP_CLR_FD [pid 5030] newfstatat(3, "", [pid 6709] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(3, [pid 5033] close(3 [pid 6709] close(4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... close resumed>) = 0 [pid 5030] umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./272" [pid 6708] <... mount resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6708] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./277/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(3, [pid 5030] unlink("./277/binderfs" [pid 6709] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... unlink resumed>) = 0 [pid 6709] exit_group(0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6709] <... exit_group resumed>) = ? [pid 6708] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./279/binderfs", [pid 6708] chdir("./file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6709] +++ exited with 0 +++ [pid 6708] <... chdir resumed>) = 0 [pid 5033] mkdir("./273", 0777 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6709, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5033] <... mkdir resumed>) = 0 [pid 5029] umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6708] ioctl(4, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] unlink("./279/binderfs" [pid 6708] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5030] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(3, "", [pid 6708] close(4 [pid 5032] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./277/file0", [pid 6708] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6708] exit_group(0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6708] <... exit_group resumed>) = ? [pid 5033] close(3 [pid 5030] openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... close resumed>) = 0 [pid 6711] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6708] +++ exited with 0 +++ [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... openat resumed>) = 4 [pid 5029] umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6708, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5030] newfstatat(4, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(AT_FDCWD, "./278/binderfs", [pid 5031] umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6712 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6712 [pid 5031] openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] unlink("./278/binderfs" [pid 6712] set_robust_list(0x55555635e660, 24 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6712] <... set_robust_list resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 5030] getdents64(4, [pid 5029] <... unlink resumed>) = 0 [pid 6712] chdir("./273" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6712] <... chdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] close(4) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] rmdir("./277/file0" [pid 6712] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 6712] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 6712] setpgid(0, 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./276/binderfs", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6712] <... setpgid resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6712] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] unlink("./276/binderfs" [pid 5030] close(3 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./277") = 0 [pid 5030] mkdir("./278", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6712] <... openat resumed>) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6713 [pid 6712] write(3, "1000", 4 [pid 5032] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6713 attached [pid 6713] set_robust_list(0x55555635e660, 24) = 0 [pid 6712] <... write resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6713] chdir("./278" [pid 6712] close(3 [pid 5032] newfstatat(AT_FDCWD, "./279/file0", [pid 6712] <... close resumed>) = 0 [pid 6713] <... chdir resumed>) = 0 [pid 6712] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6713] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6713] <... prctl resumed>) = 0 [pid 6712] <... symlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6713] setpgid(0, 0 [pid 5032] openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6713] <... setpgid resumed>) = 0 [pid 6712] memfd_create("syzkaller", 0 [pid 5032] <... openat resumed>) = 4 [pid 6713] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6713] write(3, "1000", 4) = 4 [pid 6713] close(3) = 0 [pid 6713] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6713] memfd_create("syzkaller", 0 [pid 6712] <... memfd_create resumed>) = 3 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6713] <... memfd_create resumed>) = 3 [pid 6712] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] close(4 [pid 6712] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... close resumed>) = 0 [pid 6713] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6711] <... write resumed>) = 2097152 [pid 5032] rmdir("./279/file0" [pid 6713] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./279" [pid 5029] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./278/file0", [pid 5032] mkdir("./280", 0777 [pid 6711] munmap(0x7ff0df171000, 138412032 [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6711] <... munmap resumed>) = 0 [pid 6711] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6711] ioctl(4, LOOP_SET_FD, 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] close(3 [pid 6711] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6711] close(3) = 0 [pid 6711] mkdir("./file0", 0777 [pid 5029] getdents64(4, [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6714 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6711] <... mkdir resumed>) = 0 [pid 5029] close(4./strace-static-x86_64: Process 6714 attached ) = 0 [pid 6714] set_robust_list(0x55555635e660, 24) = 0 [pid 6711] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] rmdir("./278/file0" [pid 6714] chdir("./280") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5031] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 6714] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6714] <... prctl resumed>) = 0 [pid 5029] close(3 [pid 6714] setpgid(0, 0 [pid 5031] newfstatat(AT_FDCWD, "./276/file0", [pid 6714] <... setpgid resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] rmdir("./278" [pid 6714] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 6714] <... openat resumed>) = 3 [pid 5029] mkdir("./279", 0777 [pid 5031] openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 5029] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6714] write(3, "1000", 4 [pid 5031] getdents64(4, [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6714] <... write resumed>) = 4 [pid 5031] close(4 [pid 5029] <... openat resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6714] close(3 [pid 6713] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6712] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] rmdir("./276/file0" [pid 6714] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6714] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] getdents64(3, [pid 5029] close(3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... close resumed>) = 0 [pid 5031] close(3 [ 240.218991][ T6711] loop5: detected capacity change from 0 to 4096 [ 240.247444][ T6711] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./276") = 0 [pid 5031] mkdir("./277", 0777) = 0 ./strace-static-x86_64: Process 6715 attached [pid 6714] <... symlink resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6715 [pid 6715] set_robust_list(0x55555635e660, 24 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6714] memfd_create("syzkaller", 0 [pid 5031] <... openat resumed>) = 3 [pid 6715] <... set_robust_list resumed>) = 0 [pid 6715] chdir("./279" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6715] <... chdir resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6715] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6714] <... memfd_create resumed>) = 3 [pid 5031] close(3 [pid 6715] <... prctl resumed>) = 0 [pid 6714] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6715] setpgid(0, 0 [pid 5031] <... close resumed>) = 0 [pid 6715] <... setpgid resumed>) = 0 [pid 6714] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6716 [pid 6715] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 ./strace-static-x86_64: Process 6716 attached [pid 6715] write(3, "1000", 4 [pid 6716] set_robust_list(0x55555635e660, 24 [pid 6715] <... write resumed>) = 4 [pid 6715] close(3 [pid 6716] <... set_robust_list resumed>) = 0 [pid 6715] <... close resumed>) = 0 [pid 6716] chdir("./277" [pid 6715] symlink("/dev/binderfs", "./binderfs" [pid 6716] <... chdir resumed>) = 0 [pid 6716] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6715] <... symlink resumed>) = 0 [pid 6716] <... prctl resumed>) = 0 [pid 6711] <... mount resumed>) = 0 [pid 6716] setpgid(0, 0) = 0 [pid 6716] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6715] memfd_create("syzkaller", 0 [pid 6711] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6716] write(3, "1000", 4) = 4 [pid 6715] <... memfd_create resumed>) = 3 [pid 6712] <... write resumed>) = 2097152 [pid 6711] <... openat resumed>) = 3 [pid 6715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6716] close(3) = 0 [pid 6716] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6715] <... mmap resumed>) = 0x7ff0df171000 [pid 6711] chdir("./file0" [pid 6716] memfd_create("syzkaller", 0 [pid 6711] <... chdir resumed>) = 0 [pid 6711] ioctl(4, LOOP_CLR_FD) = 0 [pid 6711] close(4) = 0 [pid 6711] exit_group(0 [pid 6716] <... memfd_create resumed>) = 3 [pid 6711] <... exit_group resumed>) = ? [pid 6716] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6711] +++ exited with 0 +++ [pid 6716] <... mmap resumed>) = 0x7ff0df171000 [pid 6712] munmap(0x7ff0df171000, 138412032 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6711, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5034] umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6713] <... write resumed>) = 2097152 [pid 6712] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6713] munmap(0x7ff0df171000, 138412032 [pid 6712] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./270/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./270/binderfs") = 0 [pid 5034] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6714] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6713] <... munmap resumed>) = 0 [pid 6712] <... openat resumed>) = 4 [pid 6712] ioctl(4, LOOP_SET_FD, 3 [pid 6713] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6713] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6713] close(3) = 0 [pid 6713] mkdir("./file0", 0777) = 0 [pid 6713] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6715] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6712] <... ioctl resumed>) = 0 [pid 6712] close(3) = 0 [pid 6714] <... write resumed>) = 2097152 [ 240.427751][ T6712] loop4: detected capacity change from 0 to 4096 [ 240.431801][ T6713] loop1: detected capacity change from 0 to 4096 [ 240.458438][ T6713] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6712] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = 0 [pid 6715] <... write resumed>) = 2097152 [pid 6714] munmap(0x7ff0df171000, 138412032 [pid 6712] <... mkdir resumed>) = 0 [pid 5034] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6715] munmap(0x7ff0df171000, 138412032 [pid 6713] <... mount resumed>) = 0 [pid 6712] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./270/file0", [pid 6714] <... munmap resumed>) = 0 [pid 6713] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6713] chdir("./file0" [pid 6716] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6715] <... munmap resumed>) = 0 [pid 6713] <... chdir resumed>) = 0 [pid 6713] ioctl(4, LOOP_CLR_FD) = 0 [pid 6713] close(4) = 0 [pid 6713] exit_group(0) = ? [pid 6715] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6714] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6715] ioctl(4, LOOP_SET_FD, 3 [pid 6714] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6714] ioctl(4, LOOP_SET_FD, 3 [pid 6713] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6713, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6714] <... ioctl resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 6715] <... ioctl resumed>) = 0 [pid 6714] close(3) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6715] close(3 [pid 5034] getdents64(4, [pid 6715] <... close resumed>) = 0 [pid 6715] mkdir("./file0", 0777 [pid 6714] mkdir("./file0", 0777 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6715] <... mkdir resumed>) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6715] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6714] <... mkdir resumed>) = 0 [pid 5034] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 240.528013][ T6712] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 240.544882][ T6714] loop3: detected capacity change from 0 to 4096 [ 240.551560][ T6715] loop0: detected capacity change from 0 to 4096 [pid 5034] <... close resumed>) = 0 [pid 6714] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(AT_FDCWD, "./278/binderfs", [pid 5034] rmdir("./270/file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./278/binderfs" [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./270") = 0 [pid 5034] mkdir("./271", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 6716] <... write resumed>) = 2097152 [pid 6712] <... mount resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6716] munmap(0x7ff0df171000, 138412032 [pid 6712] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6712] <... openat resumed>) = 3 [pid 6716] <... munmap resumed>) = 0 [pid 6712] chdir("./file0" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6717 ./strace-static-x86_64: Process 6717 attached [pid 6712] <... chdir resumed>) = 0 [ 240.578043][ T6715] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 240.597850][ T6714] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6717] set_robust_list(0x55555635e660, 24 [pid 6716] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6712] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = 0 [pid 6717] <... set_robust_list resumed>) = 0 [pid 6716] <... openat resumed>) = 4 [pid 6712] <... ioctl resumed>) = 0 [pid 6717] chdir("./271" [pid 6714] <... mount resumed>) = 0 [pid 6712] close(4 [pid 5030] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6717] <... chdir resumed>) = 0 [pid 6716] ioctl(4, LOOP_SET_FD, 3 [pid 6712] <... close resumed>) = 0 [pid 6712] exit_group(0 [pid 6714] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6716] <... ioctl resumed>) = 0 [pid 6714] <... openat resumed>) = 3 [pid 6712] <... exit_group resumed>) = ? [pid 6717] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6712] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6714] chdir("./file0" [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6712, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6717] <... prctl resumed>) = 0 [pid 6715] <... mount resumed>) = 0 [pid 6714] <... chdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./278/file0", [pid 6717] setpgid(0, 0 [pid 6714] ioctl(4, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6714] <... ioctl resumed>) = 0 [pid 6717] <... setpgid resumed>) = 0 [pid 6714] close(4 [pid 5030] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6714] <... close resumed>) = 0 [pid 6717] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6714] exit_group(0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6717] <... openat resumed>) = 3 [pid 6714] <... exit_group resumed>) = ? [pid 5033] umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(4, "", [pid 5033] openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 6717] write(3, "1000", 4 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(3, "", [pid 6717] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 6717] close(3 [pid 6714] +++ exited with 0 +++ [pid 5033] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6715] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6717] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6714, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(4 [pid 6717] symlink("/dev/binderfs", "./binderfs" [pid 6715] <... openat resumed>) = 3 [pid 5033] umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... close resumed>) = 0 [pid 6717] <... symlink resumed>) = 0 [pid 6715] chdir("./file0" [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] rmdir("./278/file0" [pid 6717] memfd_create("syzkaller", 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 6716] close(3 [pid 6715] <... chdir resumed>) = 0 [pid 5030] getdents64(3, [pid 6716] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6717] <... memfd_create resumed>) = 3 [pid 6716] mkdir("./file0", 0777 [pid 5032] umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 6717] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6716] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 6717] <... mmap resumed>) = 0x7ff0df171000 [pid 6715] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./273/binderfs", [pid 5032] openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] rmdir("./278" [pid 6715] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 6716] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 240.674148][ T6716] loop2: detected capacity change from 0 to 4096 [pid 6715] close(4) = 0 [pid 5033] unlink("./273/binderfs" [pid 5032] newfstatat(3, "", [pid 5030] mkdir("./279", 0777 [pid 6715] exit_group(0 [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6715] <... exit_group resumed>) = ? [pid 5032] getdents64(3, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5032] umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./280/binderfs", [pid 6715] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./280/binderfs" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6715, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] <... unlink resumed>) = 0 [pid 5033] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6718 ./strace-static-x86_64: Process 6718 attached [pid 5029] umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6718] set_robust_list(0x55555635e660, 24 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6718] <... set_robust_list resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 6718] chdir("./279" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6718] <... chdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6718] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6718] setpgid(0, 0) = 0 [pid 5029] umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6718] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./279/binderfs", [pid 6718] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./279/binderfs") = 0 [pid 5029] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6718] write(3, "1000", 4) = 4 [pid 6718] close(3) = 0 [pid 6718] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6718] memfd_create("syzkaller", 0) = 3 [pid 6718] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 240.715511][ T6716] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6716] <... mount resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./280/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6716] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6716] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6716] chdir("./file0") = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6716] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./273/file0", [pid 6716] <... ioctl resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6716] close(4 [pid 5032] newfstatat(4, "", [pid 6716] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6716] exit_group(0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6716] <... exit_group resumed>) = ? [pid 6716] +++ exited with 0 +++ [pid 5033] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6716, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5033] openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] getdents64(3, [pid 5029] <... umount2 resumed>) = 0 [pid 6717] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(4, "", [pid 5032] close(4 [pid 5031] umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./277/binderfs", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./277/binderfs") = 0 [pid 5029] newfstatat(AT_FDCWD, "./279/file0", [pid 5031] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./280/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(4, [pid 5029] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6718] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./279/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./279") = 0 [pid 5032] getdents64(3, [pid 5029] mkdir("./280", 0777 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5032] close(3 [pid 5033] close(4) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] rmdir("./273/file0" [pid 5032] rmdir("./280" [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] <... rmdir resumed>) = 0 [pid 5029] close(3) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] mkdir("./281", 0777 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] getdents64(3, [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5032] <... openat resumed>) = 3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6719 [pid 5033] <... close resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 6719 attached [pid 5033] rmdir("./273" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = 0 [pid 6719] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] close(3 [pid 5031] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6719] chdir("./280" [pid 5033] mkdir("./274", 0777 [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6719] <... chdir resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(AT_FDCWD, "./277/file0", [pid 6719] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... mkdir resumed>) = 0 [pid 6719] <... prctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6720 attached [pid 6719] setpgid(0, 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6719] <... setpgid resumed>) = 0 [pid 6719] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6719] <... openat resumed>) = 3 [pid 6719] write(3, "1000", 4) = 4 [pid 6719] close(3) = 0 [pid 6719] symlink("/dev/binderfs", "./binderfs" [pid 6720] set_robust_list(0x55555635e660, 24 [pid 6719] <... symlink resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6720 [pid 5031] openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6720] <... set_robust_list resumed>) = 0 [pid 6719] memfd_create("syzkaller", 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6720] chdir("./281" [pid 6719] <... memfd_create resumed>) = 3 [pid 6717] <... write resumed>) = 2097152 [pid 5033] close(3 [pid 5031] <... openat resumed>) = 4 [pid 6719] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] newfstatat(4, "", [pid 6720] <... chdir resumed>) = 0 [pid 6719] <... mmap resumed>) = 0x7ff0df171000 [pid 6720] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6720] <... prctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6720] setpgid(0, 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(4, [pid 6720] <... setpgid resumed>) = 0 [pid 6717] munmap(0x7ff0df171000, 138412032 [pid 6720] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6720] <... openat resumed>) = 3 [pid 6717] <... munmap resumed>) = 0 [pid 5031] getdents64(4, [pid 6720] write(3, "1000", 4./strace-static-x86_64: Process 6721 attached [pid 6721] set_robust_list(0x55555635e660, 24 [pid 6720] <... write resumed>) = 4 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6721 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6720] close(3 [pid 5031] close(4 [pid 6721] <... set_robust_list resumed>) = 0 [pid 6720] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6720] symlink("/dev/binderfs", "./binderfs" [pid 5031] rmdir("./277/file0" [pid 6721] chdir("./274" [pid 6717] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5031] <... rmdir resumed>) = 0 [pid 6717] ioctl(4, LOOP_SET_FD, 3 [pid 6720] <... symlink resumed>) = 0 [pid 5031] getdents64(3, [pid 6720] memfd_create("syzkaller", 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6721] <... chdir resumed>) = 0 [pid 6720] <... memfd_create resumed>) = 3 [pid 6718] <... write resumed>) = 2097152 [pid 5031] close(3) = 0 [pid 6718] munmap(0x7ff0df171000, 138412032 [pid 5031] rmdir("./277" [pid 6720] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6717] <... ioctl resumed>) = 0 [pid 6717] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 6721] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6720] <... mmap resumed>) = 0x7ff0df171000 [pid 6717] <... close resumed>) = 0 [pid 5031] mkdir("./278", 0777 [pid 6721] <... prctl resumed>) = 0 [pid 6717] mkdir("./file0", 0777) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 6721] setpgid(0, 0 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6721] <... setpgid resumed>) = 0 [pid 5031] close(3) = 0 [pid 6721] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6721] <... openat resumed>) = 3 [ 240.944869][ T6717] loop5: detected capacity change from 0 to 4096 [pid 6717] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6721] write(3, "1000", 4./strace-static-x86_64: Process 6722 attached ) = 4 [pid 6721] close(3) = 0 [pid 6722] set_robust_list(0x55555635e660, 24 [pid 6721] symlink("/dev/binderfs", "./binderfs" [pid 6722] <... set_robust_list resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6722 [pid 6722] chdir("./278" [pid 6721] <... symlink resumed>) = 0 [pid 6718] <... munmap resumed>) = 0 [pid 6722] <... chdir resumed>) = 0 [pid 6721] memfd_create("syzkaller", 0 [pid 6722] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6721] <... memfd_create resumed>) = 3 [pid 6721] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6722] setpgid(0, 0 [pid 6721] <... mmap resumed>) = 0x7ff0df171000 [ 240.990272][ T6717] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6719] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6722] <... setpgid resumed>) = 0 [pid 6718] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6722] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6718] <... openat resumed>) = 4 [pid 6722] <... openat resumed>) = 3 [pid 6718] ioctl(4, LOOP_SET_FD, 3 [pid 6722] write(3, "1000", 4) = 4 [pid 6722] close(3) = 0 [pid 6722] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6718] <... ioctl resumed>) = 0 [pid 6722] memfd_create("syzkaller", 0 [pid 6718] close(3) = 0 [pid 6722] <... memfd_create resumed>) = 3 [pid 6718] mkdir("./file0", 0777 [pid 6722] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [ 241.034386][ T6718] loop1: detected capacity change from 0 to 4096 [pid 6720] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6718] <... mkdir resumed>) = 0 [pid 6722] <... mmap resumed>) = 0x7ff0df171000 [pid 6717] <... mount resumed>) = 0 [pid 6717] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6717] chdir("./file0") = 0 [pid 6717] ioctl(4, LOOP_CLR_FD) = 0 [pid 6718] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6717] close(4) = 0 [pid 6717] exit_group(0) = ? [pid 6717] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6717, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6720] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6719] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./271/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6721] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] unlink("./271/binderfs") = 0 [pid 6722] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6720] munmap(0x7ff0df171000, 138412032 [ 241.103488][ T6718] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6719] munmap(0x7ff0df171000, 138412032 [pid 6720] <... munmap resumed>) = 0 [pid 6719] <... munmap resumed>) = 0 [pid 6719] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6719] ioctl(4, LOOP_SET_FD, 3 [pid 6718] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6719] <... ioctl resumed>) = 0 [pid 6718] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6720] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6718] <... openat resumed>) = 3 [pid 6718] chdir("./file0" [pid 6720] <... openat resumed>) = 4 [pid 6718] <... chdir resumed>) = 0 [pid 5034] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6720] ioctl(4, LOOP_SET_FD, 3 [pid 6718] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./271/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6718] close(4) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 6718] exit_group(0 [pid 6722] <... write resumed>) = 2097152 [pid 6718] <... exit_group resumed>) = ? [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6720] <... ioctl resumed>) = 0 [pid 6720] close(3 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6718] +++ exited with 0 +++ [pid 6720] <... close resumed>) = 0 [pid 6719] close(3 [pid 5034] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6718, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6720] mkdir("./file0", 0777 [pid 6719] <... close resumed>) = 0 [pid 5034] rmdir("./271/file0" [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6719] mkdir("./file0", 0777 [pid 6720] <... mkdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 6719] <... mkdir resumed>) = 0 [pid 5034] getdents64(3, [ 241.183536][ T6719] loop0: detected capacity change from 0 to 4096 [ 241.196179][ T6720] loop3: detected capacity change from 0 to 4096 [pid 6719] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6722] munmap(0x7ff0df171000, 138412032 [pid 6720] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6721] <... write resumed>) = 2097152 [pid 5034] close(3) = 0 [pid 6721] munmap(0x7ff0df171000, 138412032 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6721] <... munmap resumed>) = 0 [pid 5034] rmdir("./271" [pid 5030] openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] mkdir("./272", 0777 [pid 5030] umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./279/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] unlink("./279/binderfs" [pid 5034] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 6722] <... munmap resumed>) = 0 [pid 6721] openat(AT_FDCWD, "/dev/loop4", O_RDWR [ 241.228873][ T6719] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 241.241100][ T6720] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6722] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6721] <... openat resumed>) = 4 [pid 6722] ioctl(4, LOOP_SET_FD, 3 [pid 6721] ioctl(4, LOOP_SET_FD, 3 [pid 6722] <... ioctl resumed>) = 0 [pid 6722] close(3 [pid 5030] <... umount2 resumed>) = 0 [pid 6722] <... close resumed>) = 0 [pid 6722] mkdir("./file0", 0777 [pid 5030] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./279/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6721] <... ioctl resumed>) = 0 [pid 6722] <... mkdir resumed>) = 0 [pid 6721] close(3 [pid 6720] <... mount resumed>) = 0 [pid 6719] <... mount resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6721] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6722] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(4, [ 241.269984][ T6722] loop2: detected capacity change from 0 to 4096 [ 241.271428][ T6721] loop4: detected capacity change from 0 to 4096 [pid 6721] mkdir("./file0", 0777 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6721] <... mkdir resumed>) = 0 [pid 6719] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] getdents64(4, [pid 6720] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6721] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6723 ./strace-static-x86_64: Process 6723 attached [pid 6723] set_robust_list(0x55555635e660, 24 [pid 6720] <... openat resumed>) = 3 [pid 6719] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6723] <... set_robust_list resumed>) = 0 [pid 6720] chdir("./file0" [pid 6719] chdir("./file0" [pid 5030] close(4) = 0 [pid 6719] <... chdir resumed>) = 0 [pid 6720] <... chdir resumed>) = 0 [pid 5030] rmdir("./279/file0" [pid 6719] ioctl(4, LOOP_CLR_FD) = 0 [pid 6719] close(4 [pid 6723] chdir("./272") = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6719] <... close resumed>) = 0 [pid 6723] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6719] exit_group(0 [pid 6723] setpgid(0, 0 [pid 6719] <... exit_group resumed>) = ? [pid 6723] <... setpgid resumed>) = 0 [pid 6720] ioctl(4, LOOP_CLR_FD [pid 6719] +++ exited with 0 +++ [pid 5030] getdents64(3, [pid 6723] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6720] <... ioctl resumed>) = 0 [pid 6723] <... openat resumed>) = 3 [pid 6720] close(4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6719, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6723] write(3, "1000", 4 [pid 6720] <... close resumed>) = 0 [pid 5030] close(3 [pid 6723] <... write resumed>) = 4 [pid 6723] close(3 [pid 6720] exit_group(0 [pid 5030] <... close resumed>) = 0 [pid 6723] <... close resumed>) = 0 [pid 6720] <... exit_group resumed>) = ? [pid 5030] rmdir("./279" [pid 6723] symlink("/dev/binderfs", "./binderfs" [pid 5029] umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6723] <... symlink resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6723] memfd_create("syzkaller", 0 [pid 6720] +++ exited with 0 +++ [pid 5030] mkdir("./280", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6723] <... memfd_create resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6723] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6720, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] <... mkdir resumed>) = 0 [pid 6723] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(3, "", [pid 5032] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(3, "", [pid 5029] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 241.321093][ T6722] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 241.325909][ T6721] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] getdents64(3, [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./280/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6722] <... mount resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./281/binderfs", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./280/binderfs" [pid 5032] unlink("./281/binderfs"./strace-static-x86_64: Process 6724 attached [pid 6722] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... unlink resumed>) = 0 [pid 6724] set_robust_list(0x55555635e660, 24 [pid 6722] <... openat resumed>) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6724] <... set_robust_list resumed>) = 0 [pid 6722] chdir("./file0" [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6724 [pid 6724] chdir("./280" [pid 6722] <... chdir resumed>) = 0 [pid 5029] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6724] <... chdir resumed>) = 0 [pid 6722] ioctl(4, LOOP_CLR_FD [pid 6724] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6722] <... ioctl resumed>) = 0 [pid 6724] <... prctl resumed>) = 0 [pid 6722] close(4 [pid 6724] setpgid(0, 0 [pid 6722] <... close resumed>) = 0 [pid 6724] <... setpgid resumed>) = 0 [pid 6722] exit_group(0 [pid 6724] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6722] <... exit_group resumed>) = ? [pid 6724] write(3, "1000", 4) = 4 [pid 6722] +++ exited with 0 +++ [pid 6724] close(3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6722, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6724] <... close resumed>) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6724] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6724] memfd_create("syzkaller", 0 [pid 5031] openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 6724] <... memfd_create resumed>) = 3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6724] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6724] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6721] <... mount resumed>) = 0 [pid 6721] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6721] chdir("./file0") = 0 [pid 6721] ioctl(4, LOOP_CLR_FD) = 0 [pid 5031] newfstatat(AT_FDCWD, "./278/binderfs", [pid 6721] close(4) = 0 [pid 6721] exit_group(0 [pid 6723] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6721] <... exit_group resumed>) = ? [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6721] +++ exited with 0 +++ [pid 5029] <... umount2 resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6721, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5029] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./280/file0", [pid 5031] unlink("./278/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./280/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./280" [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./281", 0777) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5033] umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6725 ./strace-static-x86_64: Process 6725 attached [pid 6725] set_robust_list(0x55555635e660, 24) = 0 [pid 6725] chdir("./281" [pid 6723] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6725] <... chdir resumed>) = 0 [pid 6725] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6725] setpgid(0, 0 [pid 5033] newfstatat(3, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./281/file0", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6725] <... setpgid resumed>) = 0 [pid 6723] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6725] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6725] <... openat resumed>) = 3 [pid 6723] <... munmap resumed>) = 0 [pid 5033] umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6725] write(3, "1000", 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6725] <... write resumed>) = 4 [pid 5033] newfstatat(AT_FDCWD, "./274/binderfs", [pid 5032] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(4, "", [pid 6725] close(3 [pid 5033] unlink("./274/binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6725] <... close resumed>) = 0 [pid 6725] symlink("/dev/binderfs", "./binderfs" [pid 6723] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6725] <... symlink resumed>) = 0 [pid 6723] <... openat resumed>) = 4 [pid 6725] memfd_create("syzkaller", 0 [pid 5032] getdents64(4, [pid 6725] <... memfd_create resumed>) = 3 [pid 6723] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... unlink resumed>) = 0 [pid 6725] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6725] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] close(4 [pid 6724] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./281/file0" [pid 6723] <... ioctl resumed>) = 0 [pid 6723] close(3) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6723] mkdir("./file0", 0777) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./281") = 0 [pid 5032] mkdir("./282", 0777 [pid 6723] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5032] <... mkdir resumed>) = 0 [pid 5031] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] newfstatat(AT_FDCWD, "./278/file0", [pid 5032] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = 0 [pid 5032] close(3 [pid 5031] <... openat resumed>) = 4 [pid 5033] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./274/file0", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 241.534309][ T6723] loop5: detected capacity change from 0 to 4096 [ 241.570253][ T6723] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6726 attached [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6726] set_robust_list(0x55555635e660, 24 [pid 5031] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6726] <... set_robust_list resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6726] chdir("./282" [pid 5033] openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6726 [pid 5031] close(4 [pid 6726] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5031] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6726] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] rmdir("./278/file0" [pid 6726] <... prctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6726] setpgid(0, 0 [pid 6725] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] getdents64(4, [pid 5031] <... rmdir resumed>) = 0 [pid 6726] <... setpgid resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6726] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] getdents64(4, [pid 6726] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6726] write(3, "1000", 4 [pid 5033] close(4 [pid 6726] <... write resumed>) = 4 [pid 6726] close(3 [pid 5033] <... close resumed>) = 0 [pid 6726] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 6726] symlink("/dev/binderfs", "./binderfs" [pid 6724] <... write resumed>) = 2097152 [pid 5033] rmdir("./274/file0" [pid 6726] <... symlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6724] munmap(0x7ff0df171000, 138412032 [pid 5031] close(3 [pid 6726] memfd_create("syzkaller", 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./278" [pid 5033] getdents64(3, [pid 5031] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6724] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 5031] mkdir("./279", 0777 [pid 5033] <... close resumed>) = 0 [pid 6726] <... memfd_create resumed>) = 3 [pid 5033] rmdir("./274") = 0 [pid 6724] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6726] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6724] ioctl(4, LOOP_SET_FD, 3 [pid 6726] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] mkdir("./275", 0777 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5033] <... mkdir resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6724] <... ioctl resumed>) = 0 [pid 6724] close(3) = 0 [pid 6724] mkdir("./file0", 0777) = 0 [pid 6724] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6727 attached [pid 6725] <... write resumed>) = 2097152 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6727 [pid 6727] set_robust_list(0x55555635e660, 24 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6727] <... set_robust_list resumed>) = 0 [pid 5033] close(3 [pid 6727] chdir("./279" [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6723] <... mount resumed>) = 0 [pid 6723] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6727] <... chdir resumed>) = 0 [pid 6727] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6727] setpgid(0, 0) = 0 ./strace-static-x86_64: Process 6728 attached [pid 6727] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6726] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6725] munmap(0x7ff0df171000, 138412032 [pid 6728] set_robust_list(0x55555635e660, 24 [pid 6727] <... openat resumed>) = 3 [pid 6725] <... munmap resumed>) = 0 [pid 6728] <... set_robust_list resumed>) = 0 [pid 6727] write(3, "1000", 4 [pid 6723] chdir("./file0" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6728 [pid 6728] chdir("./275" [pid 6727] <... write resumed>) = 4 [pid 6723] <... chdir resumed>) = 0 [pid 6727] close(3 [pid 6728] <... chdir resumed>) = 0 [pid 6727] <... close resumed>) = 0 [pid 6723] ioctl(4, LOOP_CLR_FD) = 0 [pid 6723] close(4 [pid 6725] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6723] <... close resumed>) = 0 [pid 6728] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6727] symlink("/dev/binderfs", "./binderfs" [pid 6723] exit_group(0 [pid 6728] <... prctl resumed>) = 0 [pid 6723] <... exit_group resumed>) = ? [pid 6728] setpgid(0, 0 [pid 6727] <... symlink resumed>) = 0 [pid 6723] +++ exited with 0 +++ [pid 6728] <... setpgid resumed>) = 0 [pid 6725] <... openat resumed>) = 4 [ 241.657796][ T6724] loop1: detected capacity change from 0 to 4096 [ 241.679426][ T6724] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6728] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6727] memfd_create("syzkaller", 0 [pid 6726] <... write resumed>) = 2097152 [pid 6725] ioctl(4, LOOP_SET_FD, 3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6723, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6728] <... openat resumed>) = 3 [pid 6727] <... memfd_create resumed>) = 3 [pid 6726] munmap(0x7ff0df171000, 138412032 [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6728] write(3, "1000", 4 [pid 6727] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6726] <... munmap resumed>) = 0 [pid 6724] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6728] <... write resumed>) = 4 [pid 6727] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] newfstatat(AT_FDCWD, "./272/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./272/binderfs" [pid 6728] close(3 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6724] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6728] <... close resumed>) = 0 [pid 6726] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6724] <... openat resumed>) = 3 [pid 6728] symlink("/dev/binderfs", "./binderfs" [pid 6724] chdir("./file0" [pid 6728] <... symlink resumed>) = 0 [pid 6725] <... ioctl resumed>) = 0 [pid 6724] <... chdir resumed>) = 0 [pid 6724] ioctl(4, LOOP_CLR_FD [pid 6725] close(3 [pid 6724] <... ioctl resumed>) = 0 [ 241.739564][ T6725] loop0: detected capacity change from 0 to 4096 [pid 6728] memfd_create("syzkaller", 0 [pid 6726] <... openat resumed>) = 4 [pid 6725] <... close resumed>) = 0 [pid 6724] close(4 [pid 6728] <... memfd_create resumed>) = 3 [pid 6726] ioctl(4, LOOP_SET_FD, 3 [pid 6725] mkdir("./file0", 0777 [pid 6724] <... close resumed>) = 0 [pid 6725] <... mkdir resumed>) = 0 [pid 6724] exit_group(0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./272/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6724] <... exit_group resumed>) = ? [pid 5034] getdents64(4, [pid 6725] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6724] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 6728] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6724, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6728] <... mmap resumed>) = 0x7ff0df171000 [pid 6726] <... ioctl resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 6726] close(3 [pid 5034] close(4) = 0 [pid 5034] rmdir("./272/file0" [pid 6726] <... close resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6726] mkdir("./file0", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5030] openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] rmdir("./272" [pid 5030] <... openat resumed>) = 3 [pid 6726] <... mkdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 5034] mkdir("./273", 0777) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./280/binderfs", [ 241.786925][ T6726] loop3: detected capacity change from 0 to 4096 [ 241.805664][ T6725] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6726] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 6727] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6729 attached , child_tidptr=0x55555635e650) = 6729 [pid 6729] set_robust_list(0x55555635e660, 24) = 0 [pid 6729] chdir("./273") = 0 [pid 5030] unlink("./280/binderfs") = 0 [pid 6729] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6729] setpgid(0, 0) = 0 [pid 5030] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6729] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6729] write(3, "1000", 4) = 4 [pid 6729] close(3) = 0 [pid 6729] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6729] memfd_create("syzkaller", 0) = 3 [pid 6729] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 241.841370][ T6726] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6725] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6728] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6727] <... write resumed>) = 2097152 [pid 5030] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6725] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6727] munmap(0x7ff0df171000, 138412032 [pid 6725] chdir("./file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./280/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6727] <... munmap resumed>) = 0 [pid 6725] <... chdir resumed>) = 0 [pid 5030] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6725] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6725] <... ioctl resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6725] close(4 [pid 5030] <... openat resumed>) = 4 [pid 6725] <... close resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 6725] exit_group(0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6727] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6725] <... exit_group resumed>) = ? [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 6727] <... openat resumed>) = 4 [pid 6725] +++ exited with 0 +++ [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6725, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./280/file0") = 0 [pid 5029] umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6727] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(3, [pid 5029] openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6727] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 6726] <... mount resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./281/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./281/binderfs") = 0 [pid 6726] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6726] <... openat resumed>) = 3 [pid 6726] chdir("./file0") = 0 [pid 6726] ioctl(4, LOOP_CLR_FD) = 0 [pid 6726] close(4) = 0 [pid 6726] exit_group(0) = ? [pid 5030] close(3 [pid 6727] close(3 [pid 6729] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6728] <... write resumed>) = 2097152 [pid 6727] <... close resumed>) = 0 [pid 6726] +++ exited with 0 +++ [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./280" [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6726, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 6727] mkdir("./file0", 0777 [pid 5030] <... rmdir resumed>) = 0 [pid 6728] munmap(0x7ff0df171000, 138412032 [pid 6727] <... mkdir resumed>) = 0 [pid 5032] umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./281", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6728] <... munmap resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] newfstatat(3, "", [pid 6728] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6727] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 3 [ 241.946047][ T6727] loop2: detected capacity change from 0 to 4096 [pid 6728] <... openat resumed>) = 4 [pid 5032] getdents64(3, [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./281/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5030] close(3) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6728] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] close(4) = 0 [pid 5032] umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./281/file0") = 0 [pid 5029] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6730 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./282/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./281"./strace-static-x86_64: Process 6730 attached [pid 5032] unlink("./282/binderfs" [pid 5029] <... rmdir resumed>) = 0 [pid 6730] set_robust_list(0x55555635e660, 24) = 0 [pid 6728] <... ioctl resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5029] mkdir("./282", 0777 [pid 6730] chdir("./281" [pid 6728] close(3 [pid 5032] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 6730] <... chdir resumed>) = 0 [pid 6728] <... close resumed>) = 0 [pid 6730] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6728] mkdir("./file0", 0777 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6730] <... prctl resumed>) = 0 [pid 6730] setpgid(0, 0 [pid 5029] <... openat resumed>) = 3 [pid 6730] <... setpgid resumed>) = 0 [pid 6728] <... mkdir resumed>) = 0 [ 242.003261][ T6727] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 242.021148][ T6728] loop4: detected capacity change from 0 to 4096 [pid 6730] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6729] <... write resumed>) = 2097152 [pid 6728] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3 [pid 6730] <... openat resumed>) = 3 [pid 6729] munmap(0x7ff0df171000, 138412032 [pid 5029] <... close resumed>) = 0 [pid 6730] write(3, "1000", 4 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6731 attached , child_tidptr=0x55555635e650) = 6731 [pid 6731] set_robust_list(0x55555635e660, 24) = 0 [pid 6731] chdir("./282") = 0 [pid 6730] <... write resumed>) = 4 [pid 6731] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6731] setpgid(0, 0) = 0 [pid 6731] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6730] close(3 [pid 6729] <... munmap resumed>) = 0 [pid 6731] write(3, "1000", 4 [pid 6730] <... close resumed>) = 0 [pid 6729] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6731] <... write resumed>) = 4 [pid 6730] symlink("/dev/binderfs", "./binderfs" [pid 6729] <... openat resumed>) = 4 [pid 6731] close(3 [pid 6730] <... symlink resumed>) = 0 [pid 6729] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = 0 [pid 6731] <... close resumed>) = 0 [pid 6731] symlink("/dev/binderfs", "./binderfs" [pid 6730] memfd_create("syzkaller", 0 [pid 5032] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6731] <... symlink resumed>) = 0 [pid 6730] <... memfd_create resumed>) = 3 [pid 6729] <... ioctl resumed>) = 0 [pid 6731] memfd_create("syzkaller", 0 [pid 6730] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6729] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6730] <... mmap resumed>) = 0x7ff0df171000 [pid 6729] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./282/file0", [pid 6731] <... memfd_create resumed>) = 3 [pid 6729] mkdir("./file0", 0777 [pid 6731] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6731] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6727] <... mount resumed>) = 0 [pid 6729] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6727] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6727] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 4 [pid 6727] chdir("./file0" [pid 5032] newfstatat(4, "", [pid 6729] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6727] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 242.054512][ T6728] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 242.082400][ T6729] loop5: detected capacity change from 0 to 4096 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6727] ioctl(4, LOOP_CLR_FD [pid 5032] getdents64(4, [pid 6727] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6727] close(4 [pid 5032] close(4) = 0 [pid 6728] <... mount resumed>) = 0 [pid 6727] <... close resumed>) = 0 [pid 5032] rmdir("./282/file0" [pid 6728] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6727] exit_group(0 [pid 6728] <... openat resumed>) = 3 [pid 6727] <... exit_group resumed>) = ? [pid 5032] <... rmdir resumed>) = 0 [pid 6728] chdir("./file0") = 0 [pid 6727] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6727, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6728] ioctl(4, LOOP_CLR_FD [pid 5032] getdents64(3, [pid 6728] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6728] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6728] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(3 [pid 5031] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./282" [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./283", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [ 242.139625][ T6729] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(3, [pid 6728] exit_group(0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6731] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6730] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6729] <... mount resumed>) = 0 [pid 6728] <... exit_group resumed>) = ? [pid 5032] close(3 [pid 5031] umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6728] +++ exited with 0 +++ [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6728, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./275/binderfs", [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(AT_FDCWD, "./279/binderfs", [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./275/binderfs" [pid 5031] unlink("./279/binderfs"./strace-static-x86_64: Process 6732 attached [pid 6729] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... unlink resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 6732] set_robust_list(0x55555635e660, 24 [pid 6729] <... openat resumed>) = 3 [pid 5033] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6732] <... set_robust_list resumed>) = 0 [pid 6729] chdir("./file0" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6732 [pid 6732] chdir("./283" [pid 6729] <... chdir resumed>) = 0 [pid 6732] <... chdir resumed>) = 0 [pid 6729] ioctl(4, LOOP_CLR_FD [pid 6732] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6729] <... ioctl resumed>) = 0 [pid 6732] <... prctl resumed>) = 0 [pid 6729] close(4 [pid 5033] <... umount2 resumed>) = 0 [pid 6732] setpgid(0, 0 [pid 6729] <... close resumed>) = 0 [pid 6732] <... setpgid resumed>) = 0 [pid 6729] exit_group(0 [pid 6732] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6729] <... exit_group resumed>) = ? [pid 5033] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6729] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./275/file0", [pid 6732] <... openat resumed>) = 3 [pid 6730] <... write resumed>) = 2097152 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6729, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6732] write(3, "1000", 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6732] <... write resumed>) = 4 [pid 6732] close(3 [pid 5033] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6732] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6732] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5034] umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6732] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5034] openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] close(4 [pid 5031] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(3, "", [pid 5033] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] rmdir("./275/file0" [pid 5031] newfstatat(AT_FDCWD, "./279/file0", [pid 6732] memfd_create("syzkaller", 0 [pid 5034] getdents64(3, [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] getdents64(3, [pid 6732] <... memfd_create resumed>) = 3 [pid 5034] umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6732] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6730] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./273/binderfs", [pid 5033] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] rmdir("./275" [pid 5031] <... openat resumed>) = 4 [pid 6732] <... mmap resumed>) = 0x7ff0df171000 [pid 6731] <... write resumed>) = 2097152 [pid 5034] unlink("./273/binderfs" [pid 5033] <... rmdir resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 6730] <... munmap resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] mkdir("./276", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6730] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] getdents64(4, [pid 6730] <... openat resumed>) = 4 [pid 5034] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... mkdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6730] ioctl(4, LOOP_SET_FD, 3 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] getdents64(4, [pid 5033] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5033] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] <... close resumed>) = 0 [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6731] munmap(0x7ff0df171000, 138412032 [pid 6730] <... ioctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6733 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./279/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6733 attached [pid 5034] newfstatat(AT_FDCWD, "./273/file0", [pid 5031] <... rmdir resumed>) = 0 [pid 6733] set_robust_list(0x55555635e660, 24 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(3, [pid 6733] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6733] chdir("./276" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 6733] <... chdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6733] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6733] <... prctl resumed>) = 0 [pid 6733] setpgid(0, 0) = 0 [pid 6733] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... openat resumed>) = 4 [pid 6733] <... openat resumed>) = 3 [pid 6730] close(3 [pid 5031] rmdir("./279" [pid 6731] <... munmap resumed>) = 0 [pid 6730] <... close resumed>) = 0 [pid 6731] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6730] mkdir("./file0", 0777 [pid 5031] <... rmdir resumed>) = 0 [pid 6731] <... openat resumed>) = 4 [pid 6731] ioctl(4, LOOP_SET_FD, 3 [pid 6730] <... mkdir resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5031] mkdir("./280", 0777 [pid 6733] write(3, "1000", 4) = 4 [pid 6733] close(3) = 0 [pid 6733] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6733] memfd_create("syzkaller", 0 [pid 6732] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6730] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6733] <... memfd_create resumed>) = 3 [pid 5034] getdents64(4, [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6733] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5034] getdents64(4, [pid 6731] <... ioctl resumed>) = 0 [pid 6731] close(3) = 0 [pid 6731] mkdir("./file0", 0777) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(4 [pid 5031] close(3 [pid 5034] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] rmdir("./273/file0" [ 242.333342][ T6730] loop1: detected capacity change from 0 to 4096 [ 242.356672][ T6731] loop0: detected capacity change from 0 to 4096 [ 242.374060][ T6730] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6731] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6734 ./strace-static-x86_64: Process 6734 attached [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 6734] set_robust_list(0x55555635e660, 24 [pid 5034] <... close resumed>) = 0 [pid 6734] <... set_robust_list resumed>) = 0 [pid 5034] rmdir("./273") = 0 [pid 6734] chdir("./280" [pid 5034] mkdir("./274", 0777 [pid 6734] <... chdir resumed>) = 0 [pid 6734] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6734] setpgid(0, 0) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6732] <... write resumed>) = 2097152 [pid 6734] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... openat resumed>) = 3 [pid 6734] <... openat resumed>) = 3 [pid 6734] write(3, "1000", 4) = 4 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [ 242.414404][ T6731] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6734] close(3 [pid 6733] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6732] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 6735 attached [pid 6734] <... close resumed>) = 0 [pid 6732] <... munmap resumed>) = 0 [pid 6730] <... mount resumed>) = 0 [pid 6735] set_robust_list(0x55555635e660, 24 [pid 6734] symlink("/dev/binderfs", "./binderfs" [pid 6735] <... set_robust_list resumed>) = 0 [pid 6734] <... symlink resumed>) = 0 [pid 6732] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6730] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6735 [pid 6735] chdir("./274") = 0 [pid 6732] <... openat resumed>) = 4 [pid 6735] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6734] memfd_create("syzkaller", 0 [pid 6732] ioctl(4, LOOP_SET_FD, 3 [pid 6730] <... openat resumed>) = 3 [pid 6735] setpgid(0, 0 [pid 6730] chdir("./file0") = 0 [pid 6730] ioctl(4, LOOP_CLR_FD) = 0 [pid 6735] <... setpgid resumed>) = 0 [pid 6734] <... memfd_create resumed>) = 3 [pid 6732] <... ioctl resumed>) = 0 [pid 6730] close(4) = 0 [pid 6735] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6730] exit_group(0 [pid 6735] <... openat resumed>) = 3 [pid 6734] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6730] <... exit_group resumed>) = ? [pid 6732] close(3 [pid 6735] write(3, "1000", 4 [pid 6734] <... mmap resumed>) = 0x7ff0df171000 [pid 6730] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6730, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6735] <... write resumed>) = 4 [pid 6735] close(3 [pid 6732] <... close resumed>) = 0 [pid 5030] umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6735] <... close resumed>) = 0 [pid 6732] mkdir("./file0", 0777 [pid 6731] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6732] <... mkdir resumed>) = 0 [pid 6731] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6731] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 6735] symlink("/dev/binderfs", "./binderfs" [pid 6731] chdir("./file0" [pid 5030] newfstatat(3, "", [pid 6735] <... symlink resumed>) = 0 [pid 6732] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6731] <... chdir resumed>) = 0 [pid 6731] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6731] close(4 [pid 5030] getdents64(3, [pid 6731] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6731] exit_group(0 [pid 5030] umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6731] <... exit_group resumed>) = ? [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6731] +++ exited with 0 +++ [pid 5030] newfstatat(AT_FDCWD, "./281/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6731, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5030] unlink("./281/binderfs" [pid 6735] memfd_create("syzkaller", 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6735] <... memfd_create resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6735] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] getdents64(3, [pid 6733] <... write resumed>) = 2097152 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6735] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./282/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./282/binderfs") = 0 [pid 5029] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = 0 [ 242.505193][ T6732] loop3: detected capacity change from 0 to 4096 [ 242.544055][ T6732] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6733] munmap(0x7ff0df171000, 138412032 [pid 5030] newfstatat(AT_FDCWD, "./281/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6734] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6733] <... munmap resumed>) = 0 [pid 6733] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6733] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6733] ioctl(4, LOOP_SET_FD, 3 [pid 5030] openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] <... umount2 resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5029] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./282/file0", [pid 5030] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5030] close(4 [pid 5029] newfstatat(4, "", [pid 5030] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] rmdir("./281/file0" [pid 5029] getdents64(4, [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5029] close(4 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./281") = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./282/file0" [pid 5030] mkdir("./282", 0777 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6732] <... mount resumed>) = 0 [pid 6732] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] getdents64(3, [pid 6733] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6733] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6733] <... close resumed>) = 0 [pid 6732] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6733] mkdir("./file0", 0777 [pid 5029] close(3 [pid 6733] <... mkdir resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 6732] chdir("./file0" [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6732] <... chdir resumed>) = 0 [pid 6732] ioctl(4, LOOP_CLR_FD [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 6736 attached [pid 6733] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6736 [pid 5029] rmdir("./282" [pid 6732] <... ioctl resumed>) = 0 [pid 6736] set_robust_list(0x55555635e660, 24) = 0 [pid 6736] chdir("./282") = 0 [pid 6736] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6736] setpgid(0, 0) = 0 [pid 6732] close(4 [pid 5029] <... rmdir resumed>) = 0 [pid 6736] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6732] <... close resumed>) = 0 [ 242.611815][ T6733] loop4: detected capacity change from 0 to 4096 [pid 5029] mkdir("./283", 0777 [pid 6736] write(3, "1000", 4 [pid 6735] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6732] exit_group(0) = ? [pid 6732] +++ exited with 0 +++ [pid 5029] <... mkdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6732, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 6736] <... write resumed>) = 4 [pid 6736] close(3) = 0 [pid 6736] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6736] memfd_create("syzkaller", 0) = 3 [pid 6736] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6734] <... write resumed>) = 2097152 [pid 5029] <... openat resumed>) = 3 [pid 5032] umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 242.666012][ T6733] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6733] <... mount resumed>) = 0 [pid 6733] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", [pid 6734] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6733] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6735] <... write resumed>) = 2097152 [pid 6734] <... munmap resumed>) = 0 [pid 6733] <... chdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./283/binderfs", [pid 5029] <... close resumed>) = 0 [pid 6735] munmap(0x7ff0df171000, 138412032 [pid 6734] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6733] ioctl(4, LOOP_CLR_FD) = 0 [pid 6733] close(4) = 0 [pid 5032] unlink("./283/binderfs" [pid 6733] exit_group(0) = ? [pid 6733] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6733, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./276/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./276/binderfs") = 0 [pid 5033] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6735] <... munmap resumed>) = 0 [pid 6734] <... openat resumed>) = 4 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... umount2 resumed>) = 0 [pid 6735] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6734] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6737 ./strace-static-x86_64: Process 6737 attached [pid 5033] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6737] set_robust_list(0x55555635e660, 24 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6737] <... set_robust_list resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./276/file0", [pid 6737] chdir("./283" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6737] <... chdir resumed>) = 0 [pid 5033] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6737] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6735] <... openat resumed>) = 4 [pid 6737] <... prctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6737] setpgid(0, 0 [pid 5033] <... openat resumed>) = 4 [pid 6737] <... setpgid resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6737] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6735] ioctl(4, LOOP_SET_FD, 3 [pid 6734] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6737] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 6737] write(3, "1000", 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6737] <... write resumed>) = 4 [pid 5033] getdents64(4, [pid 6737] close(3) = 0 [pid 6734] close(3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6737] symlink("/dev/binderfs", "./binderfs" [pid 6735] <... ioctl resumed>) = 0 [pid 6734] <... close resumed>) = 0 [pid 5033] close(4 [pid 6737] <... symlink resumed>) = 0 [pid 6736] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6735] close(3 [pid 6734] mkdir("./file0", 0777 [pid 5033] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6735] <... close resumed>) = 0 [pid 6737] memfd_create("syzkaller", 0 [pid 6735] mkdir("./file0", 0777 [pid 6734] <... mkdir resumed>) = 0 [pid 5033] rmdir("./276/file0" [pid 5032] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6735] <... mkdir resumed>) = 0 [pid 6734] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 242.788487][ T6734] loop2: detected capacity change from 0 to 4096 [ 242.806693][ T6735] loop5: detected capacity change from 0 to 4096 [pid 5032] newfstatat(AT_FDCWD, "./283/file0", [pid 6737] <... memfd_create resumed>) = 3 [pid 6735] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] getdents64(3, [pid 6737] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6737] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6736] <... write resumed>) = 2097152 [pid 5033] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5033] rmdir("./276") = 0 [pid 5033] mkdir("./277", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6736] munmap(0x7ff0df171000, 138412032 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6736] <... munmap resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6736] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [ 242.843481][ T6734] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 242.863240][ T6735] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6736] <... openat resumed>) = 4 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... close resumed>) = 0 [pid 6736] ioctl(4, LOOP_SET_FD, 3 [pid 5032] rmdir("./283/file0" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6738 ./strace-static-x86_64: Process 6738 attached [pid 6738] set_robust_list(0x55555635e660, 24) = 0 [pid 6738] chdir("./277" [pid 5032] <... rmdir resumed>) = 0 [pid 6738] <... chdir resumed>) = 0 [pid 6736] <... ioctl resumed>) = 0 [pid 6734] <... mount resumed>) = 0 [pid 5032] getdents64(3, [pid 6738] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6736] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6736] <... close resumed>) = 0 [pid 6738] <... prctl resumed>) = 0 [pid 6736] mkdir("./file0", 0777 [pid 6734] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] close(3 [pid 6738] setpgid(0, 0 [pid 6734] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 6738] <... setpgid resumed>) = 0 [pid 6736] <... mkdir resumed>) = 0 [pid 6734] chdir("./file0" [pid 5032] rmdir("./283" [pid 6738] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6736] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6734] <... chdir resumed>) = 0 [pid 6734] ioctl(4, LOOP_CLR_FD [pid 6738] <... openat resumed>) = 3 [pid 6734] <... ioctl resumed>) = 0 [pid 6738] write(3, "1000", 4 [pid 6734] close(4 [pid 6738] <... write resumed>) = 4 [pid 6734] <... close resumed>) = 0 [pid 6738] close(3 [pid 6734] exit_group(0 [pid 6738] <... close resumed>) = 0 [pid 6734] <... exit_group resumed>) = ? [pid 6738] symlink("/dev/binderfs", "./binderfs" [pid 6734] +++ exited with 0 +++ [pid 6738] <... symlink resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6734, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 6738] memfd_create("syzkaller", 0) = 3 [pid 6738] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", [pid 5032] mkdir("./284", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5032] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6735] <... mount resumed>) = 0 [pid 6737] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6735] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6735] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./280/binderfs", [pid 6735] chdir("./file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6735] <... chdir resumed>) = 0 [pid 6735] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [ 242.910437][ T6736] loop1: detected capacity change from 0 to 4096 [ 242.944586][ T6736] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6735] close(4 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6735] <... close resumed>) = 0 [pid 5031] unlink("./280/binderfs" [pid 6735] exit_group(0) = ? [pid 6735] +++ exited with 0 +++ [pid 5032] close(3 [pid 5031] <... unlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6735, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6739 ./strace-static-x86_64: Process 6739 attached [pid 6739] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6739] <... set_robust_list resumed>) = 0 [pid 6739] chdir("./284" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6739] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6739] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] newfstatat(3, "", [pid 6739] <... prctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6739] setpgid(0, 0) = 0 [pid 6737] <... write resumed>) = 2097152 [pid 5034] getdents64(3, [pid 6739] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6739] write(3, "1000", 4 [pid 5034] umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6739] <... write resumed>) = 4 [pid 6737] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6739] close(3 [pid 5034] newfstatat(AT_FDCWD, "./274/binderfs", [pid 6739] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./274/binderfs" [pid 6739] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6737] <... munmap resumed>) = 0 [pid 5034] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6739] memfd_create("syzkaller", 0) = 3 [pid 6737] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6739] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6737] <... openat resumed>) = 4 [pid 6739] <... mmap resumed>) = 0x7ff0df171000 [pid 6737] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... umount2 resumed>) = 0 [pid 6737] <... ioctl resumed>) = 0 [pid 6737] close(3) = 0 [pid 6737] mkdir("./file0", 0777) = 0 [pid 5031] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6737] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6736] <... mount resumed>) = 0 [pid 6738] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6736] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./280/file0", [pid 6736] <... openat resumed>) = 3 [pid 6736] chdir("./file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6736] <... chdir resumed>) = 0 [pid 5031] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6736] ioctl(4, LOOP_CLR_FD) = 0 [pid 6736] close(4) = 0 [pid 6736] exit_group(0) = ? [pid 6736] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6736, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [ 243.053312][ T6737] loop0: detected capacity change from 0 to 4096 [ 243.074553][ T6737] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./274/file0", [pid 5030] umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5030] newfstatat(3, "", [pid 5034] newfstatat(4, "", [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 6738] <... write resumed>) = 2097152 [pid 5034] getdents64(4, [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(3, [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 5034] getdents64(4, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6738] munmap(0x7ff0df171000, 138412032 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./282/binderfs", [pid 5031] rmdir("./280/file0" [pid 6738] <... munmap resumed>) = 0 [pid 5034] close(4 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] unlink("./282/binderfs" [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./280") = 0 [pid 5031] mkdir("./281", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6738] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 6739] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] rmdir("./274/file0" [pid 6738] <... openat resumed>) = 4 [pid 5030] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6738] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./274"./strace-static-x86_64: Process 6740 attached ) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6740 [pid 5030] <... umount2 resumed>) = 0 [pid 6740] set_robust_list(0x55555635e660, 24 [pid 5034] mkdir("./275", 0777 [pid 6738] <... ioctl resumed>) = 0 [pid 6737] <... mount resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5030] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6740] <... set_robust_list resumed>) = 0 [pid 6740] chdir("./281") = 0 [pid 6740] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6740] setpgid(0, 0) = 0 [pid 6740] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6740] write(3, "1000", 4) = 4 [pid 6740] close(3) = 0 [pid 6738] close(3 [pid 6737] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6740] symlink("/dev/binderfs", "./binderfs" [pid 6738] <... close resumed>) = 0 [pid 6737] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5030] newfstatat(AT_FDCWD, "./282/file0", [pid 6740] <... symlink resumed>) = 0 [pid 6738] mkdir("./file0", 0777 [pid 6737] chdir("./file0" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6740] memfd_create("syzkaller", 0 [pid 6738] <... mkdir resumed>) = 0 [pid 6737] <... chdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6738] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6737] ioctl(4, LOOP_CLR_FD [ 243.171811][ T6738] loop4: detected capacity change from 0 to 4096 [pid 5034] close(3 [pid 5030] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6737] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6740] <... memfd_create resumed>) = 3 [pid 6740] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6737] close(4 [pid 5030] openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6737] <... close resumed>) = 0 ./strace-static-x86_64: Process 6741 attached [pid 6737] exit_group(0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6741 [pid 5030] <... openat resumed>) = 4 [pid 6741] set_robust_list(0x55555635e660, 24 [pid 6737] <... exit_group resumed>) = ? [pid 5030] newfstatat(4, "", [pid 6741] <... set_robust_list resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6737] +++ exited with 0 +++ [pid 6741] chdir("./275" [pid 5030] getdents64(4, [pid 6741] <... chdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6737, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 6741] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6741] <... prctl resumed>) = 0 [pid 5030] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(4 [pid 6739] <... write resumed>) = 2097152 [pid 6739] munmap(0x7ff0df171000, 138412032) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5030] rmdir("./282/file0" [pid 5029] newfstatat(3, "", [pid 6741] setpgid(0, 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6741] <... setpgid resumed>) = 0 [pid 5029] getdents64(3, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6741] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 5029] umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./282" [pid 6741] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./283/binderfs", [pid 5030] mkdir("./283", 0777 [pid 6741] write(3, "1000", 4 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] unlink("./283/binderfs" [pid 6741] <... write resumed>) = 4 [pid 6739] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... openat resumed>) = 3 [pid 5029] <... unlink resumed>) = 0 [pid 6741] close(3 [pid 6739] <... openat resumed>) = 4 [ 243.230005][ T6738] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6741] <... close resumed>) = 0 [pid 6739] ioctl(4, LOOP_SET_FD, 3 [pid 6741] symlink("/dev/binderfs", "./binderfs" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6741] <... symlink resumed>) = 0 [pid 5030] <... ioctl resumed>) = 0 [pid 5030] close(3 [pid 6741] memfd_create("syzkaller", 0) = 3 [pid 6741] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6739] <... ioctl resumed>) = 0 [pid 6739] close(3) = 0 [pid 6739] mkdir("./file0", 0777) = 0 [ 243.277267][ T6739] loop3: detected capacity change from 0 to 4096 [pid 6739] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6740] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6738] <... mount resumed>) = 0 [pid 6738] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 6738] <... openat resumed>) = 3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6738] chdir("./file0"./strace-static-x86_64: Process 6742 attached [pid 6742] set_robust_list(0x55555635e660, 24 [pid 6738] <... chdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6742 [pid 6742] <... set_robust_list resumed>) = 0 [pid 6738] ioctl(4, LOOP_CLR_FD [pid 6742] chdir("./283" [pid 6738] <... ioctl resumed>) = 0 [ 243.329840][ T6739] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6742] <... chdir resumed>) = 0 [pid 6738] close(4) = 0 [pid 6742] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6738] exit_group(0 [pid 6742] <... prctl resumed>) = 0 [pid 6738] <... exit_group resumed>) = ? [pid 6742] setpgid(0, 0) = 0 [pid 6738] +++ exited with 0 +++ [pid 6742] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6738, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6742] <... openat resumed>) = 3 [pid 6742] write(3, "1000", 4 [pid 5033] umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 6742] <... write resumed>) = 4 [pid 6741] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6742] close(3 [pid 5033] openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6742] <... close resumed>) = 0 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 6742] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./277/binderfs", [pid 6742] <... symlink resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./277/binderfs") = 0 [pid 5033] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6742] memfd_create("syzkaller", 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./277/file0", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6742] <... memfd_create resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(AT_FDCWD, "./283/file0", [pid 6742] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6742] <... mmap resumed>) = 0x7ff0df171000 [pid 6740] <... write resumed>) = 2097152 [pid 5029] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5029] getdents64(4, [pid 6740] munmap(0x7ff0df171000, 138412032) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./283/file0" [pid 5033] getdents64(4, [pid 5029] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./283" [pid 5033] close(4 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./284", 0777) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6739] <... mount resumed>) = 0 [pid 6739] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... openat resumed>) = 3 [pid 6739] <... openat resumed>) = 3 [pid 5033] rmdir("./277/file0" [pid 6740] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6739] chdir("./file0" [pid 6740] <... openat resumed>) = 4 [pid 6739] <... chdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6739] ioctl(4, LOOP_CLR_FD [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6740] ioctl(4, LOOP_SET_FD, 3 [pid 6739] <... ioctl resumed>) = 0 [pid 5029] close(3 [pid 6739] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 6741] <... write resumed>) = 2097152 [pid 6739] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] close(3 [pid 6739] exit_group(0 [pid 5033] <... close resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6743 [pid 5033] rmdir("./277" [pid 6739] <... exit_group resumed>) = ? [pid 6739] +++ exited with 0 +++ [pid 5033] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6743 attached [pid 5033] mkdir("./278", 0777 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6739, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 6743] set_robust_list(0x55555635e660, 24 [pid 5032] umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6743] <... set_robust_list resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6743] chdir("./284" [pid 5032] openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6743] <... chdir resumed>) = 0 [pid 6743] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... openat resumed>) = 3 [pid 6743] <... prctl resumed>) = 0 [pid 6743] setpgid(0, 0) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6743] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6741] munmap(0x7ff0df171000, 138412032) = 0 [pid 6743] <... openat resumed>) = 3 [pid 6743] write(3, "1000", 4) = 4 [pid 6743] close(3) = 0 [pid 6743] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] newfstatat(3, "", [pid 6743] memfd_create("syzkaller", 0 [pid 6740] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6741] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6740] close(3 [pid 5032] getdents64(3, [pid 5033] <... openat resumed>) = 3 [pid 6740] <... close resumed>) = 0 [pid 6740] mkdir("./file0", 0777 [pid 6741] <... openat resumed>) = 4 [pid 6740] <... mkdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 243.479645][ T6740] loop2: detected capacity change from 0 to 4096 [ 243.514799][ T6741] loop5: detected capacity change from 0 to 4096 [pid 6741] ioctl(4, LOOP_SET_FD, 3 [pid 6740] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6743] <... memfd_create resumed>) = 3 [pid 6742] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6741] <... ioctl resumed>) = 0 [pid 5033] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6743] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./284/binderfs", [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6744 [pid 6743] <... mmap resumed>) = 0x7ff0df171000 ./strace-static-x86_64: Process 6744 attached [pid 6744] set_robust_list(0x55555635e660, 24) = 0 [pid 6744] chdir("./278" [pid 5032] unlink("./284/binderfs" [pid 6744] <... chdir resumed>) = 0 [pid 6741] close(3 [pid 5032] <... unlink resumed>) = 0 [pid 6744] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6741] <... close resumed>) = 0 [pid 5032] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6744] <... prctl resumed>) = 0 [pid 6741] mkdir("./file0", 0777 [pid 6744] setpgid(0, 0) = 0 [pid 6741] <... mkdir resumed>) = 0 [pid 6744] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [ 243.524253][ T6740] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6741] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6744] <... openat resumed>) = 3 [pid 6744] write(3, "1000", 4) = 4 [pid 6744] close(3) = 0 [pid 6744] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6744] memfd_create("syzkaller", 0) = 3 [pid 6744] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 243.550162][ T6741] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6743] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6742] <... write resumed>) = 2097152 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./284/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 6744] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6742] munmap(0x7ff0df171000, 138412032 [pid 5032] close(4) = 0 [pid 5032] rmdir("./284/file0" [pid 6743] <... write resumed>) = 2097152 [pid 6741] <... mount resumed>) = 0 [pid 6740] <... mount resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6740] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6743] munmap(0x7ff0df171000, 138412032 [pid 6740] <... openat resumed>) = 3 [pid 5032] getdents64(3, [pid 6740] chdir("./file0" [pid 6742] <... munmap resumed>) = 0 [pid 6740] <... chdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6743] <... munmap resumed>) = 0 [pid 6743] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6742] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] close(3 [pid 6742] <... openat resumed>) = 4 [pid 6741] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6740] ioctl(4, LOOP_CLR_FD [pid 5032] <... close resumed>) = 0 [pid 6741] <... openat resumed>) = 3 [pid 6740] <... ioctl resumed>) = 0 [pid 6741] chdir("./file0" [pid 6740] close(4 [pid 6743] <... openat resumed>) = 4 [pid 6742] ioctl(4, LOOP_SET_FD, 3 [pid 6741] <... chdir resumed>) = 0 [pid 6740] <... close resumed>) = 0 [pid 5032] rmdir("./284" [pid 6741] ioctl(4, LOOP_CLR_FD [pid 6740] exit_group(0 [pid 5032] <... rmdir resumed>) = 0 [pid 6740] <... exit_group resumed>) = ? [pid 6744] <... write resumed>) = 2097152 [pid 6743] ioctl(4, LOOP_SET_FD, 3 [pid 6740] +++ exited with 0 +++ [pid 6741] <... ioctl resumed>) = 0 [pid 6741] close(4) = 0 [pid 6741] exit_group(0) = ? [pid 6741] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6740, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6741, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] mkdir("./285", 0777 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... restart_syscall resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6744] munmap(0x7ff0df171000, 138412032 [pid 6743] <... ioctl resumed>) = 0 [pid 6742] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] newfstatat(3, "", [pid 6744] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(3, [pid 5032] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5031] <... openat resumed>) = 3 [pid 6744] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6743] close(3 [pid 6742] close(3 [pid 5034] newfstatat(AT_FDCWD, "./275/binderfs", [pid 5031] newfstatat(3, "", [pid 5032] <... close resumed>) = 0 [pid 6744] <... openat resumed>) = 4 [pid 6743] <... close resumed>) = 0 [pid 6742] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6744] ioctl(4, LOOP_SET_FD, 3 [pid 6743] mkdir("./file0", 0777 [pid 6742] mkdir("./file0", 0777 [ 243.717386][ T6742] loop1: detected capacity change from 0 to 4096 [ 243.724738][ T6743] loop0: detected capacity change from 0 to 4096 [ 243.756115][ T6744] loop4: detected capacity change from 0 to 4096 [pid 5034] unlink("./275/binderfs" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6744] <... ioctl resumed>) = 0 [pid 6743] <... mkdir resumed>) = 0 [pid 6742] <... mkdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6742] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6743] mount("/dev/loop0", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6745 attached [pid 6745] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./281/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./281/binderfs") = 0 [pid 5031] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6745] chdir("./285" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6745 [pid 6744] close(3) = 0 [pid 6744] mkdir("./file0", 0777 [pid 6745] <... chdir resumed>) = 0 [pid 6744] <... mkdir resumed>) = 0 [pid 6745] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6745] setpgid(0, 0) = 0 [pid 6744] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6745] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6745] write(3, "1000", 4) = 4 [pid 6745] close(3) = 0 [pid 6745] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... umount2 resumed>) = 0 [pid 6745] <... symlink resumed>) = 0 [pid 6745] memfd_create("syzkaller", 0 [pid 5034] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6745] <... memfd_create resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./275/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6745] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 243.769912][ T6743] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 243.779225][ T6742] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 243.808611][ T6744] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6743] <... mount resumed>) = 0 [pid 6742] <... mount resumed>) = 0 [pid 6743] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(4, "", [pid 6743] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6743] chdir("./file0" [pid 6742] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6743] <... chdir resumed>) = 0 [pid 6743] ioctl(4, LOOP_CLR_FD) = 0 [pid 6742] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6743] close(4 [pid 6742] chdir("./file0" [pid 6743] <... close resumed>) = 0 [pid 6742] <... chdir resumed>) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./275/file0" [pid 6743] exit_group(0 [pid 6742] ioctl(4, LOOP_CLR_FD [pid 5034] <... rmdir resumed>) = 0 [pid 6743] <... exit_group resumed>) = ? [pid 6742] <... ioctl resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./275") = 0 [pid 5034] mkdir("./276", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6742] close(4) = 0 ./strace-static-x86_64: Process 6746 attached [pid 6743] +++ exited with 0 +++ [pid 6742] exit_group(0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6746 [pid 6742] <... exit_group resumed>) = ? [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6743, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6746] set_robust_list(0x55555635e660, 24) = 0 [pid 6746] chdir("./276" [pid 5029] umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6742] +++ exited with 0 +++ [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6746] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6742, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 6746] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6746] <... prctl resumed>) = 0 [pid 5029] getdents64(3, [pid 6746] setpgid(0, 0) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6746] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6746] <... openat resumed>) = 3 [pid 6746] write(3, "1000", 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6746] <... write resumed>) = 4 [pid 6744] <... mount resumed>) = 0 [pid 5031] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./284/binderfs", [pid 6746] close(3 [pid 6745] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6746] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6746] symlink("/dev/binderfs", "./binderfs" [pid 5030] openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6746] <... symlink resumed>) = 0 [pid 6744] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./281/file0", [pid 5029] unlink("./284/binderfs" [pid 6746] memfd_create("syzkaller", 0 [pid 6744] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6746] <... memfd_create resumed>) = 3 [pid 6744] chdir("./file0" [pid 5031] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 6746] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] newfstatat(3, "", [pid 5029] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6746] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6744] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6744] ioctl(4, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 6744] <... ioctl resumed>) = 0 [pid 6744] close(4 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6744] <... close resumed>) = 0 [pid 5030] umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./283/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./283/binderfs") = 0 [pid 6744] exit_group(0 [pid 5031] newfstatat(4, "", [pid 5030] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6744] <... exit_group resumed>) = ? [pid 6744] +++ exited with 0 +++ [pid 5031] getdents64(4, [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6744, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5033] umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./278/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] rmdir("./281/file0" [pid 5029] <... umount2 resumed>) = 0 [pid 5033] unlink("./278/binderfs" [pid 5031] <... rmdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5031] getdents64(3, [pid 5033] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./284/file0", [pid 5031] rmdir("./281" [pid 6745] <... write resumed>) = 2097152 [pid 5030] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./283/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] mkdir("./282", 0777 [pid 5030] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./283/file0" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5030] getdents64(3, [pid 5029] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] getdents64(4, [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] rmdir("./283" [pid 5031] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... close resumed>) = 0 [pid 5029] getdents64(4, [pid 6745] munmap(0x7ff0df171000, 138412032 [pid 5030] mkdir("./284", 0777 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6745] <... munmap resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] close(4 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 6747 attached [pid 6747] set_robust_list(0x55555635e660, 24) = 0 [pid 6747] chdir("./282") = 0 [pid 6747] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6747] setpgid(0, 0) = 0 [pid 6747] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6745] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6747] write(3, "1000", 4 [pid 5029] <... close resumed>) = 0 [pid 6747] <... write resumed>) = 4 [pid 6745] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6747 [pid 5029] rmdir("./284/file0" [pid 6747] close(3 [pid 6745] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6747] <... close resumed>) = 0 [pid 6747] symlink("/dev/binderfs", "./binderfs" [pid 5029] getdents64(3, [pid 6747] <... symlink resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6747] memfd_create("syzkaller", 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./284" [pid 6746] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./285", 0777 [pid 6747] <... memfd_create resumed>) = 3 [pid 6747] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... mkdir resumed>) = 0 [pid 5033] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./278/file0", [pid 5029] <... openat resumed>) = 3 [pid 6747] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6748 attached ) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6748 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5033] openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6748] set_robust_list(0x55555635e660, 24 [pid 5029] <... close resumed>) = 0 [pid 6748] <... set_robust_list resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6748] chdir("./284" [pid 6745] close(3 [pid 6748] <... chdir resumed>) = 0 [pid 6745] <... close resumed>) = 0 [pid 6748] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6745] mkdir("./file0", 0777 [pid 6748] <... prctl resumed>) = 0 [pid 6745] <... mkdir resumed>) = 0 [pid 6748] setpgid(0, 0) = 0 ./strace-static-x86_64: Process 6749 attached [pid 6748] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... openat resumed>) = 4 [pid 6749] set_robust_list(0x55555635e660, 24 [ 244.043958][ T6745] loop3: detected capacity change from 0 to 4096 [pid 6745] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] newfstatat(4, "", [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6749 [pid 6749] <... set_robust_list resumed>) = 0 [pid 6748] <... openat resumed>) = 3 [pid 6748] write(3, "1000", 4 [pid 6749] chdir("./285" [pid 6748] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6748] close(3 [pid 6749] <... chdir resumed>) = 0 [pid 6748] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 6748] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6748] memfd_create("syzkaller", 0 [pid 5033] close(4 [pid 6749] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... close resumed>) = 0 [pid 6749] <... prctl resumed>) = 0 [pid 6749] setpgid(0, 0) = 0 [pid 6748] <... memfd_create resumed>) = 3 [pid 6749] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6748] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] rmdir("./278/file0" [pid 6748] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... rmdir resumed>) = 0 [pid 6749] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 6749] write(3, "1000", 4 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 6749] <... write resumed>) = 4 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./278" [pid 6749] close(3) = 0 [pid 5033] <... rmdir resumed>) = 0 [ 244.096961][ T6745] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6749] symlink("/dev/binderfs", "./binderfs" [pid 5033] mkdir("./279", 0777 [pid 6749] <... symlink resumed>) = 0 [pid 6746] <... write resumed>) = 2097152 [pid 5033] <... mkdir resumed>) = 0 [pid 6749] memfd_create("syzkaller", 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6749] <... memfd_create resumed>) = 3 [pid 6746] munmap(0x7ff0df171000, 138412032 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6749] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6746] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 6749] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6746] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6746] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 6750 attached [pid 6750] set_robust_list(0x55555635e660, 24 [pid 6745] <... mount resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6750 [pid 6750] <... set_robust_list resumed>) = 0 [pid 6750] chdir("./279" [pid 6747] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6745] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6746] <... ioctl resumed>) = 0 [pid 6745] <... openat resumed>) = 3 [pid 6745] chdir("./file0") = 0 [pid 6750] <... chdir resumed>) = 0 [pid 6746] close(3 [pid 6745] ioctl(4, LOOP_CLR_FD [pid 6750] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6745] <... ioctl resumed>) = 0 [pid 6750] setpgid(0, 0) = 0 [pid 6745] close(4 [pid 6750] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6746] <... close resumed>) = 0 [pid 6745] <... close resumed>) = 0 [pid 6750] <... openat resumed>) = 3 [pid 6746] mkdir("./file0", 0777 [pid 6745] exit_group(0 [pid 6746] <... mkdir resumed>) = 0 [pid 6745] <... exit_group resumed>) = ? [pid 6750] write(3, "1000", 4 [pid 6746] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6745] +++ exited with 0 +++ [pid 6750] <... write resumed>) = 4 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6745, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=3 /* 0.03 s */} --- [pid 6750] close(3 [ 244.183714][ T6746] loop5: detected capacity change from 0 to 4096 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 6750] <... close resumed>) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 6750] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6748] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6750] memfd_create("syzkaller", 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 6750] <... memfd_create resumed>) = 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6750] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6749] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] newfstatat(AT_FDCWD, "./285/binderfs", [pid 6750] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./285/binderfs") = 0 [pid 5032] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6747] <... write resumed>) = 2097152 [ 244.235078][ T6746] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6747] munmap(0x7ff0df171000, 138412032) = 0 [pid 6747] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6747] ioctl(4, LOOP_SET_FD, 3 [pid 6748] <... write resumed>) = 2097152 [pid 6747] <... ioctl resumed>) = 0 [pid 6746] <... mount resumed>) = 0 [pid 6747] close(3 [pid 6746] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6747] <... close resumed>) = 0 [pid 6746] <... openat resumed>) = 3 [pid 6747] mkdir("./file0", 0777 [pid 6746] chdir("./file0" [pid 5032] <... umount2 resumed>) = 0 [pid 6747] <... mkdir resumed>) = 0 [pid 6746] <... chdir resumed>) = 0 [pid 5032] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6747] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6746] ioctl(4, LOOP_CLR_FD [pid 6748] munmap(0x7ff0df171000, 138412032 [pid 6746] <... ioctl resumed>) = 0 [pid 6746] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6746] <... close resumed>) = 0 [pid 6746] exit_group(0) = ? [pid 6749] <... write resumed>) = 2097152 [pid 6746] +++ exited with 0 +++ [pid 5032] newfstatat(AT_FDCWD, "./285/file0", [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6746, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 244.310618][ T6747] loop2: detected capacity change from 0 to 4096 [ 244.340323][ T6747] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6748] <... munmap resumed>) = 0 [pid 5034] umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6748] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6748] <... openat resumed>) = 4 [pid 5034] openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6748] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6749] munmap(0x7ff0df171000, 138412032 [pid 5034] getdents64(3, [pid 5032] newfstatat(4, "", [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6749] <... munmap resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./276/binderfs", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 6750] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6749] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6748] <... ioctl resumed>) = 0 [pid 5034] unlink("./276/binderfs" [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6749] <... openat resumed>) = 4 [pid 6748] close(3 [pid 5034] <... unlink resumed>) = 0 [pid 5032] getdents64(4, [pid 6749] ioctl(4, LOOP_SET_FD, 3 [pid 6748] <... close resumed>) = 0 [pid 5034] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6748] mkdir("./file0", 0777) = 0 [ 244.367821][ T6748] loop1: detected capacity change from 0 to 4096 [ 244.389471][ T6749] loop0: detected capacity change from 0 to 4096 [pid 6748] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5032] close(4) = 0 [pid 5034] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6749] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./285/file0" [pid 6749] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 6749] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 6749] mkdir("./file0", 0777 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5034] newfstatat(AT_FDCWD, "./276/file0", [pid 5032] <... close resumed>) = 0 [pid 6749] <... mkdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] rmdir("./285" [pid 6747] <... mount resumed>) = 0 [pid 5034] umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 6749] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] mkdir("./286", 0777 [pid 5034] openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 6747] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6750] <... write resumed>) = 2097152 [pid 6747] <... openat resumed>) = 3 [pid 5034] getdents64(4, [pid 5032] <... mkdir resumed>) = 0 [pid 6747] chdir("./file0") = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [ 244.410642][ T6748] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6747] ioctl(4, LOOP_CLR_FD) = 0 [pid 6747] close(4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... openat resumed>) = 3 [pid 6747] <... close resumed>) = 0 [pid 5034] getdents64(4, [pid 6747] exit_group(0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6747] <... exit_group resumed>) = ? [pid 5034] close(4) = 0 [pid 5034] rmdir("./276/file0" [pid 6750] munmap(0x7ff0df171000, 138412032 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] getdents64(3, [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5034] close(3 [pid 6747] +++ exited with 0 +++ [pid 5034] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6747, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] rmdir("./276") = 0 [pid 5034] mkdir("./277", 0777) = 0 [pid 5031] umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6751 attached [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6751] set_robust_list(0x55555635e660, 24 [pid 6750] <... munmap resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6751 [pid 5031] openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6751] <... set_robust_list resumed>) = 0 [pid 6750] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 3 [pid 6751] chdir("./286" [pid 6750] <... openat resumed>) = 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(3, "", [ 244.455207][ T6749] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6750] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6751] <... chdir resumed>) = 0 [pid 6748] <... mount resumed>) = 0 [pid 5034] close(3 [pid 6751] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6748] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6751] <... prctl resumed>) = 0 [pid 6748] <... openat resumed>) = 3 [pid 5031] umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6751] setpgid(0, 0 [pid 6748] chdir("./file0" [pid 6751] <... setpgid resumed>) = 0 [pid 6748] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6751] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6748] ioctl(4, LOOP_CLR_FD [pid 5031] newfstatat(AT_FDCWD, "./282/binderfs", [pid 6751] <... openat resumed>) = 3 [pid 6748] <... ioctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6751] write(3, "1000", 4 [pid 6748] close(4 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6752 [pid 5031] unlink("./282/binderfs" [pid 6751] <... write resumed>) = 4 [pid 6748] <... close resumed>) = 0 [pid 6748] exit_group(0 [pid 5031] <... unlink resumed>) = 0 [pid 6748] <... exit_group resumed>) = ? [pid 5031] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6752 attached [pid 6751] close(3 [pid 6748] +++ exited with 0 +++ [pid 6752] set_robust_list(0x55555635e660, 24 [pid 6751] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6748, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 6751] symlink("/dev/binderfs", "./binderfs" [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6751] <... symlink resumed>) = 0 [pid 6750] <... ioctl resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5030] umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6752] <... set_robust_list resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6752] chdir("./277" [pid 5030] openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6751] memfd_create("syzkaller", 0 [pid 6750] close(3 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", [pid 6752] <... chdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6752] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6751] <... memfd_create resumed>) = 3 [pid 6750] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 6752] <... prctl resumed>) = 0 [pid 6751] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6750] mkdir("./file0", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6752] setpgid(0, 0 [pid 6751] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6752] <... setpgid resumed>) = 0 [pid 6750] <... mkdir resumed>) = 0 [ 244.497288][ T6750] loop4: detected capacity change from 0 to 4096 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6750] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6752] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] newfstatat(AT_FDCWD, "./284/binderfs", [pid 6752] write(3, "1000", 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6752] <... write resumed>) = 4 [pid 5030] unlink("./284/binderfs" [pid 6752] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 6752] <... close resumed>) = 0 [pid 5030] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6752] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... umount2 resumed>) = 0 [pid 6752] <... symlink resumed>) = 0 [pid 6752] memfd_create("syzkaller", 0 [pid 5030] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./284/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6752] <... memfd_create resumed>) = 3 [pid 6749] <... mount resumed>) = 0 [pid 5030] getdents64(4, [pid 6752] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 6749] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] rmdir("./284/file0" [pid 6749] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./284") = 0 [pid 5030] mkdir("./285", 0777 [pid 6749] chdir("./file0" [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6749] <... chdir resumed>) = 0 [pid 5031] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6749] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6749] <... ioctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./282/file0", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6749] close(4 [pid 5031] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6749] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 244.560858][ T6750] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6753 attached [pid 6751] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6749] exit_group(0 [pid 5031] <... openat resumed>) = 4 [pid 6753] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] newfstatat(4, "", [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6753 [pid 6753] chdir("./285" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6753] <... chdir resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6753] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6749] <... exit_group resumed>) = ? [pid 5031] close(4 [pid 6753] <... prctl resumed>) = 0 [pid 6749] +++ exited with 0 +++ [pid 5031] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6749, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5031] rmdir("./282/file0" [pid 6753] setpgid(0, 0) = 0 [pid 5029] umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6753] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6753] <... openat resumed>) = 3 [pid 5031] getdents64(3, [pid 5029] <... openat resumed>) = 3 [pid 6753] write(3, "1000", 4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6753] <... write resumed>) = 4 [pid 5031] close(3 [pid 5029] newfstatat(3, "", [pid 6753] close(3 [pid 5031] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] rmdir("./282" [pid 5029] getdents64(3, [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] mkdir("./283", 0777 [pid 5029] umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6753] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6753] symlink("/dev/binderfs", "./binderfs" [pid 5029] newfstatat(AT_FDCWD, "./285/binderfs", [pid 6753] <... symlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./285/binderfs") = 0 [pid 5029] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 6753] memfd_create("syzkaller", 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6753] <... memfd_create resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 6753] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6752] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6750] <... mount resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6750] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6750] chdir("./file0") = 0 [pid 6750] ioctl(4, LOOP_CLR_FD) = 0 [pid 6750] close(4) = 0 [pid 6750] exit_group(0./strace-static-x86_64: Process 6754 attached ) = ? [pid 6754] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6754 [pid 6754] <... set_robust_list resumed>) = 0 [pid 6754] chdir("./283") = 0 [pid 6750] +++ exited with 0 +++ [pid 6754] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6750, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6754] <... prctl resumed>) = 0 [pid 6754] setpgid(0, 0 [pid 6751] <... write resumed>) = 2097152 [pid 6754] <... setpgid resumed>) = 0 [pid 5033] umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6754] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = 0 [pid 6754] <... openat resumed>) = 3 [pid 6753] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6751] munmap(0x7ff0df171000, 138412032 [pid 5033] openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./285/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./285/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./285") = 0 [pid 5029] mkdir("./286", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6755 attached [pid 6754] write(3, "1000", 4 [pid 5033] newfstatat(3, "", [pid 6755] set_robust_list(0x55555635e660, 24 [pid 6754] <... write resumed>) = 4 [pid 6754] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6754] <... close resumed>) = 0 [pid 6754] symlink("/dev/binderfs", "./binderfs" [pid 6755] <... set_robust_list resumed>) = 0 [pid 6755] chdir("./286" [pid 6754] <... symlink resumed>) = 0 [pid 5033] getdents64(3, [pid 6755] <... chdir resumed>) = 0 [pid 6755] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6755] setpgid(0, 0) = 0 [pid 6755] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6754] memfd_create("syzkaller", 0 [pid 6752] <... write resumed>) = 2097152 [pid 6751] <... munmap resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6755] <... openat resumed>) = 3 [pid 6755] write(3, "1000", 4 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6755 [pid 6755] <... write resumed>) = 4 [pid 6755] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6754] <... memfd_create resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./279/binderfs", [pid 6754] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6755] <... close resumed>) = 0 [pid 6754] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./279/binderfs" [pid 6755] symlink("/dev/binderfs", "./binderfs" [pid 6751] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6755] <... symlink resumed>) = 0 [pid 6751] <... openat resumed>) = 4 [pid 5033] <... unlink resumed>) = 0 [pid 6755] memfd_create("syzkaller", 0 [pid 6751] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6755] <... memfd_create resumed>) = 3 [pid 6755] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6752] munmap(0x7ff0df171000, 138412032 [pid 6753] <... write resumed>) = 2097152 [pid 6752] <... munmap resumed>) = 0 [pid 6751] <... ioctl resumed>) = 0 [pid 6751] close(3) = 0 [pid 6751] mkdir("./file0", 0777 [pid 6752] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6752] ioctl(4, LOOP_SET_FD, 3 [pid 6751] <... mkdir resumed>) = 0 [ 244.772588][ T6751] loop3: detected capacity change from 0 to 4096 [pid 6751] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6753] munmap(0x7ff0df171000, 138412032) = 0 [pid 6753] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6753] ioctl(4, LOOP_SET_FD, 3 [pid 6754] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6752] <... ioctl resumed>) = 0 [pid 6752] close(3) = 0 [ 244.820820][ T6752] loop5: detected capacity change from 0 to 4096 [ 244.823420][ T6751] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 244.851252][ T6753] loop1: detected capacity change from 0 to 4096 [pid 6752] mkdir("./file0", 0777) = 0 [pid 6752] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6753] <... ioctl resumed>) = 0 [pid 6753] close(3) = 0 [pid 6753] mkdir("./file0", 0777) = 0 [pid 6753] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6755] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = 0 [pid 6751] <... mount resumed>) = 0 [pid 6751] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5033] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6751] chdir("./file0") = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6751] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] newfstatat(AT_FDCWD, "./279/file0", [pid 6751] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6751] <... close resumed>) = 0 [pid 5033] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6751] exit_group(0 [pid 5033] openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6751] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 4 [pid 6754] <... write resumed>) = 2097152 [pid 5033] newfstatat(4, "", [pid 6751] +++ exited with 0 +++ [ 244.864839][ T6752] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 244.888892][ T6753] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6751, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 6754] munmap(0x7ff0df171000, 138412032 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5033] getdents64(4, [pid 6754] <... munmap resumed>) = 0 [pid 5032] umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6755] <... write resumed>) = 2097152 [pid 6754] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6752] <... mount resumed>) = 0 [pid 5033] getdents64(4, [pid 5032] <... openat resumed>) = 3 [pid 6755] munmap(0x7ff0df171000, 138412032 [pid 6754] <... openat resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(3, "", [pid 6755] <... munmap resumed>) = 0 [pid 6752] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6752] <... openat resumed>) = 3 [pid 6754] ioctl(4, LOOP_SET_FD, 3 [pid 5032] getdents64(3, [pid 6752] chdir("./file0" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... close resumed>) = 0 [pid 5032] umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6753] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./279/file0" [pid 5032] newfstatat(AT_FDCWD, "./286/binderfs", [pid 6753] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6752] <... chdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6753] <... openat resumed>) = 3 [pid 6752] ioctl(4, LOOP_CLR_FD [pid 5032] unlink("./286/binderfs" [pid 6753] chdir("./file0" [pid 5032] <... unlink resumed>) = 0 [pid 6753] <... chdir resumed>) = 0 [pid 6752] <... ioctl resumed>) = 0 [pid 6753] ioctl(4, LOOP_CLR_FD [pid 6755] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6755] <... openat resumed>) = 4 [pid 6755] ioctl(4, LOOP_SET_FD, 3 [pid 6753] <... ioctl resumed>) = 0 [pid 6752] close(4 [pid 6753] close(4) = 0 [pid 5033] getdents64(3, [pid 6753] exit_group(0 [pid 6752] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./279") = 0 [pid 6754] <... ioctl resumed>) = 0 [pid 6754] close(3) = 0 [pid 6754] mkdir("./file0", 0777) = 0 [pid 5033] mkdir("./280", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6754] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 3 [pid 6752] exit_group(0 [pid 6753] <... exit_group resumed>) = ? [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6753] +++ exited with 0 +++ [pid 6752] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 6756 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6756 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6753, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 6756] set_robust_list(0x55555635e660, 24 [pid 5030] umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6756] <... set_robust_list resumed>) = 0 [pid 6755] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6756] chdir("./280" [pid 6755] close(3 [pid 5030] openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6755] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6755] mkdir("./file0", 0777 [pid 5030] newfstatat(3, "", [pid 6755] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6755] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(AT_FDCWD, "./285/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./285/binderfs") = 0 [pid 5030] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6756] <... chdir resumed>) = 0 [pid 6756] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6756] setpgid(0, 0) = 0 [pid 6756] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6756] write(3, "1000", 4) = 4 [pid 6756] close(3) = 0 [ 244.982628][ T6754] loop2: detected capacity change from 0 to 4096 [ 244.998782][ T6755] loop0: detected capacity change from 0 to 4096 [ 245.018893][ T6754] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6756] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6752] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6752, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5034] umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6756] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6756] <... memfd_create resumed>) = 3 [pid 5034] getdents64(3, [pid 6756] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./277/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./277/binderfs") = 0 [pid 5034] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6756] <... mmap resumed>) = 0x7ff0df171000 [ 245.046358][ T6755] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6754] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6754] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6754] chdir("./file0") = 0 [pid 6754] ioctl(4, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = 0 [pid 6754] <... ioctl resumed>) = 0 [pid 5034] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6754] close(4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./277/file0", [pid 6754] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6754] exit_group(0 [pid 5034] umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6754] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./286/file0", [pid 5030] <... umount2 resumed>) = 0 [pid 6754] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 4 [pid 5032] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6754, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./285/file0", [pid 5032] openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] newfstatat(4, "", [pid 5032] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(4, "", [pid 5030] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] getdents64(4, [pid 5030] openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] close(4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", [pid 5034] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] rmdir("./277/file0" [pid 5031] getdents64(3, [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./283/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./283/binderfs") = 0 [pid 5031] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./277" [pid 5032] getdents64(4, [pid 5030] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] close(4 [pid 5030] newfstatat(4, "", [pid 5032] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] rmdir("./286/file0" [pid 5030] getdents64(4, [pid 5034] mkdir("./278", 0777) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6755] <... mount resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] getdents64(4, [pid 6755] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6755] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./285/file0" [pid 5032] getdents64(3, [pid 5034] <... openat resumed>) = 3 [pid 6755] chdir("./file0" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6755] <... chdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6755] ioctl(4, LOOP_CLR_FD [pid 5034] close(3 [pid 6755] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] close(3 [pid 6755] close(4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6755] <... close resumed>) = 0 [pid 6755] exit_group(0 [pid 5032] <... close resumed>) = 0 [pid 6756] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6755] <... exit_group resumed>) = ? [pid 5032] rmdir("./286" [pid 5030] getdents64(3, ./strace-static-x86_64: Process 6757 attached [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6757] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6757 [pid 6757] <... set_robust_list resumed>) = 0 [pid 6757] chdir("./278") = 0 [pid 6755] +++ exited with 0 +++ [pid 5032] mkdir("./287", 0777 [pid 5030] close(3 [pid 6757] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... close resumed>) = 0 [pid 6757] <... prctl resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6755, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5030] rmdir("./285" [pid 6757] setpgid(0, 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6757] <... setpgid resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6757] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... rmdir resumed>) = 0 [pid 6757] <... openat resumed>) = 3 [pid 6757] write(3, "1000", 4) = 4 [pid 6757] close(3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] mkdir("./286", 0777 [pid 5029] umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6757] <... close resumed>) = 0 [pid 6757] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6757] <... symlink resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 6757] memfd_create("syzkaller", 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] close(3 [pid 5029] umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6757] <... memfd_create resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6757] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] newfstatat(AT_FDCWD, "./286/binderfs", [pid 6757] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] unlink("./286/binderfs") = 0 ./strace-static-x86_64: Process 6758 attached [pid 5031] <... umount2 resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6758] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6758 [pid 5031] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 6758] <... set_robust_list resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./283/file0", [pid 5030] <... close resumed>) = 0 [pid 6758] chdir("./287" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6758] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6758] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... openat resumed>) = 4 [pid 6758] <... prctl resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6759 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, ./strace-static-x86_64: Process 6759 attached [pid 6759] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6759] chdir("./286" [pid 6758] setpgid(0, 0 [pid 5031] getdents64(4, [pid 6758] <... setpgid resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6758] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] close(4) = 0 [pid 5031] rmdir("./283/file0" [pid 6759] <... chdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6758] <... openat resumed>) = 3 [pid 5031] getdents64(3, [pid 6758] write(3, "1000", 4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6759] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6759] setpgid(0, 0) = 0 [pid 6759] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6756] <... write resumed>) = 2097152 [pid 6759] write(3, "1000", 4 [pid 6758] <... write resumed>) = 4 [pid 5031] close(3 [pid 6758] close(3 [pid 5031] <... close resumed>) = 0 [pid 6758] <... close resumed>) = 0 [pid 6758] symlink("/dev/binderfs", "./binderfs" [pid 6759] <... write resumed>) = 4 [pid 6759] close(3) = 0 [pid 6758] <... symlink resumed>) = 0 [pid 6759] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6758] memfd_create("syzkaller", 0 [pid 5031] rmdir("./283" [pid 6759] memfd_create("syzkaller", 0) = 3 [pid 6759] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./284", 0777 [pid 6758] <... memfd_create resumed>) = 3 [pid 6756] munmap(0x7ff0df171000, 138412032 [pid 6758] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6756] <... munmap resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6757] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6756] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6756] ioctl(4, LOOP_SET_FD, 3 [pid 6758] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... umount2 resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./286/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... openat resumed>) = 4 [pid 5031] close(3 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] getdents64(4, [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6760 attached [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6760] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6760 [pid 5029] getdents64(4, [pid 6760] <... set_robust_list resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6760] chdir("./284" [pid 5029] close(4 [pid 6756] <... ioctl resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6760] <... chdir resumed>) = 0 [pid 5029] rmdir("./286/file0" [pid 6760] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6756] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6760] <... prctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6760] setpgid(0, 0 [pid 6756] <... close resumed>) = 0 [pid 5029] close(3 [ 245.312115][ T6756] loop4: detected capacity change from 0 to 4096 [pid 6756] mkdir("./file0", 0777) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./286") = 0 [pid 6756] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5029] mkdir("./287", 0777 [pid 6760] <... setpgid resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6760] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6758] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 6760] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6760] write(3, "1000", 4 [pid 6759] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6760] <... write resumed>) = 4 [pid 6757] <... write resumed>) = 2097152 [pid 5029] <... close resumed>) = 0 [pid 6760] close(3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6757] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 6761 attached [pid 6760] <... close resumed>) = 0 [pid 6760] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6761 [pid 6761] set_robust_list(0x55555635e660, 24) = 0 [pid 6761] chdir("./287" [pid 6760] <... symlink resumed>) = 0 [pid 6761] <... chdir resumed>) = 0 [pid 6757] <... munmap resumed>) = 0 [pid 6761] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6760] memfd_create("syzkaller", 0 [pid 6761] <... prctl resumed>) = 0 [pid 6760] <... memfd_create resumed>) = 3 [pid 6761] setpgid(0, 0 [pid 6760] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [ 245.375559][ T6756] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6757] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6761] <... setpgid resumed>) = 0 [pid 6760] <... mmap resumed>) = 0x7ff0df171000 [pid 6757] <... openat resumed>) = 4 [pid 6761] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6757] ioctl(4, LOOP_SET_FD, 3 [pid 6758] <... write resumed>) = 2097152 [pid 6756] <... mount resumed>) = 0 [pid 6758] munmap(0x7ff0df171000, 138412032 [pid 6761] write(3, "1000", 4) = 4 [pid 6761] close(3) = 0 [pid 6761] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6761] memfd_create("syzkaller", 0 [pid 6756] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6756] chdir("./file0") = 0 [pid 6756] ioctl(4, LOOP_CLR_FD [pid 6761] <... memfd_create resumed>) = 3 [pid 6756] <... ioctl resumed>) = 0 [pid 6761] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6758] <... munmap resumed>) = 0 [pid 6757] <... ioctl resumed>) = 0 [pid 6756] close(4) = 0 [pid 6757] close(3) = 0 [pid 6756] exit_group(0 [pid 6757] mkdir("./file0", 0777 [pid 6759] <... write resumed>) = 2097152 [pid 6757] <... mkdir resumed>) = 0 [pid 6757] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6756] <... exit_group resumed>) = ? [pid 6758] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6756] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6756, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6758] <... openat resumed>) = 4 [ 245.447886][ T6757] loop5: detected capacity change from 0 to 4096 [ 245.484323][ T6757] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6759] munmap(0x7ff0df171000, 138412032 [pid 6758] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./280/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./280/binderfs") = 0 [pid 5033] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6759] <... munmap resumed>) = 0 [pid 6760] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6759] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6758] <... ioctl resumed>) = 0 [ 245.484458][ T6758] loop3: detected capacity change from 0 to 4096 [pid 6758] close(3 [pid 6759] <... openat resumed>) = 4 [pid 6758] <... close resumed>) = 0 [pid 6759] ioctl(4, LOOP_SET_FD, 3 [pid 6758] mkdir("./file0", 0777) = 0 [pid 6758] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./280/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6759] <... ioctl resumed>) = 0 [pid 6759] close(3) = 0 [pid 6759] mkdir("./file0", 0777 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 6759] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6757] <... mount resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 6759] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6757] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./280/file0") = 0 [ 245.521877][ T6759] loop1: detected capacity change from 0 to 4096 [ 245.541247][ T6758] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6757] <... openat resumed>) = 3 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./280" [pid 6757] chdir("./file0" [pid 5033] <... rmdir resumed>) = 0 [pid 6757] <... chdir resumed>) = 0 [pid 6757] ioctl(4, LOOP_CLR_FD) = 0 [pid 6757] close(4) = 0 [pid 5033] mkdir("./281", 0777) = 0 [pid 6761] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6757] exit_group(0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6757] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6760] <... write resumed>) = 2097152 [pid 6757] +++ exited with 0 +++ [pid 5033] <... ioctl resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6757, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6760] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 6760] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6762 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6760] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6762 attached ) = -1 EINVAL (Invalid argument) [pid 6762] set_robust_list(0x55555635e660, 24 [pid 6760] <... openat resumed>) = 4 [pid 5034] newfstatat(AT_FDCWD, "./278/binderfs", [pid 6762] <... set_robust_list resumed>) = 0 [pid 6760] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 245.565972][ T6759] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6762] chdir("./281" [pid 5034] unlink("./278/binderfs" [pid 6762] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6762] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6762] <... prctl resumed>) = 0 [pid 6762] setpgid(0, 0) = 0 [pid 6762] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6762] write(3, "1000", 4) = 4 [pid 6762] close(3) = 0 [pid 6761] <... write resumed>) = 2097152 [pid 6760] <... ioctl resumed>) = 0 [pid 6762] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6761] munmap(0x7ff0df171000, 138412032 [pid 6760] close(3 [pid 6758] <... mount resumed>) = 0 [pid 6762] memfd_create("syzkaller", 0 [pid 6760] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6758] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6760] mkdir("./file0", 0777 [pid 6758] <... openat resumed>) = 3 [pid 6760] <... mkdir resumed>) = 0 [pid 6758] chdir("./file0" [pid 5034] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6761] <... munmap resumed>) = 0 [pid 6760] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6758] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 245.610594][ T6760] loop2: detected capacity change from 0 to 4096 [pid 6758] ioctl(4, LOOP_CLR_FD [pid 5034] newfstatat(AT_FDCWD, "./278/file0", [pid 6762] <... memfd_create resumed>) = 3 [pid 6761] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6758] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6762] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6761] <... openat resumed>) = 4 [pid 6758] close(4 [pid 5034] umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6762] <... mmap resumed>) = 0x7ff0df171000 [pid 6758] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6758] exit_group(0) = ? [pid 5034] openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6758] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./278/file0" [pid 6761] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6761] <... ioctl resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6758, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./278") = 0 [pid 5032] umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./279", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6761] close(3 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] getdents64(3, [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6761] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6761] mkdir("./file0", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6763 attached [pid 5032] newfstatat(AT_FDCWD, "./287/binderfs", [pid 6763] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6763 [pid 6763] <... set_robust_list resumed>) = 0 [pid 6763] chdir("./279" [pid 6761] <... mkdir resumed>) = 0 [pid 6763] <... chdir resumed>) = 0 [pid 6763] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6763] setpgid(0, 0) = 0 [pid 6763] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] unlink("./287/binderfs" [pid 6763] <... openat resumed>) = 3 [pid 6763] write(3, "1000", 4 [pid 5032] <... unlink resumed>) = 0 [pid 6763] <... write resumed>) = 4 [pid 6761] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 245.654095][ T6760] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 245.674927][ T6761] loop0: detected capacity change from 0 to 4096 [pid 5032] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6763] close(3) = 0 [pid 6763] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6763] memfd_create("syzkaller", 0) = 3 [pid 6763] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6759] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6762] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6759] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6759] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./287/file0", [pid 6759] chdir("./file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6759] <... chdir resumed>) = 0 [pid 5032] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6760] <... mount resumed>) = 0 [pid 6759] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6760] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6760] <... openat resumed>) = 3 [pid 6760] chdir("./file0") = 0 [pid 6760] ioctl(4, LOOP_CLR_FD) = 0 [pid 6760] close(4) = 0 [pid 6760] exit_group(0 [pid 6759] <... ioctl resumed>) = 0 [ 245.717249][ T6761] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6760] <... exit_group resumed>) = ? [pid 6759] close(4) = 0 [pid 5032] <... openat resumed>) = 4 [pid 6760] +++ exited with 0 +++ [pid 6759] exit_group(0 [pid 5032] newfstatat(4, "", [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6760, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6761] <... mount resumed>) = 0 [pid 6759] <... exit_group resumed>) = ? [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5032] getdents64(4, [pid 5031] <... restart_syscall resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(4 [pid 6759] +++ exited with 0 +++ [pid 5032] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6759, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6761] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] rmdir("./287/file0" [pid 5031] openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6761] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... restart_syscall resumed>) = 0 [pid 6761] chdir("./file0" [pid 5032] getdents64(3, [pid 5031] newfstatat(3, "", [pid 6761] <... chdir resumed>) = 0 [pid 6761] ioctl(4, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6761] <... ioctl resumed>) = 0 [pid 5032] close(3 [pid 5030] umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6761] close(4 [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6761] <... close resumed>) = 0 [pid 5032] rmdir("./287" [pid 5030] openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6761] exit_group(0 [pid 5030] <... openat resumed>) = 3 [pid 6761] <... exit_group resumed>) = ? [pid 5032] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] newfstatat(3, "", [pid 6761] +++ exited with 0 +++ [pid 5032] mkdir("./288", 0777 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6762] <... write resumed>) = 2097152 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6761, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6763] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] newfstatat(AT_FDCWD, "./284/binderfs", [pid 5030] umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] unlink("./284/binderfs" [pid 5030] newfstatat(AT_FDCWD, "./286/binderfs", [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5031] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./286/binderfs" [pid 5029] newfstatat(3, "", [pid 6762] munmap(0x7ff0df171000, 138412032 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6762] <... munmap resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./287/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./287/binderfs") = 0 [pid 6762] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 6762] <... openat resumed>) = 4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6764 attached [pid 6764] set_robust_list(0x55555635e660, 24) = 0 [pid 6764] chdir("./288") = 0 [pid 6764] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6764] setpgid(0, 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6764 [pid 6764] <... setpgid resumed>) = 0 [pid 6764] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6762] ioctl(4, LOOP_SET_FD, 3 [pid 6764] <... openat resumed>) = 3 [pid 6764] write(3, "1000", 4 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5031] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6764] <... write resumed>) = 4 [pid 5030] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./286/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6764] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6764] <... close resumed>) = 0 [pid 6764] symlink("/dev/binderfs", "./binderfs" [pid 5031] newfstatat(AT_FDCWD, "./284/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(4 [pid 5031] openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] rmdir("./286/file0" [pid 6764] <... symlink resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./286" [pid 6763] <... write resumed>) = 2097152 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5030] mkdir("./287", 0777 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... mkdir resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... close resumed>) = 0 [pid 6764] memfd_create("syzkaller", 0 [pid 6763] munmap(0x7ff0df171000, 138412032 [pid 6762] <... ioctl resumed>) = 0 [pid 5031] rmdir("./284/file0" [pid 5030] <... openat resumed>) = 3 [pid 6762] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6764] <... memfd_create resumed>) = 3 [pid 6763] <... munmap resumed>) = 0 [pid 6762] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... ioctl resumed>) = 0 [ 245.894462][ T6762] loop4: detected capacity change from 0 to 4096 [pid 6762] mkdir("./file0", 0777 [pid 5030] close(3 [pid 6764] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6762] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] <... close resumed>) = 0 [pid 6764] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] close(3 [pid 6763] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... close resumed>) = 0 ./strace-static-x86_64: Process 6765 attached [pid 6762] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6765 [pid 6765] set_robust_list(0x55555635e660, 24) = 0 [pid 6765] chdir("./287") = 0 [pid 6763] <... openat resumed>) = 4 [pid 5031] rmdir("./284" [pid 5029] <... umount2 resumed>) = 0 [pid 6765] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6763] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6765] <... prctl resumed>) = 0 [pid 6765] setpgid(0, 0) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6765] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6765] write(3, "1000", 4 [pid 6763] <... ioctl resumed>) = 0 [pid 5031] mkdir("./285", 0777 [pid 5029] newfstatat(AT_FDCWD, "./287/file0", [pid 6765] <... write resumed>) = 4 [pid 6765] close(3) = 0 [pid 6765] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6765] memfd_create("syzkaller", 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6765] <... memfd_create resumed>) = 3 [pid 5029] getdents64(4, [pid 6765] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6764] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6763] close(3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6763] <... close resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] getdents64(4, [pid 6763] mkdir("./file0", 0777 [pid 5031] close(3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6763] <... mkdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] close(4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... close resumed>) = 0 [ 245.963731][ T6762] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 245.984327][ T6763] loop5: detected capacity change from 0 to 4096 [pid 5029] rmdir("./287/file0"./strace-static-x86_64: Process 6766 attached [pid 6763] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] <... rmdir resumed>) = 0 [pid 6766] set_robust_list(0x55555635e660, 24) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6766] chdir("./285" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6766 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./287") = 0 [pid 5029] mkdir("./288", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 6766] <... chdir resumed>) = 0 [pid 6766] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6766] <... prctl resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6766] setpgid(0, 0) = 0 [pid 5029] close(3 [pid 6766] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... close resumed>) = 0 [pid 6766] <... openat resumed>) = 3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6767 attached [pid 6766] write(3, "1000", 4 [pid 6764] <... write resumed>) = 2097152 [pid 6762] <... mount resumed>) = 0 [pid 6766] <... write resumed>) = 4 [pid 6766] close(3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6767 [pid 6762] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6766] <... close resumed>) = 0 [pid 6766] symlink("/dev/binderfs", "./binderfs" [pid 6762] <... openat resumed>) = 3 [pid 6762] chdir("./file0") = 0 [pid 6762] ioctl(4, LOOP_CLR_FD [pid 6766] <... symlink resumed>) = 0 [pid 6767] set_robust_list(0x55555635e660, 24 [pid 6762] <... ioctl resumed>) = 0 [ 246.044510][ T6763] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6762] close(4 [pid 6767] <... set_robust_list resumed>) = 0 [pid 6766] memfd_create("syzkaller", 0 [pid 6765] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6764] munmap(0x7ff0df171000, 138412032 [pid 6762] <... close resumed>) = 0 [pid 6767] chdir("./288" [pid 6762] exit_group(0 [pid 6767] <... chdir resumed>) = 0 [pid 6762] <... exit_group resumed>) = ? [pid 6767] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6766] <... memfd_create resumed>) = 3 [pid 6764] <... munmap resumed>) = 0 [pid 6762] +++ exited with 0 +++ [pid 6767] <... prctl resumed>) = 0 [pid 6766] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6762, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6767] setpgid(0, 0 [pid 6766] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./281/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./281/binderfs") = 0 [pid 5033] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6767] <... setpgid resumed>) = 0 [pid 6767] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6764] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6767] <... openat resumed>) = 3 [pid 6764] <... openat resumed>) = 4 [pid 6767] write(3, "1000", 4 [pid 6764] ioctl(4, LOOP_SET_FD, 3 [pid 6767] <... write resumed>) = 4 [pid 6767] close(3) = 0 [pid 6764] <... ioctl resumed>) = 0 [pid 6767] symlink("/dev/binderfs", "./binderfs" [pid 6764] close(3 [pid 6767] <... symlink resumed>) = 0 [pid 6767] memfd_create("syzkaller", 0 [pid 6764] <... close resumed>) = 0 [pid 6764] mkdir("./file0", 0777) = 0 [pid 6764] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6767] <... memfd_create resumed>) = 3 [pid 6767] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6765] <... write resumed>) = 2097152 [pid 6767] <... mmap resumed>) = 0x7ff0df171000 [pid 6765] munmap(0x7ff0df171000, 138412032) = 0 [ 246.127385][ T6764] loop3: detected capacity change from 0 to 4096 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./281/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6765] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./281/file0" [pid 6765] <... openat resumed>) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 6765] ioctl(4, LOOP_SET_FD, 3 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./281") = 0 [pid 5033] mkdir("./282", 0777 [pid 6766] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6768 attached , child_tidptr=0x55555635e650) = 6768 [pid 6768] set_robust_list(0x55555635e660, 24 [pid 6765] <... ioctl resumed>) = 0 [pid 6768] <... set_robust_list resumed>) = 0 [pid 6768] chdir("./282" [pid 6765] close(3 [pid 6768] <... chdir resumed>) = 0 [pid 6765] <... close resumed>) = 0 [pid 6768] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6765] mkdir("./file0", 0777 [pid 6763] <... mount resumed>) = 0 [pid 6763] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6768] <... prctl resumed>) = 0 [pid 6763] <... openat resumed>) = 3 [pid 6768] setpgid(0, 0 [pid 6763] chdir("./file0" [pid 6768] <... setpgid resumed>) = 0 [pid 6763] <... chdir resumed>) = 0 [pid 6763] ioctl(4, LOOP_CLR_FD) = 0 [pid 6763] close(4) = 0 [pid 6763] exit_group(0 [pid 6768] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6765] <... mkdir resumed>) = 0 [pid 6763] <... exit_group resumed>) = ? [pid 6768] <... openat resumed>) = 3 [pid 6768] write(3, "1000", 4 [pid 6765] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6763] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6763, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [ 246.183355][ T6764] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 246.202477][ T6765] loop1: detected capacity change from 0 to 4096 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6768] <... write resumed>) = 4 [pid 5034] <... restart_syscall resumed>) = 0 [pid 6768] close(3) = 0 [pid 6768] symlink("/dev/binderfs", "./binderfs" [pid 5034] umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6768] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6768] memfd_create("syzkaller", 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6768] <... memfd_create resumed>) = 3 [pid 5034] umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6768] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6768] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] newfstatat(AT_FDCWD, "./279/binderfs", [pid 6767] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6766] <... write resumed>) = 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./279/binderfs") = 0 [pid 6766] munmap(0x7ff0df171000, 138412032) = 0 [pid 6764] <... mount resumed>) = 0 [pid 5034] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6766] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6764] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6766] <... openat resumed>) = 4 [pid 6764] <... openat resumed>) = 3 [pid 6766] ioctl(4, LOOP_SET_FD, 3 [pid 6764] chdir("./file0") = 0 [ 246.262242][ T6765] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6764] ioctl(4, LOOP_CLR_FD [pid 6766] <... ioctl resumed>) = 0 [pid 6764] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6766] close(3 [pid 6764] close(4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6766] <... close resumed>) = 0 [pid 6764] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./279/file0", [pid 6767] <... write resumed>) = 2097152 [pid 6766] mkdir("./file0", 0777 [pid 6764] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6764] <... exit_group resumed>) = ? [pid 5034] umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6766] <... mkdir resumed>) = 0 [pid 6764] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 4 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6764, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5034] newfstatat(4, "", [pid 6767] munmap(0x7ff0df171000, 138412032 [pid 6766] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6765] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6765] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6765] <... openat resumed>) = 3 [ 246.315879][ T6766] loop2: detected capacity change from 0 to 4096 [pid 5032] openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6768] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./279/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./279" [pid 6765] chdir("./file0" [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6765] <... chdir resumed>) = 0 [pid 5034] mkdir("./280", 0777 [pid 5032] newfstatat(3, "", [pid 6765] ioctl(4, LOOP_CLR_FD [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6765] <... ioctl resumed>) = 0 [pid 5032] getdents64(3, [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6765] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6767] <... munmap resumed>) = 0 [pid 6765] <... close resumed>) = 0 [pid 6767] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6765] exit_group(0 [pid 5032] umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6767] <... openat resumed>) = 4 [pid 6765] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6767] ioctl(4, LOOP_SET_FD, 3 [pid 6765] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./288/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6765, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6767] <... ioctl resumed>) = 0 [pid 6766] <... mount resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] unlink("./288/binderfs" [pid 6766] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6766] <... openat resumed>) = 3 [pid 5034] close(3 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6767] close(3 [pid 6766] chdir("./file0" [pid 5032] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6767] <... close resumed>) = 0 [pid 6766] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 6769 attached [pid 6767] mkdir("./file0", 0777 [pid 6766] ioctl(4, LOOP_CLR_FD [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6769 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6767] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6766] <... ioctl resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6766] close(4 [pid 6769] set_robust_list(0x55555635e660, 24 [pid 6767] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6766] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6769] <... set_robust_list resumed>) = 0 [pid 6766] exit_group(0 [pid 6769] chdir("./280" [pid 6766] <... exit_group resumed>) = ? [pid 5030] getdents64(3, [pid 6769] <... chdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./287/binderfs", [pid 6769] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6766] +++ exited with 0 +++ [ 246.367170][ T6766] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 246.391863][ T6767] loop0: detected capacity change from 0 to 4096 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./287/binderfs") = 0 [pid 5030] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6769] <... prctl resumed>) = 0 [pid 6769] setpgid(0, 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6766, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6769] <... setpgid resumed>) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6769] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... restart_syscall resumed>) = 0 [pid 6769] <... openat resumed>) = 3 [pid 6768] <... write resumed>) = 2097152 [pid 6769] write(3, "1000", 4 [pid 5031] umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6768] munmap(0x7ff0df171000, 138412032 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6769] <... write resumed>) = 4 [pid 6768] <... munmap resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6769] close(3 [pid 5031] <... openat resumed>) = 3 [pid 6769] <... close resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6769] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6769] memfd_create("syzkaller", 0 [pid 6768] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5030] <... umount2 resumed>) = 0 [pid 6769] <... memfd_create resumed>) = 3 [pid 6768] <... openat resumed>) = 4 [pid 6769] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6769] <... mmap resumed>) = 0x7ff0df171000 [pid 6768] ioctl(4, LOOP_SET_FD, 3 [pid 6767] <... mount resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./288/file0", [pid 5031] umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./287/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 246.440224][ T6767] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6767] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6767] <... openat resumed>) = 3 [pid 5032] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./285/binderfs", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6768] <... ioctl resumed>) = 0 [pid 6767] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6768] close(3 [pid 6767] <... chdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] unlink("./285/binderfs" [pid 5030] <... openat resumed>) = 4 [pid 6768] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6768] mkdir("./file0", 0777 [pid 6767] ioctl(4, LOOP_CLR_FD [pid 5032] newfstatat(4, "", [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 6768] <... mkdir resumed>) = 0 [pid 6767] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6768] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6767] close(4 [pid 5032] getdents64(4, [pid 5030] close(4) = 0 [pid 5030] rmdir("./287/file0" [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6767] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6767] exit_group(0 [pid 5032] getdents64(4, [pid 5030] getdents64(3, [pid 6767] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5030] close(3) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] rmdir("./287" [pid 6767] +++ exited with 0 +++ [pid 5032] rmdir("./288/file0" [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6767, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] mkdir("./288", 0777) = 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] close(3 [pid 5029] getdents64(3, [pid 5032] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(3 [pid 5029] umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./288" [pid 5029] newfstatat(AT_FDCWD, "./288/binderfs", [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] unlink("./288/binderfs") = 0 [ 246.503573][ T6768] loop4: detected capacity change from 0 to 4096 [ 246.534702][ T6768] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] mkdir("./289", 0777 [pid 5029] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6770 attached [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6770 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6768] <... mount resumed>) = 0 ./strace-static-x86_64: Process 6771 attached [pid 6770] set_robust_list(0x55555635e660, 24 [pid 6768] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6771 [pid 6771] set_robust_list(0x55555635e660, 24) = 0 [pid 6771] chdir("./289") = 0 [pid 6771] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6770] <... set_robust_list resumed>) = 0 [pid 6769] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6768] <... openat resumed>) = 3 [pid 5031] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6770] chdir("./288" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6768] chdir("./file0" [pid 6770] <... chdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./285/file0", [pid 6768] <... chdir resumed>) = 0 [pid 6770] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6771] setpgid(0, 0 [pid 6770] <... prctl resumed>) = 0 [pid 6768] ioctl(4, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6771] <... setpgid resumed>) = 0 [pid 6770] setpgid(0, 0 [pid 6768] <... ioctl resumed>) = 0 [pid 5031] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6771] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6770] <... setpgid resumed>) = 0 [pid 6768] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6770] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6768] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6771] <... openat resumed>) = 3 [pid 6768] exit_group(0 [pid 5031] <... openat resumed>) = 4 [pid 6771] write(3, "1000", 4 [pid 6768] <... exit_group resumed>) = ? [pid 5031] newfstatat(4, "", [pid 6770] <... openat resumed>) = 3 [pid 6771] <... write resumed>) = 4 [pid 6771] close(3) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6771] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6770] write(3, "1000", 4 [pid 6768] +++ exited with 0 +++ [pid 5031] getdents64(4, [pid 5029] <... umount2 resumed>) = 0 [pid 6771] memfd_create("syzkaller", 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6768, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6770] <... write resumed>) = 4 [pid 5033] umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6770] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 5033] openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6770] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6771] <... memfd_create resumed>) = 3 [pid 6770] symlink("/dev/binderfs", "./binderfs" [pid 5031] close(4 [pid 5029] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6771] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] newfstatat(3, "", [pid 6771] <... mmap resumed>) = 0x7ff0df171000 [pid 6770] <... symlink resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6770] memfd_create("syzkaller", 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6770] <... memfd_create resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./282/binderfs", [pid 5031] rmdir("./285/file0" [pid 5029] newfstatat(AT_FDCWD, "./288/file0", [pid 6769] <... write resumed>) = 2097152 [pid 6770] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6770] <... mmap resumed>) = 0x7ff0df171000 [pid 6769] munmap(0x7ff0df171000, 138412032 [pid 5033] unlink("./282/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5033] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6769] <... munmap resumed>) = 0 [pid 5029] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] close(3 [pid 5029] <... openat resumed>) = 4 [pid 5031] <... close resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 6769] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] rmdir("./285" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6769] <... openat resumed>) = 4 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6769] ioctl(4, LOOP_SET_FD, 3 [pid 5029] getdents64(4, [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] mkdir("./286", 0777 [pid 5029] close(4 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] rmdir("./288/file0" [pid 5031] <... openat resumed>) = 3 [pid 6769] <... ioctl resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6769] close(3 [pid 5031] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6769] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] close(3 [pid 6769] mkdir("./file0", 0777 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 6772 attached [pid 6769] <... mkdir resumed>) = 0 [pid 5029] rmdir("./288" [pid 6772] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6772 [pid 5029] <... rmdir resumed>) = 0 [pid 6772] <... set_robust_list resumed>) = 0 [pid 6769] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] mkdir("./289", 0777 [ 246.688355][ T6769] loop5: detected capacity change from 0 to 4096 [pid 6772] chdir("./286") = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6772] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6771] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6770] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6772] <... prctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6772] setpgid(0, 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6772] <... setpgid resumed>) = 0 [pid 5029] close(3 [pid 6772] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... close resumed>) = 0 [pid 6772] <... openat resumed>) = 3 [ 246.743204][ T6769] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] newfstatat(AT_FDCWD, "./282/file0", [pid 6772] write(3, "1000", 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6772] <... write resumed>) = 4 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6773 [pid 5033] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6772] close(3 [pid 5033] openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 6773 attached [pid 5033] getdents64(4, [pid 6773] set_robust_list(0x55555635e660, 24 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6773] <... set_robust_list resumed>) = 0 [pid 5033] close(4 [pid 6773] chdir("./289" [pid 6772] <... close resumed>) = 0 [pid 6769] <... mount resumed>) = 0 [pid 6772] symlink("/dev/binderfs", "./binderfs" [pid 6773] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6773] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6772] <... symlink resumed>) = 0 [pid 5033] rmdir("./282/file0" [pid 6773] <... prctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6769] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6773] setpgid(0, 0 [pid 6769] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 6773] <... setpgid resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6773] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] close(3 [pid 6772] memfd_create("syzkaller", 0 [pid 6769] chdir("./file0" [pid 6772] <... memfd_create resumed>) = 3 [pid 6769] <... chdir resumed>) = 0 [pid 6769] ioctl(4, LOOP_CLR_FD [pid 6773] <... openat resumed>) = 3 [pid 6772] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6769] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6771] <... write resumed>) = 2097152 [pid 6769] close(4 [pid 6772] <... mmap resumed>) = 0x7ff0df171000 [pid 6769] <... close resumed>) = 0 [pid 5033] rmdir("./282" [pid 6773] write(3, "1000", 4 [pid 6769] exit_group(0 [pid 5033] <... rmdir resumed>) = 0 [pid 6773] <... write resumed>) = 4 [pid 6771] munmap(0x7ff0df171000, 138412032 [pid 6770] <... write resumed>) = 2097152 [pid 6769] <... exit_group resumed>) = ? [pid 6769] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6769, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6773] close(3 [pid 5033] mkdir("./283", 0777 [pid 6773] <... close resumed>) = 0 [pid 6770] munmap(0x7ff0df171000, 138412032 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6773] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6771] <... munmap resumed>) = 0 [pid 5034] umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6773] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6770] <... munmap resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 6771] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] close(3 [pid 6770] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6771] <... openat resumed>) = 4 [pid 6770] <... openat resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 6771] ioctl(4, LOOP_SET_FD, 3 [pid 6770] ioctl(4, LOOP_SET_FD, 3 [pid 5034] getdents64(3, [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./280/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6773] <... memfd_create resumed>) = 3 [pid 5034] unlink("./280/binderfs") = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6774 [pid 6773] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] <... mmap resumed>) = 0x7ff0df171000 ./strace-static-x86_64: Process 6774 attached [pid 6774] set_robust_list(0x55555635e660, 24 [pid 6771] <... ioctl resumed>) = 0 [pid 6774] <... set_robust_list resumed>) = 0 [pid 6771] close(3 [pid 6774] chdir("./283" [pid 6771] <... close resumed>) = 0 [pid 6771] mkdir("./file0", 0777 [pid 6774] <... chdir resumed>) = 0 [pid 6774] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6772] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6771] <... mkdir resumed>) = 0 [pid 6770] <... ioctl resumed>) = 0 [pid 6774] <... prctl resumed>) = 0 [pid 6774] setpgid(0, 0 [pid 6771] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6774] <... setpgid resumed>) = 0 [pid 6770] close(3 [pid 6774] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6770] <... close resumed>) = 0 [pid 6774] <... openat resumed>) = 3 [pid 6770] mkdir("./file0", 0777 [pid 6774] write(3, "1000", 4 [pid 6770] <... mkdir resumed>) = 0 [pid 6774] <... write resumed>) = 4 [pid 6770] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6774] close(3) = 0 [ 246.861973][ T6770] loop1: detected capacity change from 0 to 4096 [ 246.873527][ T6771] loop3: detected capacity change from 0 to 4096 [ 246.892462][ T6771] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6774] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6774] memfd_create("syzkaller", 0) = 3 [pid 6774] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6772] <... write resumed>) = 2097152 [pid 6772] munmap(0x7ff0df171000, 138412032) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6772] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6771] <... mount resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./280/file0", [pid 6771] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 246.919729][ T6770] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6772] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6771] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6771] chdir("./file0" [pid 5034] openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6771] <... chdir resumed>) = 0 [pid 6771] ioctl(4, LOOP_CLR_FD) = 0 [pid 6771] close(4 [pid 5034] <... openat resumed>) = 4 [pid 6771] <... close resumed>) = 0 [pid 6773] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6771] exit_group(0 [pid 6770] <... mount resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 6771] <... exit_group resumed>) = ? [pid 6770] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6771] +++ exited with 0 +++ [pid 6772] <... ioctl resumed>) = 0 [pid 6772] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6771, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6772] <... close resumed>) = 0 [pid 6772] mkdir("./file0", 0777) = 0 [pid 6770] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6772] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6770] chdir("./file0" [pid 5034] getdents64(4, [pid 6774] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6770] <... chdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6770] ioctl(4, LOOP_CLR_FD [pid 5034] getdents64(4, [pid 6770] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6770] close(4 [pid 5034] close(4 [pid 5032] openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6770] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./280/file0" [pid 6770] exit_group(0) = ? [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [ 246.962350][ T6772] loop2: detected capacity change from 0 to 4096 [ 246.999177][ T6772] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] getdents64(3, [pid 5032] newfstatat(3, "", [pid 6770] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6770, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] close(3 [pid 5032] getdents64(3, [pid 5034] <... close resumed>) = 0 [pid 5030] umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] rmdir("./280" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./281", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./288/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./288/binderfs") = 0 [pid 5030] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] <... write resumed>) = 2097152 [pid 5032] newfstatat(AT_FDCWD, "./289/binderfs", [pid 6773] munmap(0x7ff0df171000, 138412032) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6774] <... write resumed>) = 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6773] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5030] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] ioctl(4, LOOP_SET_FD, 3 [pid 6772] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6774] munmap(0x7ff0df171000, 138412032 [pid 6772] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] unlink("./289/binderfs" [pid 6774] <... munmap resumed>) = 0 [pid 6773] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./288/file0", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6772] <... openat resumed>) = 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] close(3 [pid 6772] chdir("./file0" [pid 5034] close(3 [pid 6774] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6773] <... close resumed>) = 0 [pid 6772] <... chdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6773] mkdir("./file0", 0777 [pid 6772] ioctl(4, LOOP_CLR_FD./strace-static-x86_64: Process 6775 attached [pid 6773] <... mkdir resumed>) = 0 [pid 6772] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6775] set_robust_list(0x55555635e660, 24 [pid 6772] close(4 [pid 5030] newfstatat(4, "", [pid 6775] <... set_robust_list resumed>) = 0 [pid 6775] chdir("./281" [pid 6772] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6775] <... chdir resumed>) = 0 [pid 6772] exit_group(0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6775 [pid 6773] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6772] <... exit_group resumed>) = ? [pid 5030] getdents64(4, [pid 6775] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6774] <... openat resumed>) = 4 [pid 6775] setpgid(0, 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6775] <... setpgid resumed>) = 0 [pid 6774] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, [pid 6775] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6775] write(3, "1000", 4) = 4 [pid 6775] close(3) = 0 [pid 6775] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6775] memfd_create("syzkaller", 0) = 3 [pid 6775] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] close(4) = 0 [ 247.093676][ T6773] loop0: detected capacity change from 0 to 4096 [ 247.125179][ T6773] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] rmdir("./288/file0" [pid 6772] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6772, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] <... rmdir resumed>) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5030] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./288" [pid 5031] newfstatat(AT_FDCWD, "./286/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./286/binderfs" [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] mkdir("./289", 0777 [pid 5031] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6774] <... ioctl resumed>) = 0 [pid 6774] close(3) = 0 [pid 6774] mkdir("./file0", 0777) = 0 [pid 6774] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6773] <... mount resumed>) = 0 [ 247.146206][ T6774] loop4: detected capacity change from 0 to 4096 [pid 6773] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6773] <... openat resumed>) = 3 [pid 5032] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] chdir("./file0" [pid 5031] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] <... chdir resumed>) = 0 [pid 6773] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6773] <... ioctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./286/file0", [pid 6773] close(4 [pid 5032] newfstatat(AT_FDCWD, "./289/file0", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6773] <... close resumed>) = 0 [pid 5032] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6773] exit_group(0 [pid 5032] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 4 [pid 6773] <... exit_group resumed>) = ? [pid 5032] newfstatat(4, "", [pid 5031] newfstatat(4, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5031] getdents64(4, [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5032] close(4 [pid 5031] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] rmdir("./286/file0" [pid 5032] rmdir("./289/file0") = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(3, [pid 5032] close(3) = 0 [pid 5032] rmdir("./289" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] close(3 [pid 5032] mkdir("./290", 0777 [pid 5031] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] rmdir("./286") = 0 [pid 6775] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] mkdir("./287", 0777 [pid 6773] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6773, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] <... mkdir resumed>) = 0 [pid 5029] umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6776 [pid 5029] getdents64(3, ./strace-static-x86_64: Process 6776 attached [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 247.196135][ T6774] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6776] set_robust_list(0x55555635e660, 24 [pid 5031] <... openat resumed>) = 3 [pid 5029] umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./289/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./289/binderfs") = 0 [pid 5029] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6776] <... set_robust_list resumed>) = 0 [pid 6776] chdir("./290") = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6776] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] <... ioctl resumed>) = 0 [pid 5031] close(3) = 0 [pid 6776] setpgid(0, 0) = 0 [pid 6776] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6776] <... openat resumed>) = 3 [pid 6776] write(3, "1000", 4) = 4 [pid 6776] close(3) = 0 [pid 6776] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6776] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6777 attached ) = 3 [pid 6777] set_robust_list(0x55555635e660, 24 [pid 6776] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6777] <... set_robust_list resumed>) = 0 [pid 6776] <... mmap resumed>) = 0x7ff0df171000 [pid 6777] chdir("./287") = 0 [pid 6777] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6777] setpgid(0, 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6777 [pid 6777] <... setpgid resumed>) = 0 [pid 6777] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6777] write(3, "1000", 4) = 4 [pid 6777] close(3) = 0 [pid 5030] <... ioctl resumed>) = 0 [pid 6777] symlink("/dev/binderfs", "./binderfs" [pid 6775] <... write resumed>) = 2097152 [pid 6777] <... symlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6775] munmap(0x7ff0df171000, 138412032 [pid 5029] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6777] memfd_create("syzkaller", 0 [pid 6775] <... munmap resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./289/file0", [pid 6777] <... memfd_create resumed>) = 3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6777] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 ./strace-static-x86_64: Process 6778 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6778 [pid 5029] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6778] set_robust_list(0x55555635e660, 24) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6775] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] getdents64(4, [pid 6775] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6775] ioctl(4, LOOP_SET_FD, 3 [pid 5029] getdents64(4, [pid 6778] chdir("./289" [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6778] <... chdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./289/file0" [pid 6778] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6778] <... prctl resumed>) = 0 [pid 5029] close(3) = 0 [pid 6778] setpgid(0, 0) = 0 [pid 5029] rmdir("./289" [pid 6778] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6774] <... mount resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./290", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6774] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6779 [pid 6774] <... openat resumed>) = 3 [pid 6774] chdir("./file0") = 0 [pid 6774] ioctl(4, LOOP_CLR_FD) = 0 [pid 6774] close(4) = 0 [pid 6774] exit_group(0) = ? [pid 6774] +++ exited with 0 +++ ./strace-static-x86_64: Process 6779 attached [pid 6775] <... ioctl resumed>) = 0 [pid 6779] set_robust_list(0x55555635e660, 24 [pid 6778] <... openat resumed>) = 3 [pid 6775] close(3 [pid 6779] <... set_robust_list resumed>) = 0 [pid 6778] write(3, "1000", 4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6774, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 6778] <... write resumed>) = 4 [pid 5033] <... restart_syscall resumed>) = 0 [pid 6778] close(3) = 0 [pid 6778] symlink("/dev/binderfs", "./binderfs" [pid 5033] umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6779] chdir("./290" [pid 6778] <... symlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6779] <... chdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6779] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6775] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 6775] mkdir("./file0", 0777) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6779] <... prctl resumed>) = 0 [pid 5033] getdents64(3, [pid 6779] setpgid(0, 0 [ 247.357572][ T6775] loop5: detected capacity change from 0 to 4096 [pid 6775] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6779] <... setpgid resumed>) = 0 [pid 6778] memfd_create("syzkaller", 0 [pid 5033] umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6779] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6776] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./283/binderfs", [pid 6779] <... openat resumed>) = 3 [pid 6778] <... memfd_create resumed>) = 3 [pid 6779] write(3, "1000", 4 [pid 6778] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6779] <... write resumed>) = 4 [pid 6778] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] unlink("./283/binderfs" [pid 6779] close(3) = 0 [pid 6779] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6779] memfd_create("syzkaller", 0 [pid 6777] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6779] <... memfd_create resumed>) = 3 [pid 6779] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6776] <... write resumed>) = 2097152 [ 247.411075][ T6775] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6776] munmap(0x7ff0df171000, 138412032) = 0 [pid 6776] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6776] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = 0 [pid 6775] <... mount resumed>) = 0 [pid 6775] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6775] chdir("./file0" [pid 5033] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6775] <... chdir resumed>) = 0 [pid 6777] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6775] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./283/file0", [pid 6775] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6777] munmap(0x7ff0df171000, 138412032 [pid 6776] <... ioctl resumed>) = 0 [pid 6775] close(4 [pid 5033] <... openat resumed>) = 4 [pid 6776] close(3 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 6777] <... munmap resumed>) = 0 [pid 6776] <... close resumed>) = 0 [pid 6775] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 6776] mkdir("./file0", 0777 [pid 6775] exit_group(0 [pid 5033] rmdir("./283/file0" [pid 6776] <... mkdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6777] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6776] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] getdents64(3, [ 247.490546][ T6776] loop3: detected capacity change from 0 to 4096 [pid 6777] <... openat resumed>) = 4 [pid 6777] ioctl(4, LOOP_SET_FD, 3 [pid 6775] <... exit_group resumed>) = ? [pid 6775] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6775, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5034] umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./281/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./281/binderfs" [pid 6778] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6777] <... ioctl resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(3 [pid 6777] close(3 [pid 5033] <... close resumed>) = 0 [pid 6777] <... close resumed>) = 0 [pid 5033] rmdir("./283" [pid 6777] mkdir("./file0", 0777 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./284", 0777 [pid 6777] <... mkdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6777] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6779] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6780 attached , child_tidptr=0x55555635e650) = 6780 [pid 6780] set_robust_list(0x55555635e660, 24 [pid 5034] <... umount2 resumed>) = 0 [pid 6780] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6780] chdir("./284") = 0 [pid 5034] newfstatat(AT_FDCWD, "./281/file0", [pid 6780] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6780] <... prctl resumed>) = 0 [pid 6780] setpgid(0, 0 [pid 5034] umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6780] <... setpgid resumed>) = 0 [pid 6780] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6780] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6780] write(3, "1000", 4 [pid 5034] <... openat resumed>) = 4 [ 247.541802][ T6777] loop2: detected capacity change from 0 to 4096 [ 247.550102][ T6776] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 247.573414][ T6777] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6780] <... write resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 6780] close(3) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6780] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6779] <... write resumed>) = 2097152 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 6780] memfd_create("syzkaller", 0 [pid 6779] munmap(0x7ff0df171000, 138412032 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./281/file0" [pid 6780] <... memfd_create resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6780] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6779] <... munmap resumed>) = 0 [pid 5034] getdents64(3, [pid 6780] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 6779] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6778] <... write resumed>) = 2097152 [pid 6777] <... mount resumed>) = 0 [pid 6776] <... mount resumed>) = 0 [pid 6779] <... openat resumed>) = 4 [pid 6777] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6776] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] rmdir("./281" [pid 6779] ioctl(4, LOOP_SET_FD, 3 [pid 6778] munmap(0x7ff0df171000, 138412032 [pid 6777] <... openat resumed>) = 3 [pid 6776] <... openat resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 6777] chdir("./file0" [pid 5034] mkdir("./282", 0777 [pid 6777] <... chdir resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6777] ioctl(4, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6777] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6777] close(4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6777] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6777] exit_group(0 [pid 5034] close(3 [pid 6777] <... exit_group resumed>) = ? [pid 5034] <... close resumed>) = 0 [pid 6777] +++ exited with 0 +++ [pid 6776] chdir("./file0" [pid 6778] <... munmap resumed>) = 0 [pid 6776] <... chdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6777, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6776] ioctl(4, LOOP_CLR_FD) = 0 [pid 6779] <... ioctl resumed>) = 0 [pid 6778] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6776] close(4 [pid 6779] close(3 [pid 6776] <... close resumed>) = 0 [pid 6779] <... close resumed>) = 0 [pid 6779] mkdir("./file0", 0777 [pid 6778] <... openat resumed>) = 4 [pid 6776] exit_group(0 [pid 5031] umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6779] <... mkdir resumed>) = 0 [pid 6778] ioctl(4, LOOP_SET_FD, 3 [pid 6776] <... exit_group resumed>) = ? [pid 6779] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6781 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", ./strace-static-x86_64: Process 6781 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6781] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] getdents64(3, [pid 6781] chdir("./282" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6781] <... chdir resumed>) = 0 [pid 5031] umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6781] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6781] <... prctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./287/binderfs", [pid 6781] setpgid(0, 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6781] <... setpgid resumed>) = 0 [pid 5031] unlink("./287/binderfs" [pid 6781] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6781] <... openat resumed>) = 3 [pid 6781] write(3, "1000", 4) = 4 [pid 6781] close(3) = 0 [pid 6781] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6776] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6776, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 6781] memfd_create("syzkaller", 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6781] <... memfd_create resumed>) = 3 [pid 6781] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6778] <... ioctl resumed>) = 0 [pid 6778] close(3) = 0 [pid 6778] mkdir("./file0", 0777 [ 247.657839][ T6779] loop0: detected capacity change from 0 to 4096 [ 247.688782][ T6778] loop1: detected capacity change from 0 to 4096 [ 247.696299][ T6779] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5032] newfstatat(AT_FDCWD, "./290/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6778] <... mkdir resumed>) = 0 [pid 5032] unlink("./290/binderfs" [pid 6778] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6780] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./287/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./287/file0" [pid 6780] <... write resumed>) = 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 6780] munmap(0x7ff0df171000, 138412032 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 247.751976][ T6778] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5031] close(3 [pid 6781] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6780] <... munmap resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./287") = 0 [pid 5031] mkdir("./288", 0777 [pid 6780] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6780] <... openat resumed>) = 4 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5032] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6780] ioctl(4, LOOP_SET_FD, 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./290/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./290/file0" [pid 5031] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6782 [pid 5032] close(3) = 0 ./strace-static-x86_64: Process 6782 attached [pid 5032] rmdir("./290" [pid 6782] set_robust_list(0x55555635e660, 24) = 0 [pid 6780] <... ioctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6782] chdir("./288" [pid 6780] close(3 [pid 5032] mkdir("./291", 0777 [pid 6782] <... chdir resumed>) = 0 [pid 6780] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 6782] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6780] mkdir("./file0", 0777 [pid 6782] <... prctl resumed>) = 0 [pid 6780] <... mkdir resumed>) = 0 [pid 6782] setpgid(0, 0 [pid 6780] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6782] <... setpgid resumed>) = 0 [pid 6782] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6779] <... mount resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6782] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6782] write(3, "1000", 4 [pid 6779] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6782] <... write resumed>) = 4 [pid 6779] <... openat resumed>) = 3 [pid 5032] close(3 [pid 6782] close(3 [pid 6779] chdir("./file0" [pid 6782] <... close resumed>) = 0 [pid 6779] <... chdir resumed>) = 0 [pid 6782] symlink("/dev/binderfs", "./binderfs" [pid 6779] ioctl(4, LOOP_CLR_FD [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6782] <... symlink resumed>) = 0 [pid 6779] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 6783 attached [pid 6782] memfd_create("syzkaller", 0 [pid 6779] close(4) = 0 [pid 6783] set_robust_list(0x55555635e660, 24 [pid 6779] exit_group(0) = ? [pid 6779] +++ exited with 0 +++ [pid 6783] <... set_robust_list resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6783 [pid 6783] chdir("./291" [pid 6782] <... memfd_create resumed>) = 3 [pid 6783] <... chdir resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6779, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6783] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6783] setpgid(0, 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6783] <... setpgid resumed>) = 0 [pid 6782] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6783] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6782] <... mmap resumed>) = 0x7ff0df171000 [pid 6783] <... openat resumed>) = 3 [ 247.839629][ T6780] loop4: detected capacity change from 0 to 4096 [ 247.875168][ T6780] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6781] <... write resumed>) = 2097152 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6783] write(3, "1000", 4) = 4 [pid 6781] munmap(0x7ff0df171000, 138412032 [pid 6778] <... mount resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 6778] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6778] chdir("./file0") = 0 [pid 6778] ioctl(4, LOOP_CLR_FD) = 0 [pid 6778] close(4) = 0 [pid 6778] exit_group(0) = ? [pid 6778] +++ exited with 0 +++ [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6783] close(3) = 0 [pid 6781] <... munmap resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6778, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5029] getdents64(3, [pid 6783] symlink("/dev/binderfs", "./binderfs" [pid 6781] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6783] <... symlink resumed>) = 0 [pid 6781] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6783] memfd_create("syzkaller", 0 [pid 6781] ioctl(4, LOOP_SET_FD, 3 [pid 5030] openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6783] <... memfd_create resumed>) = 3 [pid 6781] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 6783] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(AT_FDCWD, "./290/binderfs", [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6783] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./290/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./289/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./289/binderfs") = 0 [pid 5030] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6781] close(3) = 0 [pid 6781] mkdir("./file0", 0777) = 0 [ 247.944076][ T6781] loop5: detected capacity change from 0 to 4096 [pid 6781] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6780] <... mount resumed>) = 0 [pid 6780] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6780] chdir("./file0") = 0 [pid 6780] ioctl(4, LOOP_CLR_FD) = 0 [pid 6780] close(4) = 0 [pid 6780] exit_group(0) = ? [pid 6783] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6780] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6780, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5030] <... umount2 resumed>) = 0 [pid 5033] umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./289/file0", [pid 6782] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./284/binderfs", [ 247.990629][ T6781] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5030] openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5033] unlink("./284/binderfs" [pid 5030] newfstatat(4, "", [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./289/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./289" [pid 6783] <... write resumed>) = 2097152 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./290", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 6781] <... mount resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6784 ./strace-static-x86_64: Process 6784 attached [pid 6784] set_robust_list(0x55555635e660, 24) = 0 [pid 6784] chdir("./290") = 0 [pid 6784] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6784] setpgid(0, 0) = 0 [pid 6784] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./290/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6784] write(3, "1000", 4) = 4 [pid 6784] close(3) = 0 [pid 6783] munmap(0x7ff0df171000, 138412032 [pid 6781] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6784] symlink("/dev/binderfs", "./binderfs" [pid 6781] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6784] <... symlink resumed>) = 0 [pid 6781] chdir("./file0" [pid 5029] openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6783] <... munmap resumed>) = 0 [pid 6781] <... chdir resumed>) = 0 [pid 6784] memfd_create("syzkaller", 0 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 6782] <... write resumed>) = 2097152 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6784] <... memfd_create resumed>) = 3 [pid 6783] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6781] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = 0 [pid 5029] getdents64(4, [pid 6784] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6783] <... openat resumed>) = 4 [pid 6782] munmap(0x7ff0df171000, 138412032 [pid 6781] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6784] <... mmap resumed>) = 0x7ff0df171000 [pid 6783] ioctl(4, LOOP_SET_FD, 3 [pid 6781] close(4 [pid 5033] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6782] <... munmap resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./290/file0" [pid 6783] <... ioctl resumed>) = 0 [pid 6781] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 6781] exit_group(0 [pid 5033] newfstatat(AT_FDCWD, "./284/file0", [pid 6782] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6781] <... exit_group resumed>) = ? [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(3, [pid 6782] <... openat resumed>) = 4 [pid 5033] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6781] +++ exited with 0 +++ [pid 6782] ioctl(4, LOOP_SET_FD, 3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6781, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] close(3 [pid 5033] newfstatat(4, "", [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./290" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6783] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 5033] getdents64(4, [pid 5034] umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6783] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 6783] mkdir("./file0", 0777 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6783] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] close(4 [pid 5029] mkdir("./291", 0777 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./284/file0" [pid 6783] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] <... mkdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] getdents64(3, [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] close(3 [pid 5034] umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6785 [pid 6782] <... ioctl resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./282/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./282/binderfs") = 0 [pid 6782] close(3./strace-static-x86_64: Process 6785 attached ) = 0 [pid 5034] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6785] set_robust_list(0x55555635e660, 24 [pid 6782] mkdir("./file0", 0777 [pid 5033] <... rmdir resumed>) = 0 [pid 6785] <... set_robust_list resumed>) = 0 [pid 6782] <... mkdir resumed>) = 0 [pid 5033] getdents64(3, [pid 6785] chdir("./291") = 0 [pid 6785] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6785] setpgid(0, 0 [pid 6782] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] close(3 [pid 6785] <... setpgid resumed>) = 0 [ 248.164606][ T6783] loop3: detected capacity change from 0 to 4096 [ 248.177953][ T6782] loop2: detected capacity change from 0 to 4096 [ 248.197088][ T6783] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6785] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] rmdir("./284" [pid 6785] <... openat resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./285", 0777 [pid 6785] write(3, "1000", 4) = 4 [pid 5034] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6785] close(3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6785] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./282/file0", [pid 6785] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6785] <... symlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6785] memfd_create("syzkaller", 0 [pid 5034] umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... openat resumed>) = 4 [pid 5033] close(3 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 6785] <... memfd_create resumed>) = 3 [pid 5034] getdents64(4, [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6785] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6785] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] getdents64(4, ./strace-static-x86_64: Process 6786 attached 0x555556367730 /* 0 entries */, 32768) = 0 [ 248.228388][ T6782] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] close(4 [pid 6786] set_robust_list(0x55555635e660, 24 [pid 5034] <... close resumed>) = 0 [pid 6786] <... set_robust_list resumed>) = 0 [pid 5034] rmdir("./282/file0" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6786 [pid 6786] chdir("./285" [pid 5034] <... rmdir resumed>) = 0 [pid 6786] <... chdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 6786] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... close resumed>) = 0 [pid 6786] <... prctl resumed>) = 0 [pid 5034] rmdir("./282" [pid 6786] setpgid(0, 0 [pid 6784] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6783] <... mount resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6786] <... setpgid resumed>) = 0 [pid 6786] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] mkdir("./283", 0777 [pid 6786] <... openat resumed>) = 3 [pid 6783] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... mkdir resumed>) = 0 [pid 6786] write(3, "1000", 4 [pid 6783] <... openat resumed>) = 3 [pid 6786] <... write resumed>) = 4 [pid 6783] chdir("./file0" [pid 6786] close(3 [pid 6783] <... chdir resumed>) = 0 [pid 6786] <... close resumed>) = 0 [pid 6783] ioctl(4, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6786] symlink("/dev/binderfs", "./binderfs" [pid 6783] <... ioctl resumed>) = 0 [pid 6786] <... symlink resumed>) = 0 [pid 6783] close(4 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 6783] <... close resumed>) = 0 [pid 6783] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 6786] memfd_create("syzkaller", 0 [pid 6783] <... exit_group resumed>) = ? [pid 6786] <... memfd_create resumed>) = 3 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6783] +++ exited with 0 +++ [pid 6786] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6783, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6787 [pid 5032] umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 ./strace-static-x86_64: Process 6787 attached [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6787] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] getdents64(3, [pid 6787] chdir("./283" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./291/binderfs", [pid 6787] <... chdir resumed>) = 0 [pid 6787] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./291/binderfs" [pid 6787] <... prctl resumed>) = 0 [pid 6787] setpgid(0, 0 [pid 5032] <... unlink resumed>) = 0 [pid 6787] <... setpgid resumed>) = 0 [pid 6787] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6784] <... write resumed>) = 2097152 [pid 6782] <... mount resumed>) = 0 [pid 5032] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6782] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6787] <... openat resumed>) = 3 [pid 6782] <... openat resumed>) = 3 [pid 6787] write(3, "1000", 4 [pid 6782] chdir("./file0" [pid 6787] <... write resumed>) = 4 [pid 6782] <... chdir resumed>) = 0 [pid 6787] close(3 [pid 6782] ioctl(4, LOOP_CLR_FD [pid 6787] <... close resumed>) = 0 [pid 6782] <... ioctl resumed>) = 0 [pid 6787] symlink("/dev/binderfs", "./binderfs" [pid 6782] close(4) = 0 [pid 6782] exit_group(0 [pid 6787] <... symlink resumed>) = 0 [pid 6782] <... exit_group resumed>) = ? [pid 6787] memfd_create("syzkaller", 0) = 3 [pid 6785] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6787] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6784] munmap(0x7ff0df171000, 138412032 [pid 6782] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6782, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [pid 5031] umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6787] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6784] <... munmap resumed>) = 0 [pid 5031] umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6784] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6784] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./288/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./288/binderfs") = 0 [pid 5031] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6784] close(3) = 0 [pid 6784] mkdir("./file0", 0777) = 0 [pid 5032] <... umount2 resumed>) = 0 [ 248.394657][ T6784] loop1: detected capacity change from 0 to 4096 [pid 6785] <... write resumed>) = 2097152 [pid 6784] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6786] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./291/file0", [pid 6785] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6785] <... munmap resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5031] <... umount2 resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./288/file0", [pid 6785] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6785] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6787] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6785] ioctl(4, LOOP_SET_FD, 3 [pid 5032] close(4) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] rmdir("./291/file0") = 0 [pid 5031] newfstatat(4, "", [pid 5032] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] close(3 [pid 5031] getdents64(4, [pid 5032] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./288/file0" [pid 5032] rmdir("./291" [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5032] mkdir("./292", 0777 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./288" [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6785] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] mkdir("./289", 0777 [pid 5032] <... openat resumed>) = 3 [pid 5031] <... mkdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6785] close(3 [pid 5032] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6785] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6785] mkdir("./file0", 0777 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 6788 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6788 [pid 6788] set_robust_list(0x55555635e660, 24 [pid 6785] <... mkdir resumed>) = 0 [pid 5031] close(3) = 0 [pid 6788] <... set_robust_list resumed>) = 0 [pid 6785] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6788] chdir("./292") = 0 [pid 6788] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 6789 attached [pid 6789] set_robust_list(0x55555635e660, 24 [pid 6788] <... prctl resumed>) = 0 [pid 6789] <... set_robust_list resumed>) = 0 [ 248.457233][ T6784] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 248.495866][ T6785] loop0: detected capacity change from 0 to 4096 [pid 6789] chdir("./289" [pid 6788] setpgid(0, 0 [pid 6789] <... chdir resumed>) = 0 [pid 6789] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6789 [pid 6789] setpgid(0, 0) = 0 [pid 6788] <... setpgid resumed>) = 0 [pid 6789] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6789] write(3, "1000", 4) = 4 [pid 6789] close(3) = 0 [pid 6789] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6789] memfd_create("syzkaller", 0 [pid 6788] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6786] <... write resumed>) = 2097152 [pid 6789] <... memfd_create resumed>) = 3 [pid 6789] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6788] <... openat resumed>) = 3 [pid 6788] write(3, "1000", 4 [pid 6786] munmap(0x7ff0df171000, 138412032 [pid 6788] <... write resumed>) = 4 [pid 6788] close(3) = 0 [pid 6788] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6786] <... munmap resumed>) = 0 [pid 6786] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6788] memfd_create("syzkaller", 0 [pid 6786] <... openat resumed>) = 4 [pid 6784] <... mount resumed>) = 0 [ 248.539517][ T6785] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6784] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6788] <... memfd_create resumed>) = 3 [pid 6787] <... write resumed>) = 2097152 [pid 6786] ioctl(4, LOOP_SET_FD, 3 [pid 6784] <... openat resumed>) = 3 [pid 6784] chdir("./file0") = 0 [pid 6784] ioctl(4, LOOP_CLR_FD) = 0 [pid 6784] close(4) = 0 [pid 6784] exit_group(0) = ? [pid 6788] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6787] munmap(0x7ff0df171000, 138412032) = 0 [pid 6788] <... mmap resumed>) = 0x7ff0df171000 [pid 6784] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6784, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 6786] <... ioctl resumed>) = 0 [pid 6787] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6786] close(3 [pid 6787] <... openat resumed>) = 4 [pid 6786] <... close resumed>) = 0 [pid 6787] ioctl(4, LOOP_SET_FD, 3 [pid 6786] mkdir("./file0", 0777 [pid 5030] umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6786] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./290/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6787] <... ioctl resumed>) = 0 [pid 6786] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [ 248.580467][ T6786] loop4: detected capacity change from 0 to 4096 [ 248.615175][ T6787] loop5: detected capacity change from 0 to 4096 [pid 5030] unlink("./290/binderfs") = 0 [pid 6787] close(3 [pid 5030] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6785] <... mount resumed>) = 0 [pid 6785] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6785] chdir("./file0" [pid 6789] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6788] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6787] <... close resumed>) = 0 [pid 6785] <... chdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6787] mkdir("./file0", 0777 [pid 6785] ioctl(4, LOOP_CLR_FD [pid 6787] <... mkdir resumed>) = 0 [pid 6785] <... ioctl resumed>) = 0 [pid 6787] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6785] close(4 [pid 5030] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6785] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./290/file0", [pid 6785] exit_group(0) = ? [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6785] +++ exited with 0 +++ [pid 5030] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6785, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=2 /* 0.02 s */} --- [pid 5030] newfstatat(4, "", [pid 5029] umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 5029] newfstatat(3, "", [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 248.645282][ T6786] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 248.674918][ T6787] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./290/file0" [pid 5029] getdents64(3, [pid 6787] <... mount resumed>) = 0 [pid 6786] <... mount resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] getdents64(3, [pid 6787] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6786] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6786] <... openat resumed>) = 3 [pid 5030] close(3 [pid 6788] <... write resumed>) = 2097152 [pid 6788] munmap(0x7ff0df171000, 138412032 [pid 6787] <... openat resumed>) = 3 [pid 6786] chdir("./file0" [pid 5030] <... close resumed>) = 0 [pid 5029] umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6786] <... chdir resumed>) = 0 [pid 6787] chdir("./file0" [pid 5030] rmdir("./290" [pid 6786] ioctl(4, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6787] <... chdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./291/binderfs", [pid 6787] ioctl(4, LOOP_CLR_FD [pid 6786] <... ioctl resumed>) = 0 [pid 5030] mkdir("./291", 0777 [pid 6787] <... ioctl resumed>) = 0 [pid 6786] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6787] close(4 [pid 5029] unlink("./291/binderfs" [pid 6787] <... close resumed>) = 0 [pid 6789] <... write resumed>) = 2097152 [pid 6788] <... munmap resumed>) = 0 [pid 6787] exit_group(0 [pid 6786] <... close resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6787] <... exit_group resumed>) = ? [pid 6789] munmap(0x7ff0df171000, 138412032 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6788] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6786] exit_group(0 [pid 5030] <... openat resumed>) = 3 [pid 6788] <... openat resumed>) = 4 [pid 6786] <... exit_group resumed>) = ? [pid 6788] ioctl(4, LOOP_SET_FD, 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6789] <... munmap resumed>) = 0 [pid 6787] +++ exited with 0 +++ [pid 6786] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6786, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./285/binderfs", [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6787, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6789] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6789] <... openat resumed>) = 4 [pid 5033] unlink("./285/binderfs" [pid 5030] close(3 [pid 5033] <... unlink resumed>) = 0 [pid 6789] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 6788] <... ioctl resumed>) = 0 [pid 6788] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6788] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6790 ./strace-static-x86_64: Process 6790 attached [pid 5034] openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6790] set_robust_list(0x55555635e660, 24) = 0 [pid 6789] <... ioctl resumed>) = 0 [pid 6788] <... mkdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 6790] chdir("./291" [pid 6789] close(3 [pid 6788] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(3, "", [pid 6790] <... chdir resumed>) = 0 [pid 6789] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6790] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6789] mkdir("./file0", 0777 [pid 5034] getdents64(3, [pid 6790] <... prctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] newfstatat(AT_FDCWD, "./291/file0", [ 248.767153][ T6788] loop3: detected capacity change from 0 to 4096 [ 248.786684][ T6789] loop2: detected capacity change from 0 to 4096 [pid 6790] setpgid(0, 0) = 0 [pid 6789] <... mkdir resumed>) = 0 [pid 5034] umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6790] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6789] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6790] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./283/binderfs", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6790] write(3, "1000", 4 [pid 5034] unlink("./283/binderfs" [pid 6790] <... write resumed>) = 4 [pid 5029] <... openat resumed>) = 4 [pid 6790] close(3 [pid 5034] <... unlink resumed>) = 0 [pid 5033] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(4, "", [pid 6790] <... close resumed>) = 0 [pid 6790] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6790] <... symlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5034] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./285/file0", [pid 6790] memfd_create("syzkaller", 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6790] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(4, [pid 6790] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6790] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] newfstatat(4, "", [pid 5029] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./291/file0" [pid 5033] getdents64(4, [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] close(3) = 0 [pid 6788] <... mount resumed>) = 0 [pid 5033] getdents64(4, [pid 5029] rmdir("./291" [pid 6788] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [ 248.823478][ T6788] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 248.856431][ T6789] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6788] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 5033] close(4 [pid 5029] mkdir("./292", 0777 [pid 6788] chdir("./file0" [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./285/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./285" [pid 6788] <... chdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6788] ioctl(4, LOOP_CLR_FD [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6788] <... ioctl resumed>) = 0 [pid 6788] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6788] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6788] exit_group(0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6788] <... exit_group resumed>) = ? [pid 5029] close(3) = 0 [pid 6788] +++ exited with 0 +++ [pid 5033] mkdir("./286", 0777 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... mkdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6788, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6791 attached [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6791 [pid 6791] set_robust_list(0x55555635e660, 24 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6791] <... set_robust_list resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./292/binderfs", [pid 6791] chdir("./292" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] unlink("./292/binderfs" [pid 6791] <... chdir resumed>) = 0 [pid 5033] close(3 [pid 5032] <... unlink resumed>) = 0 [pid 6791] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... close resumed>) = 0 [pid 5032] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6791] <... prctl resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6791] setpgid(0, 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6792 [pid 6791] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 6792 attached [pid 6792] set_robust_list(0x55555635e660, 24 [pid 6791] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6792] <... set_robust_list resumed>) = 0 [pid 6792] chdir("./286") = 0 [pid 6791] <... openat resumed>) = 3 [pid 6792] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6791] write(3, "1000", 4 [pid 6792] <... prctl resumed>) = 0 [pid 6791] <... write resumed>) = 4 [pid 6791] close(3 [pid 6792] setpgid(0, 0 [pid 6791] <... close resumed>) = 0 [pid 6791] symlink("/dev/binderfs", "./binderfs" [pid 6792] <... setpgid resumed>) = 0 [pid 6792] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6791] <... symlink resumed>) = 0 [pid 6792] <... openat resumed>) = 3 [pid 6792] write(3, "1000", 4) = 4 [pid 6792] close(3) = 0 [pid 6792] symlink("/dev/binderfs", "./binderfs" [pid 6791] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6792] <... symlink resumed>) = 0 [pid 6792] memfd_create("syzkaller", 0 [pid 5034] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./283/file0", [pid 6791] <... memfd_create resumed>) = 3 [pid 6790] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6792] <... memfd_create resumed>) = 3 [pid 6791] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6789] <... mount resumed>) = 0 [pid 5034] umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6792] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6791] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6792] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./283/file0") = 0 [pid 5034] getdents64(3, [pid 6789] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6789] <... openat resumed>) = 3 [pid 5034] close(3 [pid 6789] chdir("./file0" [pid 5034] <... close resumed>) = 0 [pid 6789] <... chdir resumed>) = 0 [pid 6789] ioctl(4, LOOP_CLR_FD [pid 5034] rmdir("./283" [pid 6789] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6789] close(4) = 0 [pid 5034] mkdir("./284", 0777 [pid 6789] exit_group(0) = ? [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6789] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6789, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6793 ./strace-static-x86_64: Process 6793 attached [pid 6793] set_robust_list(0x55555635e660, 24) = 0 [pid 6793] chdir("./284") = 0 [pid 6793] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6793] setpgid(0, 0) = 0 [pid 6793] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6793] write(3, "1000", 4 [pid 5032] <... umount2 resumed>) = 0 [pid 6793] <... write resumed>) = 4 [pid 6793] close(3) = 0 [pid 6793] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6793] memfd_create("syzkaller", 0) = 3 [pid 5032] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6793] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./292/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6790] <... write resumed>) = 2097152 [pid 5032] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(3, "", [pid 6790] munmap(0x7ff0df171000, 138412032 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6790] <... munmap resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5031] getdents64(3, [pid 5032] newfstatat(4, "", [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] newfstatat(AT_FDCWD, "./289/binderfs", [pid 5032] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./289/binderfs" [pid 5032] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 6791] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6790] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./292/file0" [pid 6792] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6790] <... openat resumed>) = 4 [pid 5032] <... rmdir resumed>) = 0 [pid 6790] ioctl(4, LOOP_SET_FD, 3 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./292") = 0 [pid 5032] mkdir("./293", 0777 [pid 6790] <... ioctl resumed>) = 0 [pid 6790] close(3 [pid 5032] <... mkdir resumed>) = 0 [pid 6790] <... close resumed>) = 0 [pid 6790] mkdir("./file0", 0777 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6792] <... write resumed>) = 2097152 [pid 6790] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6790] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [ 249.088503][ T6790] loop1: detected capacity change from 0 to 4096 [pid 5032] close(3 [pid 6793] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6792] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 6794 attached ) = 0 [pid 6791] <... write resumed>) = 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6794] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6791] munmap(0x7ff0df171000, 138412032 [pid 6794] chdir("./293") = 0 [pid 6791] <... munmap resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6794 [pid 5031] newfstatat(AT_FDCWD, "./289/file0", [pid 6794] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6794] setpgid(0, 0) = 0 [pid 5031] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6794] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6791] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6794] <... openat resumed>) = 3 [pid 6792] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6791] <... openat resumed>) = 4 [pid 5031] openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6794] write(3, "1000", 4 [pid 6791] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... openat resumed>) = 4 [pid 6794] <... write resumed>) = 4 [pid 5031] newfstatat(4, "", [pid 6792] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 249.151025][ T6790] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6792] ioctl(4, LOOP_SET_FD, 3 [pid 6794] close(3 [pid 6791] <... ioctl resumed>) = 0 [pid 5031] getdents64(4, [pid 6794] <... close resumed>) = 0 [pid 6792] <... ioctl resumed>) = 0 [pid 6791] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6794] symlink("/dev/binderfs", "./binderfs" [pid 6791] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 6794] <... symlink resumed>) = 0 [pid 6791] mkdir("./file0", 0777 [pid 6793] <... write resumed>) = 2097152 [pid 6792] close(3 [pid 6791] <... mkdir resumed>) = 0 [pid 6794] memfd_create("syzkaller", 0 [pid 6792] <... close resumed>) = 0 [pid 6791] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 249.196839][ T6791] loop0: detected capacity change from 0 to 4096 [ 249.198545][ T6792] loop4: detected capacity change from 0 to 4096 [pid 6792] mkdir("./file0", 0777 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6792] <... mkdir resumed>) = 0 [pid 6793] munmap(0x7ff0df171000, 138412032 [pid 6792] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6793] <... munmap resumed>) = 0 [pid 6794] <... memfd_create resumed>) = 3 [pid 5031] close(4 [pid 6794] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... close resumed>) = 0 [pid 6793] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6793] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5031] rmdir("./289/file0") = 0 [pid 6793] close(3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./289" [pid 6793] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6793] mkdir("./file0", 0777) = 0 [pid 6790] <... mount resumed>) = 0 [pid 5031] mkdir("./290", 0777 [pid 6793] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [ 249.242450][ T6791] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 249.249646][ T6792] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 249.263745][ T6793] loop5: detected capacity change from 0 to 4096 [pid 6790] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5031] <... mkdir resumed>) = 0 [pid 6790] chdir("./file0" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6790] <... chdir resumed>) = 0 [pid 6790] ioctl(4, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 3 [pid 6790] <... ioctl resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6790] close(4 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6790] <... close resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6790] exit_group(0./strace-static-x86_64: Process 6795 attached ) = ? [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6795 [pid 6795] set_robust_list(0x55555635e660, 24) = 0 [pid 6795] chdir("./290") = 0 [pid 6795] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6795] setpgid(0, 0) = 0 [pid 6795] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6795] write(3, "1000", 4 [pid 6794] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6792] <... mount resumed>) = 0 [pid 6790] +++ exited with 0 +++ [pid 6795] <... write resumed>) = 4 [pid 6795] close(3 [pid 6792] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6795] <... close resumed>) = 0 [pid 6792] <... openat resumed>) = 3 [ 249.286531][ T6793] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6795] symlink("/dev/binderfs", "./binderfs" [pid 6792] chdir("./file0") = 0 [pid 6792] ioctl(4, LOOP_CLR_FD) = 0 [pid 6792] close(4 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6790, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 6792] <... close resumed>) = 0 [pid 6792] exit_group(0 [pid 5030] umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6792] <... exit_group resumed>) = ? [pid 6795] <... symlink resumed>) = 0 [pid 6791] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6791] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5030] openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6795] memfd_create("syzkaller", 0 [pid 6791] chdir("./file0" [pid 5030] <... openat resumed>) = 3 [pid 6792] +++ exited with 0 +++ [pid 5030] newfstatat(3, "", [pid 6795] <... memfd_create resumed>) = 3 [pid 6791] <... chdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6792, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 6795] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6791] ioctl(4, LOOP_CLR_FD [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 6793] <... mount resumed>) = 0 [pid 5030] getdents64(3, [pid 5033] umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6795] <... mmap resumed>) = 0x7ff0df171000 [pid 6791] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6793] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] newfstatat(3, "", [pid 6793] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6793] chdir("./file0" [pid 6791] close(4 [pid 5033] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6793] <... chdir resumed>) = 0 [pid 6791] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] newfstatat(AT_FDCWD, "./291/binderfs", [pid 6793] ioctl(4, LOOP_CLR_FD [pid 6791] exit_group(0 [pid 5033] umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6793] <... ioctl resumed>) = 0 [pid 6791] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6793] close(4 [pid 5033] newfstatat(AT_FDCWD, "./286/binderfs", [pid 6793] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6793] exit_group(0 [pid 5033] unlink("./286/binderfs" [pid 5030] unlink("./291/binderfs" [pid 6793] <... exit_group resumed>) = ? [pid 5033] <... unlink resumed>) = 0 [pid 6793] +++ exited with 0 +++ [pid 6791] +++ exited with 0 +++ [pid 5033] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6793, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6791, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6794] <... write resumed>) = 2097152 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] newfstatat(3, "", [pid 5029] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(3, "", [pid 6794] munmap(0x7ff0df171000, 138412032 [pid 5034] getdents64(3, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./284/binderfs", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] unlink("./284/binderfs") = 0 [pid 5034] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6794] <... munmap resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./292/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6794] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5029] unlink("./292/binderfs" [pid 6794] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./284/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6795] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6794] close(3 [pid 5034] umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6794] <... close resumed>) = 0 [pid 6794] mkdir("./file0", 0777 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6794] <... mkdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./284/file0" [pid 6794] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./284") = 0 [pid 5034] mkdir("./285", 0777) = 0 [ 249.434253][ T6794] loop3: detected capacity change from 0 to 4096 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6796 attached ) = -1 EINVAL (Invalid argument) [pid 6796] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(AT_FDCWD, "./286/file0", [pid 6796] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6796] chdir("./285") = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6796 [pid 5033] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6796] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... umount2 resumed>) = 0 [pid 6796] <... prctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6796] setpgid(0, 0 [pid 5033] openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6796] <... setpgid resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 6796] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6796] <... openat resumed>) = 3 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6796] write(3, "1000", 4 [pid 5033] close(4 [pid 6796] <... write resumed>) = 4 [pid 5033] <... close resumed>) = 0 [pid 6796] close(3 [pid 5033] rmdir("./286/file0" [pid 6796] <... close resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6796] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6796] memfd_create("syzkaller", 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./291/file0", [pid 5033] rmdir("./286" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6796] <... memfd_create resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6796] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6796] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] mkdir("./287", 0777 [pid 5030] openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6795] <... write resumed>) = 2097152 [pid 5029] newfstatat(AT_FDCWD, "./292/file0", [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./291/file0") = 0 [pid 5029] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6795] munmap(0x7ff0df171000, 138412032 [pid 5033] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 249.478270][ T6794] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5030] close(3) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6795] <... munmap resumed>) = 0 [pid 5030] rmdir("./291" [pid 5029] getdents64(4, ./strace-static-x86_64: Process 6797 attached [pid 6795] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 6797] set_robust_list(0x55555635e660, 24 [pid 6795] <... openat resumed>) = 4 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6797 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6795] ioctl(4, LOOP_SET_FD, 3 [pid 5029] close(4 [pid 6797] <... set_robust_list resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6797] chdir("./287" [pid 5030] mkdir("./292", 0777) = 0 [pid 6797] <... chdir resumed>) = 0 [pid 6797] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6797] <... prctl resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6797] setpgid(0, 0 [pid 5030] close(3 [pid 6797] <... setpgid resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./292/file0" [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6798 [pid 6797] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... rmdir resumed>) = 0 [pid 6797] <... openat resumed>) = 3 [pid 6797] write(3, "1000", 4 [pid 5029] getdents64(3, [pid 6797] <... write resumed>) = 4 [pid 6797] close(3) = 0 [pid 6797] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6798 attached [pid 6797] <... symlink resumed>) = 0 [pid 5029] close(3 [pid 6798] set_robust_list(0x55555635e660, 24 [pid 5029] <... close resumed>) = 0 [pid 6798] <... set_robust_list resumed>) = 0 [pid 6798] chdir("./292" [pid 6795] <... ioctl resumed>) = 0 [pid 5029] rmdir("./292" [pid 6797] memfd_create("syzkaller", 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6798] <... chdir resumed>) = 0 [pid 6795] close(3 [pid 6798] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6795] <... close resumed>) = 0 [pid 6798] <... prctl resumed>) = 0 [pid 6797] <... memfd_create resumed>) = 3 [pid 6795] mkdir("./file0", 0777 [pid 6797] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6798] setpgid(0, 0 [pid 6797] <... mmap resumed>) = 0x7ff0df171000 [pid 6795] <... mkdir resumed>) = 0 [pid 6798] <... setpgid resumed>) = 0 [pid 6795] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] mkdir("./293", 0777 [pid 6798] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6794] <... mount resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6794] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6798] <... openat resumed>) = 3 [pid 6794] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6794] chdir("./file0" [pid 5029] <... openat resumed>) = 3 [pid 6798] write(3, "1000", 4 [pid 6794] <... chdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6798] <... write resumed>) = 4 [pid 6794] ioctl(4, LOOP_CLR_FD [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6798] close(3 [pid 6794] <... ioctl resumed>) = 0 [pid 5029] close(3 [pid 6798] <... close resumed>) = 0 [pid 6794] close(4 [pid 6798] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... close resumed>) = 0 [pid 6794] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6794] exit_group(0./strace-static-x86_64: Process 6799 attached [pid 6798] <... symlink resumed>) = 0 [pid 6796] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6794] <... exit_group resumed>) = ? [pid 6799] set_robust_list(0x55555635e660, 24 [pid 6794] +++ exited with 0 +++ [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6799 [pid 6799] <... set_robust_list resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6794, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [ 249.546705][ T6795] loop2: detected capacity change from 0 to 4096 [ 249.575530][ T6795] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6799] chdir("./293") = 0 [pid 6798] memfd_create("syzkaller", 0 [pid 6799] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6798] <... memfd_create resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6798] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6799] setpgid(0, 0 [pid 6796] <... write resumed>) = 2097152 [pid 5032] <... openat resumed>) = 3 [pid 6799] <... setpgid resumed>) = 0 [pid 6799] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] newfstatat(3, "", [pid 6799] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6797] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6799] write(3, "1000", 4 [pid 5032] getdents64(3, [pid 6796] munmap(0x7ff0df171000, 138412032 [pid 6799] <... write resumed>) = 4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6799] close(3 [pid 6796] <... munmap resumed>) = 0 [pid 5032] umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6799] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6799] symlink("/dev/binderfs", "./binderfs" [pid 6796] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] newfstatat(AT_FDCWD, "./293/binderfs", [pid 6799] <... symlink resumed>) = 0 [pid 6796] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6799] memfd_create("syzkaller", 0 [pid 6796] ioctl(4, LOOP_SET_FD, 3 [pid 5032] unlink("./293/binderfs" [pid 6799] <... memfd_create resumed>) = 3 [pid 6796] <... ioctl resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 6799] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6799] <... mmap resumed>) = 0x7ff0df171000 [pid 6796] close(3) = 0 [pid 6798] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6796] mkdir("./file0", 0777) = 0 [pid 6796] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6795] <... mount resumed>) = 0 [pid 6797] <... write resumed>) = 2097152 [pid 6795] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./293/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 6797] munmap(0x7ff0df171000, 138412032 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6797] <... munmap resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6795] <... openat resumed>) = 3 [ 249.694471][ T6796] loop5: detected capacity change from 0 to 4096 [ 249.732849][ T6796] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5032] close(4 [pid 6795] chdir("./file0" [pid 5032] <... close resumed>) = 0 [pid 6795] <... chdir resumed>) = 0 [pid 5032] rmdir("./293/file0" [pid 6795] ioctl(4, LOOP_CLR_FD [pid 5032] <... rmdir resumed>) = 0 [pid 6795] <... ioctl resumed>) = 0 [pid 5032] getdents64(3, [pid 6795] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6795] <... close resumed>) = 0 [pid 5032] close(3 [pid 6797] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 6797] <... openat resumed>) = 4 [pid 5032] rmdir("./293" [pid 6795] exit_group(0) = ? [pid 5032] <... rmdir resumed>) = 0 [pid 6797] ioctl(4, LOOP_SET_FD, 3 [pid 5032] mkdir("./294", 0777 [pid 6795] +++ exited with 0 +++ [pid 5032] <... mkdir resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6795, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6800 ./strace-static-x86_64: Process 6800 attached [pid 6800] set_robust_list(0x55555635e660, 24) = 0 [pid 6797] <... ioctl resumed>) = 0 [pid 6800] chdir("./294" [pid 6797] close(3 [pid 6800] <... chdir resumed>) = 0 [pid 6797] <... close resumed>) = 0 [pid 6800] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6799] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6800] <... prctl resumed>) = 0 [pid 6798] <... write resumed>) = 2097152 [pid 6797] mkdir("./file0", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6800] setpgid(0, 0 [pid 6798] munmap(0x7ff0df171000, 138412032 [pid 5031] openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6800] <... setpgid resumed>) = 0 [pid 6797] <... mkdir resumed>) = 0 [pid 6800] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... openat resumed>) = 3 [pid 6800] <... openat resumed>) = 3 [pid 6797] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] newfstatat(3, "", [ 249.797281][ T6797] loop4: detected capacity change from 0 to 4096 [pid 6798] <... munmap resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6800] write(3, "1000", 4) = 4 [pid 5031] getdents64(3, [pid 6800] close(3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6798] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6798] <... openat resumed>) = 4 [pid 5031] newfstatat(AT_FDCWD, "./290/binderfs", [pid 6798] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./290/binderfs" [pid 6800] <... close resumed>) = 0 [pid 6800] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6800] memfd_create("syzkaller", 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6800] <... memfd_create resumed>) = 3 [pid 6800] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6796] <... mount resumed>) = 0 [pid 6800] <... mmap resumed>) = 0x7ff0df171000 [pid 6796] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6798] <... ioctl resumed>) = 0 [pid 6796] <... openat resumed>) = 3 [pid 6798] close(3 [ 249.843397][ T6797] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 249.861992][ T6798] loop1: detected capacity change from 0 to 4096 [pid 6796] chdir("./file0" [pid 6798] <... close resumed>) = 0 [pid 6796] <... chdir resumed>) = 0 [pid 6799] <... write resumed>) = 2097152 [pid 6798] mkdir("./file0", 0777 [pid 6796] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = 0 [pid 6799] munmap(0x7ff0df171000, 138412032 [pid 6798] <... mkdir resumed>) = 0 [pid 6796] <... ioctl resumed>) = 0 [pid 5031] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6796] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6799] <... munmap resumed>) = 0 [pid 6798] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6796] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./290/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6796] exit_group(0) = ? [pid 6796] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6796, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5034] umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./285/binderfs", [pid 6799] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6799] <... openat resumed>) = 4 [pid 5031] openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6799] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... openat resumed>) = 4 [pid 5034] unlink("./285/binderfs") = 0 [pid 5034] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(4, "", [pid 6799] <... ioctl resumed>) = 0 [pid 6799] close(3) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6799] mkdir("./file0", 0777) = 0 [pid 6799] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [ 249.914931][ T6798] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 249.937415][ T6799] loop0: detected capacity change from 0 to 4096 [pid 5031] close(4 [pid 6800] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6798] <... mount resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6798] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] rmdir("./290/file0" [pid 6798] <... openat resumed>) = 3 [pid 6797] <... mount resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6798] chdir("./file0" [pid 5031] getdents64(3, [pid 6798] <... chdir resumed>) = 0 [pid 6797] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6798] ioctl(4, LOOP_CLR_FD [pid 6797] <... openat resumed>) = 3 [pid 6798] <... ioctl resumed>) = 0 [pid 6797] chdir("./file0" [pid 6798] close(4 [pid 6797] <... chdir resumed>) = 0 [pid 6798] <... close resumed>) = 0 [pid 6797] ioctl(4, LOOP_CLR_FD) = 0 [pid 6798] exit_group(0 [pid 6797] close(4 [pid 6798] <... exit_group resumed>) = ? [pid 6797] <... close resumed>) = 0 [pid 6797] exit_group(0) = ? [pid 6798] +++ exited with 0 +++ [pid 6797] +++ exited with 0 +++ [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6797, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6798, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... restart_syscall resumed>) = 0 [ 249.959443][ T6799] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5033] openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] close(3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 5031] rmdir("./290" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(AT_FDCWD, "./287/binderfs", [pid 5030] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 5033] unlink("./287/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] mkdir("./291", 0777 [pid 5033] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5033] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./292/binderfs", [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] unlink("./292/binderfs" [pid 5031] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6801 attached [pid 6801] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6801 [pid 6801] <... set_robust_list resumed>) = 0 [pid 6801] chdir("./291") = 0 [pid 6801] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6801] setpgid(0, 0) = 0 [pid 6801] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6801] write(3, "1000", 4 [pid 5030] <... umount2 resumed>) = 0 [pid 6801] <... write resumed>) = 4 [pid 6801] close(3 [pid 5030] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./292/file0", [pid 5034] newfstatat(AT_FDCWD, "./285/file0", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6801] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6801] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6799] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 4 [pid 5034] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 5034] newfstatat(4, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5034] getdents64(4, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6799] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 6799] <... openat resumed>) = 3 [pid 6801] memfd_create("syzkaller", 0 [pid 6800] <... write resumed>) = 2097152 [pid 6799] chdir("./file0" [pid 5034] getdents64(4, [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6799] <... chdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6799] ioctl(4, LOOP_CLR_FD [pid 5034] close(4 [pid 5030] <... close resumed>) = 0 [pid 6801] <... memfd_create resumed>) = 3 [pid 6799] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] rmdir("./292/file0" [pid 6801] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6799] close(4 [pid 5034] rmdir("./285/file0" [pid 5030] <... rmdir resumed>) = 0 [pid 6801] <... mmap resumed>) = 0x7ff0df171000 [pid 6799] <... close resumed>) = 0 [pid 6799] exit_group(0 [pid 5034] <... rmdir resumed>) = 0 [pid 6800] munmap(0x7ff0df171000, 138412032 [pid 6799] <... exit_group resumed>) = ? [pid 5030] getdents64(3, [pid 6800] <... munmap resumed>) = 0 [pid 5034] getdents64(3, [pid 6799] +++ exited with 0 +++ [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5034] close(3 [pid 5030] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6799, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5034] <... close resumed>) = 0 [pid 5030] rmdir("./292" [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5034] rmdir("./285" [pid 5029] <... restart_syscall resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./293", 0777 [pid 6800] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... mkdir resumed>) = 0 [pid 5029] umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6800] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6800] ioctl(4, LOOP_SET_FD, 3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] mkdir("./286", 0777 [pid 5029] <... openat resumed>) = 3 [pid 5033] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(3, "", [pid 5030] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] getdents64(3, [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(3 [pid 5029] umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./287/file0", [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] newfstatat(AT_FDCWD, "./293/binderfs", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./293/binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... unlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6802 attached [pid 5033] <... openat resumed>) = 4 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6802 [pid 6802] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(4, "", [pid 6802] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6802] chdir("./293" [pid 5033] getdents64(4, [pid 6802] <... chdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6802] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] getdents64(4, [pid 6802] <... prctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6802] setpgid(0, 0 [pid 5033] close(4 [pid 6802] <... setpgid resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6802] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6800] <... ioctl resumed>) = 0 [pid 5033] rmdir("./287/file0" [pid 6802] <... openat resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 6800] close(3 [pid 5033] getdents64(3, [pid 6802] write(3, "1000", 4) = 4 [pid 6802] close(3) = 0 [pid 6802] symlink("/dev/binderfs", "./binderfs" [pid 6800] <... close resumed>) = 0 [pid 6802] <... symlink resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] close(3 [pid 6802] memfd_create("syzkaller", 0 [pid 6800] mkdir("./file0", 0777 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6800] <... mkdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... close resumed>) = 0 [pid 5034] close(3 [pid 5033] rmdir("./287") = 0 [ 250.125845][ T6800] loop3: detected capacity change from 0 to 4096 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6800] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6802] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 6803 attached [pid 6802] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6801] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6803 [pid 5033] mkdir("./288", 0777 [pid 6803] set_robust_list(0x55555635e660, 24) = 0 [pid 6802] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... mkdir resumed>) = 0 [pid 6803] chdir("./286" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6804 [pid 6803] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 6804 attached [pid 6804] set_robust_list(0x55555635e660, 24 [pid 6803] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6804] <... set_robust_list resumed>) = 0 [pid 6803] <... prctl resumed>) = 0 [pid 6803] setpgid(0, 0 [pid 6804] chdir("./288" [pid 6803] <... setpgid resumed>) = 0 [pid 6803] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6803] write(3, "1000", 4) = 4 [pid 6804] <... chdir resumed>) = 0 [pid 6803] close(3 [pid 5029] <... umount2 resumed>) = 0 [pid 6804] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6803] <... close resumed>) = 0 [pid 5029] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6803] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6803] <... symlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./293/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 250.185643][ T6800] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6804] <... prctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6804] setpgid(0, 0 [pid 6803] memfd_create("syzkaller", 0 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 6804] <... setpgid resumed>) = 0 [pid 6803] <... memfd_create resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6803] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6804] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6803] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6804] <... openat resumed>) = 3 [pid 6800] <... mount resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6800] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6800] chdir("./file0") = 0 [pid 6800] ioctl(4, LOOP_CLR_FD) = 0 [pid 6800] close(4 [pid 6801] <... write resumed>) = 2097152 [pid 6800] <... close resumed>) = 0 [pid 5029] rmdir("./293/file0" [pid 6804] write(3, "1000", 4) = 4 [pid 6804] close(3 [pid 6800] exit_group(0 [pid 5029] <... rmdir resumed>) = 0 [pid 6804] <... close resumed>) = 0 [pid 6804] symlink("/dev/binderfs", "./binderfs" [pid 6800] <... exit_group resumed>) = ? [pid 6804] <... symlink resumed>) = 0 [pid 6800] +++ exited with 0 +++ [pid 5029] getdents64(3, [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6800, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6804] memfd_create("syzkaller", 0 [pid 6801] munmap(0x7ff0df171000, 138412032 [pid 6804] <... memfd_create resumed>) = 3 [pid 5032] umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6802] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6804] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] rmdir("./293" [pid 6804] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 6801] <... munmap resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] mkdir("./294", 0777 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./294/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./294/binderfs") = 0 [pid 5032] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 6801] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 6801] <... openat resumed>) = 4 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6801] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6801] <... ioctl resumed>) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6805 ./strace-static-x86_64: Process 6805 attached [pid 6805] set_robust_list(0x55555635e660, 24) = 0 [pid 6805] chdir("./294" [pid 6803] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6801] close(3) = 0 [pid 6805] <... chdir resumed>) = 0 [pid 6801] mkdir("./file0", 0777) = 0 [pid 6805] prctl(PR_SET_PDEATHSIG, SIGKILL [ 250.324727][ T6801] loop2: detected capacity change from 0 to 4096 [pid 6801] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6802] <... write resumed>) = 2097152 [pid 6802] munmap(0x7ff0df171000, 138412032 [pid 6805] <... prctl resumed>) = 0 [pid 6805] setpgid(0, 0) = 0 [pid 6805] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = 0 [pid 6805] <... openat resumed>) = 3 [pid 6802] <... munmap resumed>) = 0 [pid 6804] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6805] write(3, "1000", 4 [pid 5032] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6802] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6805] <... write resumed>) = 4 [pid 6802] <... openat resumed>) = 4 [pid 6802] ioctl(4, LOOP_SET_FD, 3 [pid 6805] close(3) = 0 [pid 6805] symlink("/dev/binderfs", "./binderfs" [pid 5032] newfstatat(AT_FDCWD, "./294/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6805] <... symlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6805] memfd_create("syzkaller", 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./294/file0") = 0 [pid 6805] <... memfd_create resumed>) = 3 [pid 6805] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 6802] <... ioctl resumed>) = 0 [pid 5032] rmdir("./294" [pid 6802] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 6802] <... close resumed>) = 0 [pid 6802] mkdir("./file0", 0777 [pid 5032] mkdir("./295", 0777 [pid 6802] <... mkdir resumed>) = 0 [pid 6801] <... mount resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [ 250.379214][ T6801] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 250.412702][ T6802] loop1: detected capacity change from 0 to 4096 [pid 6802] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6803] <... write resumed>) = 2097152 [pid 6801] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6801] <... openat resumed>) = 3 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6801] chdir("./file0" [pid 5032] close(3) = 0 [pid 6801] <... chdir resumed>) = 0 [pid 6801] ioctl(4, LOOP_CLR_FD [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6801] <... ioctl resumed>) = 0 [pid 6803] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 6806 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6806 [pid 6806] set_robust_list(0x55555635e660, 24) = 0 [pid 6801] close(4) = 0 [pid 6801] exit_group(0 [pid 6806] chdir("./295" [pid 6801] <... exit_group resumed>) = ? [pid 6806] <... chdir resumed>) = 0 [pid 6806] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6806] setpgid(0, 0) = 0 [pid 6806] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6806] write(3, "1000", 4) = 4 [pid 6804] <... write resumed>) = 2097152 [pid 6806] close(3) = 0 [pid 6801] +++ exited with 0 +++ [pid 6806] symlink("/dev/binderfs", "./binderfs" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6801, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6806] <... symlink resumed>) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6806] memfd_create("syzkaller", 0 [pid 6803] <... munmap resumed>) = 0 [pid 6804] munmap(0x7ff0df171000, 138412032 [pid 5031] umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6806] <... memfd_create resumed>) = 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6806] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6803] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6806] <... mmap resumed>) = 0x7ff0df171000 [pid 6804] <... munmap resumed>) = 0 [pid 6803] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 250.453549][ T6802] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6803] ioctl(4, LOOP_SET_FD, 3 [pid 5031] newfstatat(AT_FDCWD, "./291/binderfs", [pid 6804] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./291/binderfs" [pid 6804] ioctl(4, LOOP_SET_FD, 3 [pid 6805] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... unlink resumed>) = 0 [pid 6806] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6803] <... ioctl resumed>) = 0 [pid 5031] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6803] close(3 [pid 6804] <... ioctl resumed>) = 0 [pid 6803] <... close resumed>) = 0 [pid 6804] close(3 [ 250.505975][ T6803] loop5: detected capacity change from 0 to 4096 [ 250.515863][ T6804] loop4: detected capacity change from 0 to 4096 [pid 6803] mkdir("./file0", 0777 [pid 6804] <... close resumed>) = 0 [pid 6803] <... mkdir resumed>) = 0 [pid 6803] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6804] mkdir("./file0", 0777) = 0 [pid 6804] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6805] <... write resumed>) = 2097152 [pid 6802] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6805] munmap(0x7ff0df171000, 138412032 [pid 6802] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6802] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6802] chdir("./file0" [pid 5031] newfstatat(AT_FDCWD, "./291/file0", [pid 6802] <... chdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6802] ioctl(4, LOOP_CLR_FD [pid 5031] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6805] <... munmap resumed>) = 0 [pid 6802] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6805] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6805] <... openat resumed>) = 4 [pid 6805] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... openat resumed>) = 4 [ 250.564323][ T6803] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 250.574700][ T6804] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6802] close(4 [pid 5031] close(4 [pid 6802] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6802] exit_group(0 [pid 5031] rmdir("./291/file0") = 0 [pid 6802] <... exit_group resumed>) = ? [pid 6802] +++ exited with 0 +++ [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6802, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] close(3) = 0 [pid 5031] rmdir("./291") = 0 [pid 5031] mkdir("./292", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6805] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6807 attached [pid 6805] close(3 [pid 5030] openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6805] <... close resumed>) = 0 [pid 6807] set_robust_list(0x55555635e660, 24 [pid 6805] mkdir("./file0", 0777 [pid 5030] <... openat resumed>) = 3 [pid 6807] <... set_robust_list resumed>) = 0 [pid 6807] chdir("./292" [pid 6805] <... mkdir resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6806] <... write resumed>) = 2097152 [pid 6803] <... mount resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6807 [pid 6807] <... chdir resumed>) = 0 [pid 6807] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6807] setpgid(0, 0) = 0 [pid 6807] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6807] write(3, "1000", 4) = 4 [pid 6807] close(3) = 0 [pid 6807] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6807] memfd_create("syzkaller", 0 [pid 6806] munmap(0x7ff0df171000, 138412032 [pid 6805] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6803] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6807] <... memfd_create resumed>) = 3 [pid 6803] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6807] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [ 250.605574][ T6805] loop0: detected capacity change from 0 to 4096 [pid 6803] chdir("./file0" [pid 6807] <... mmap resumed>) = 0x7ff0df171000 [pid 6803] <... chdir resumed>) = 0 [pid 6806] <... munmap resumed>) = 0 [pid 6803] ioctl(4, LOOP_CLR_FD) = 0 [pid 6803] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6803] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./293/binderfs", [pid 6803] exit_group(0) = ? [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6806] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6803] +++ exited with 0 +++ [pid 5030] unlink("./293/binderfs" [pid 6806] <... openat resumed>) = 4 [pid 6806] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... unlink resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6803, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6806] <... ioctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./286/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./286/binderfs") = 0 [pid 5034] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6805] <... mount resumed>) = 0 [pid 6805] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6806] close(3 [pid 6805] chdir("./file0" [pid 6806] <... close resumed>) = 0 [pid 6805] <... chdir resumed>) = 0 [pid 6804] <... mount resumed>) = 0 [pid 6805] ioctl(4, LOOP_CLR_FD [pid 6804] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6805] <... ioctl resumed>) = 0 [pid 6806] mkdir("./file0", 0777 [ 250.660876][ T6805] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 250.693143][ T6806] loop3: detected capacity change from 0 to 4096 [pid 6805] close(4 [pid 6806] <... mkdir resumed>) = 0 [pid 6805] <... close resumed>) = 0 [pid 6804] <... openat resumed>) = 3 [pid 6805] exit_group(0 [pid 6804] chdir("./file0" [pid 6805] <... exit_group resumed>) = ? [pid 6804] <... chdir resumed>) = 0 [pid 6806] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6805] +++ exited with 0 +++ [pid 6804] ioctl(4, LOOP_CLR_FD) = 0 [pid 6804] close(4 [pid 6807] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6804] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6805, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 6804] exit_group(0) = ? [pid 5034] <... umount2 resumed>) = 0 [pid 6804] +++ exited with 0 +++ [pid 5034] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6804, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5034] newfstatat(AT_FDCWD, "./286/file0", [pid 5033] umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(3, [pid 5034] umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 4 [pid 5033] newfstatat(AT_FDCWD, "./288/binderfs", [pid 5034] newfstatat(4, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] unlink("./288/binderfs" [pid 5034] getdents64(4, [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(4, [pid 5033] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] newfstatat(3, "", [pid 5034] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5034] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] rmdir("./286/file0" [pid 5030] newfstatat(AT_FDCWD, "./293/file0", [pid 5029] umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./294/binderfs", [pid 5034] getdents64(3, [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./294/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... unlink resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5029] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6806] <... mount resumed>) = 0 [pid 6806] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6806] chdir("./file0" [pid 5034] close(3 [pid 6806] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6806] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] rmdir("./286" [pid 6806] close(4 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5034] mkdir("./287", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6806] <... close resumed>) = 0 [pid 6806] exit_group(0 [pid 5034] <... mkdir resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6806] <... exit_group resumed>) = ? [pid 5030] getdents64(4, [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [ 250.768987][ T6806] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6806] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6806, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5032] umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./295/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./295/binderfs" [pid 5030] rmdir("./293/file0" [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./293") = 0 [pid 5030] mkdir("./294", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6807] <... write resumed>) = 2097152 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 6807] munmap(0x7ff0df171000, 138412032 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 6808 attached [pid 5029] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6808] set_robust_list(0x55555635e660, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6808 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6808] <... set_robust_list resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./294/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6808] chdir("./294" [pid 5029] openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6808] <... chdir resumed>) = 0 [pid 6808] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6807] <... munmap resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 6808] <... prctl resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 6808] setpgid(0, 0 [pid 6807] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6808] <... setpgid resumed>) = 0 [pid 5029] getdents64(4, [pid 6808] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6807] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6807] ioctl(4, LOOP_SET_FD, 3 [pid 6808] <... openat resumed>) = 3 [pid 5029] getdents64(4, [pid 5033] <... umount2 resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./288/file0", [pid 6808] write(3, "1000", 4 [pid 5029] close(4 [pid 6808] <... write resumed>) = 4 [pid 6808] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 6808] <... close resumed>) = 0 [pid 5033] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./294/file0" [pid 6808] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6807] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 6808] <... symlink resumed>) = 0 [pid 6807] close(3 [pid 5034] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5029] getdents64(3, [pid 6807] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6807] mkdir("./file0", 0777 [pid 5034] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6808] memfd_create("syzkaller", 0 [pid 5034] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6807] <... mkdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] close(3 [pid 5033] getdents64(4, [pid 6808] <... memfd_create resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 6809 attached [pid 6807] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] close(4 [pid 6809] set_robust_list(0x55555635e660, 24 [pid 5033] <... close resumed>) = 0 [pid 6809] <... set_robust_list resumed>) = 0 [pid 5029] rmdir("./294" [pid 6809] chdir("./287" [pid 6808] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] rmdir("./288/file0" [pid 6808] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6809] <... chdir resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6809 [pid 6809] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5033] getdents64(3, [pid 6809] setpgid(0, 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6809] <... setpgid resumed>) = 0 [pid 5033] close(3 [pid 6809] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... close resumed>) = 0 [pid 6809] <... openat resumed>) = 3 [pid 5033] rmdir("./288" [pid 6809] write(3, "1000", 4 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./289", 0777) = 0 [pid 5029] mkdir("./295", 0777 [pid 5032] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6809] <... write resumed>) = 4 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6809] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... mkdir resumed>) = 0 [pid 6809] <... close resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./295/file0", [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6809] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6809] <... symlink resumed>) = 0 [pid 5032] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 6809] memfd_create("syzkaller", 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] close(3 [pid 5032] openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 4 [pid 5029] close(3) = 0 [pid 5032] newfstatat(4, "", [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6810 attached [pid 6809] <... memfd_create resumed>) = 3 [pid 6809] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6810 [pid 6809] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 6811 attached [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6811 [pid 6811] set_robust_list(0x55555635e660, 24 [pid 6810] set_robust_list(0x55555635e660, 24 [pid 6811] <... set_robust_list resumed>) = 0 [pid 6810] <... set_robust_list resumed>) = 0 [pid 6811] chdir("./295" [pid 6810] chdir("./289") = 0 [pid 6811] <... chdir resumed>) = 0 [ 250.891349][ T6807] loop2: detected capacity change from 0 to 4096 [ 250.926881][ T6807] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6811] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6810] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] getdents64(4, [pid 6811] <... prctl resumed>) = 0 [pid 6810] <... prctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6811] setpgid(0, 0 [pid 6810] setpgid(0, 0 [pid 5032] getdents64(4, [pid 6811] <... setpgid resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6811] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] close(4) = 0 [pid 6811] <... openat resumed>) = 3 [pid 5032] rmdir("./295/file0") = 0 [pid 5032] getdents64(3, [pid 6810] <... setpgid resumed>) = 0 [pid 6810] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6810] <... openat resumed>) = 3 [pid 5032] close(3) = 0 [pid 6810] write(3, "1000", 4 [pid 6811] write(3, "1000", 4) = 4 [pid 6810] <... write resumed>) = 4 [pid 6807] <... mount resumed>) = 0 [pid 6811] close(3 [pid 6810] close(3 [pid 6811] <... close resumed>) = 0 [pid 6810] <... close resumed>) = 0 [pid 6811] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6810] symlink("/dev/binderfs", "./binderfs" [pid 6807] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5032] rmdir("./295" [pid 6807] chdir("./file0") = 0 [pid 6807] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6807] close(4 [pid 6811] memfd_create("syzkaller", 0 [pid 6810] <... symlink resumed>) = 0 [pid 6807] <... close resumed>) = 0 [pid 5032] mkdir("./296", 0777 [pid 6811] <... memfd_create resumed>) = 3 [pid 6807] exit_group(0 [pid 6811] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6807] <... exit_group resumed>) = ? [pid 6807] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6807, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6810] memfd_create("syzkaller", 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6810] <... memfd_create resumed>) = 3 [pid 6808] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6810] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... openat resumed>) = 3 [pid 6810] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./292/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./292/binderfs") = 0 [pid 5031] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6812 attached [pid 6812] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6812 [pid 6812] <... set_robust_list resumed>) = 0 [pid 6812] chdir("./296" [pid 6809] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6812] <... chdir resumed>) = 0 [pid 6812] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6812] setpgid(0, 0) = 0 [pid 6812] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6812] write(3, "1000", 4) = 4 [pid 6812] close(3) = 0 [pid 6808] <... write resumed>) = 2097152 [pid 6812] symlink("/dev/binderfs", "./binderfs" [pid 6811] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6808] munmap(0x7ff0df171000, 138412032 [pid 6812] <... symlink resumed>) = 0 [pid 6808] <... munmap resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6812] memfd_create("syzkaller", 0 [pid 5031] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./292/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6808] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] getdents64(4, [pid 6808] <... openat resumed>) = 4 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./292/file0") = 0 [pid 6812] <... memfd_create resumed>) = 3 [pid 6808] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./292") = 0 [pid 5031] mkdir("./293", 0777) = 0 [pid 6812] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6808] <... ioctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6812] <... mmap resumed>) = 0x7ff0df171000 [pid 6808] close(3 [pid 5031] <... openat resumed>) = 3 [pid 6808] <... close resumed>) = 0 [pid 6808] mkdir("./file0", 0777 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6810] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6808] <... mkdir resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6813 attached [pid 6808] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6813] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6813 [pid 6813] chdir("./293" [pid 6809] <... write resumed>) = 2097152 [pid 6813] <... chdir resumed>) = 0 [ 251.156388][ T6808] loop1: detected capacity change from 0 to 4096 [pid 6813] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6813] setpgid(0, 0) = 0 [pid 6813] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6813] write(3, "1000", 4) = 4 [pid 6813] close(3) = 0 [pid 6813] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6809] munmap(0x7ff0df171000, 138412032 [pid 6813] memfd_create("syzkaller", 0 [pid 6809] <... munmap resumed>) = 0 [pid 6813] <... memfd_create resumed>) = 3 [pid 6813] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6811] <... write resumed>) = 2097152 [pid 6813] <... mmap resumed>) = 0x7ff0df171000 [pid 6811] munmap(0x7ff0df171000, 138412032) = 0 [pid 6809] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6811] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6809] <... openat resumed>) = 4 [ 251.196772][ T6808] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6811] <... openat resumed>) = 4 [pid 6809] ioctl(4, LOOP_SET_FD, 3 [pid 6811] ioctl(4, LOOP_SET_FD, 3 [pid 6810] <... write resumed>) = 2097152 [pid 6812] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6811] <... ioctl resumed>) = 0 [pid 6809] <... ioctl resumed>) = 0 [pid 6808] <... mount resumed>) = 0 [pid 6809] close(3) = 0 [pid 6809] mkdir("./file0", 0777) = 0 [pid 6808] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6810] munmap(0x7ff0df171000, 138412032 [pid 6808] <... openat resumed>) = 3 [pid 6811] close(3 [pid 6809] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6808] chdir("./file0" [pid 6811] <... close resumed>) = 0 [pid 6808] <... chdir resumed>) = 0 [pid 6811] mkdir("./file0", 0777 [ 251.240402][ T6809] loop5: detected capacity change from 0 to 4096 [ 251.244042][ T6811] loop0: detected capacity change from 0 to 4096 [pid 6808] ioctl(4, LOOP_CLR_FD [pid 6812] <... write resumed>) = 2097152 [pid 6811] <... mkdir resumed>) = 0 [pid 6808] <... ioctl resumed>) = 0 [pid 6812] munmap(0x7ff0df171000, 138412032 [pid 6811] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6808] close(4) = 0 [pid 6813] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6808] exit_group(0 [pid 6810] <... munmap resumed>) = 0 [pid 6810] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6808] <... exit_group resumed>) = ? [pid 6808] +++ exited with 0 +++ [pid 6812] <... munmap resumed>) = 0 [pid 6810] ioctl(4, LOOP_SET_FD, 3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6808, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6812] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6812] <... openat resumed>) = 4 [pid 6810] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6812] ioctl(4, LOOP_SET_FD, 3 [pid 6810] close(3 [ 251.295851][ T6809] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 251.324182][ T6811] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 251.338184][ T6810] loop4: detected capacity change from 0 to 4096 [pid 5030] openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6810] <... close resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 6810] mkdir("./file0", 0777) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6810] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./294/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./294/binderfs" [pid 6813] <... write resumed>) = 2097152 [pid 5030] <... unlink resumed>) = 0 [pid 6812] <... ioctl resumed>) = 0 [pid 6811] <... mount resumed>) = 0 [pid 5030] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6812] close(3 [pid 6811] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6812] <... close resumed>) = 0 [pid 6812] mkdir("./file0", 0777 [pid 6811] <... openat resumed>) = 3 [pid 6811] chdir("./file0" [pid 6812] <... mkdir resumed>) = 0 [pid 6811] <... chdir resumed>) = 0 [pid 6812] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6811] ioctl(4, LOOP_CLR_FD [pid 6809] <... mount resumed>) = 0 [pid 6811] <... ioctl resumed>) = 0 [pid 6811] close(4 [pid 6809] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6809] chdir("./file0") = 0 [pid 6809] ioctl(4, LOOP_CLR_FD) = 0 [pid 6809] close(4) = 0 [pid 6809] exit_group(0 [pid 6813] munmap(0x7ff0df171000, 138412032 [pid 6809] <... exit_group resumed>) = ? [pid 6811] <... close resumed>) = 0 [pid 6813] <... munmap resumed>) = 0 [pid 6811] exit_group(0) = ? [pid 6809] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6809, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5034] umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6811] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6811, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... umount2 resumed>) = 0 [pid 5034] umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6810] <... mount resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./287/binderfs", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6810] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6813] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] unlink("./287/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6813] <... openat resumed>) = 4 [pid 6810] <... openat resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [ 251.354131][ T6812] loop3: detected capacity change from 0 to 4096 [ 251.364213][ T6810] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 251.394110][ T6812] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5029] <... openat resumed>) = 3 [pid 6813] ioctl(4, LOOP_SET_FD, 3 [pid 6810] chdir("./file0" [pid 5034] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./294/file0", [pid 5029] newfstatat(3, "", [pid 6810] <... chdir resumed>) = 0 [pid 6810] ioctl(4, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6810] <... ioctl resumed>) = 0 [pid 6810] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(3, [pid 6810] <... close resumed>) = 0 [pid 6810] exit_group(0 [pid 5030] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6810] <... exit_group resumed>) = ? [pid 5029] umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6810] +++ exited with 0 +++ [pid 5030] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(4, "", [pid 5029] newfstatat(AT_FDCWD, "./295/binderfs", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6810, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5030] getdents64(4, [pid 5029] unlink("./295/binderfs" [pid 6812] <... mount resumed>) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... restart_syscall resumed>) = 0 [pid 6812] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] getdents64(4, [pid 5029] <... unlink resumed>) = 0 [pid 6812] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6812] chdir("./file0") = 0 [pid 5033] umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(4 [pid 6812] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 6812] close(4 [pid 6813] <... ioctl resumed>) = 0 [pid 6812] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] rmdir("./294/file0" [pid 6812] exit_group(0 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 6812] <... exit_group resumed>) = ? [pid 6813] close(3 [pid 5033] newfstatat(3, "", [pid 5030] getdents64(3, [pid 6813] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6813] mkdir("./file0", 0777 [pid 6812] +++ exited with 0 +++ [pid 5033] getdents64(3, [pid 5030] close(3 [pid 6813] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 6813] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6812, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] rmdir("./294" [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 251.426585][ T6813] loop2: detected capacity change from 0 to 4096 [pid 5032] umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./289/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./287/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] getdents64(4, [pid 5033] unlink("./289/binderfs" [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... unlink resumed>) = 0 [pid 5030] mkdir("./295", 0777) = 0 [pid 5034] getdents64(4, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5034] close(4 [pid 5032] openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] rmdir("./287/file0" [pid 5030] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 6814 attached [pid 5034] getdents64(3, [pid 6814] set_robust_list(0x55555635e660, 24 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./287" [pid 6814] <... set_robust_list resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6814 [pid 6814] chdir("./295" [pid 5034] mkdir("./288", 0777 [pid 6814] <... chdir resumed>) = 0 [pid 6814] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... mkdir resumed>) = 0 [pid 6814] <... prctl resumed>) = 0 [pid 6814] setpgid(0, 0) = 0 [pid 6814] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(3, [pid 6814] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6814] write(3, "1000", 4 [pid 5032] umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6814] <... write resumed>) = 4 [pid 5034] <... openat resumed>) = 3 [pid 6814] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6814] <... close resumed>) = 0 [pid 6814] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6814] <... symlink resumed>) = 0 [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(AT_FDCWD, "./296/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./296/binderfs") = 0 [pid 5032] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6814] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6815 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6815 [pid 6815] set_robust_list(0x55555635e660, 24) = 0 [pid 6814] <... memfd_create resumed>) = 3 [pid 6815] chdir("./288" [pid 6814] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6815] <... chdir resumed>) = 0 [pid 6814] <... mmap resumed>) = 0x7ff0df171000 [ 251.472118][ T6813] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6815] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6815] setpgid(0, 0) = 0 [pid 6815] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6815] write(3, "1000", 4) = 4 [pid 6815] close(3) = 0 [pid 6815] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6815] memfd_create("syzkaller", 0) = 3 [pid 6815] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] <... umount2 resumed>) = 0 [pid 6813] <... mount resumed>) = 0 [pid 5029] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./295/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6813] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6813] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6813] chdir("./file0" [pid 5029] openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6813] <... chdir resumed>) = 0 [pid 6813] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 6813] <... ioctl resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6813] close(4 [pid 5029] getdents64(4, [pid 6813] <... close resumed>) = 0 [pid 6813] exit_group(0 [pid 5033] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6813] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 6813] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./289/file0", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./296/file0", [pid 5029] close(4 [pid 5033] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6813, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... restart_syscall resumed>) = 0 [pid 5029] rmdir("./295/file0") = 0 [pid 5032] openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5032] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(4, "", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 6814] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... openat resumed>) = 4 [pid 5032] getdents64(4, [pid 5029] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] rmdir("./295" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5033] getdents64(4, [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] close(4 [pid 5029] mkdir("./296", 0777 [pid 5033] getdents64(4, [pid 5032] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./296/file0" [pid 5031] newfstatat(3, "", [pid 5029] <... mkdir resumed>) = 0 [pid 5033] close(4) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] rmdir("./289/file0" [pid 5032] getdents64(3, [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 5032] close(3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5033] close(3 [pid 5032] rmdir("./296" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./293/binderfs", [pid 5033] rmdir("./289" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 5031] unlink("./293/binderfs") = 0 [pid 5031] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... rmdir resumed>) = 0 [pid 5032] mkdir("./297", 0777 [pid 5029] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5033] mkdir("./290", 0777 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... mkdir resumed>) = 0 [pid 6815] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6816 [pid 5032] close(3./strace-static-x86_64: Process 6816 attached [pid 5033] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6816] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6816] chdir("./296" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6817 [pid 6816] <... chdir resumed>) = 0 [pid 5033] close(3 [pid 6816] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... close resumed>) = 0 [pid 6816] <... prctl resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6816] setpgid(0, 0./strace-static-x86_64: Process 6818 attached ) = 0 ./strace-static-x86_64: Process 6817 attached [pid 6817] set_robust_list(0x55555635e660, 24) = 0 [pid 6817] chdir("./297") = 0 [pid 6817] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6818] set_robust_list(0x55555635e660, 24 [pid 6817] <... prctl resumed>) = 0 [pid 6816] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6818 [pid 5031] <... umount2 resumed>) = 0 [pid 6818] <... set_robust_list resumed>) = 0 [pid 6817] setpgid(0, 0 [pid 6816] <... openat resumed>) = 3 [pid 6817] <... setpgid resumed>) = 0 [pid 6818] chdir("./290" [pid 6817] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6816] write(3, "1000", 4 [pid 6818] <... chdir resumed>) = 0 [pid 6816] <... write resumed>) = 4 [pid 6818] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6817] <... openat resumed>) = 3 [pid 6816] close(3 [pid 6814] <... write resumed>) = 2097152 [pid 6817] write(3, "1000", 4 [pid 6816] <... close resumed>) = 0 [pid 6816] symlink("/dev/binderfs", "./binderfs" [pid 6817] <... write resumed>) = 4 [pid 6817] close(3 [pid 6816] <... symlink resumed>) = 0 [pid 6817] <... close resumed>) = 0 [pid 6818] <... prctl resumed>) = 0 [pid 6818] setpgid(0, 0 [pid 6817] symlink("/dev/binderfs", "./binderfs" [pid 6818] <... setpgid resumed>) = 0 [pid 6817] <... symlink resumed>) = 0 [pid 6817] memfd_create("syzkaller", 0 [pid 6818] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6817] <... memfd_create resumed>) = 3 [pid 6817] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6818] <... openat resumed>) = 3 [pid 6818] write(3, "1000", 4) = 4 [pid 6816] memfd_create("syzkaller", 0 [pid 6815] <... write resumed>) = 2097152 [pid 6814] munmap(0x7ff0df171000, 138412032 [pid 6818] close(3) = 0 [pid 6814] <... munmap resumed>) = 0 [pid 5031] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6818] symlink("/dev/binderfs", "./binderfs" [pid 6816] <... memfd_create resumed>) = 3 [pid 6818] <... symlink resumed>) = 0 [pid 6816] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6816] <... mmap resumed>) = 0x7ff0df171000 [pid 6818] memfd_create("syzkaller", 0 [pid 5031] newfstatat(AT_FDCWD, "./293/file0", [pid 6814] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6814] <... openat resumed>) = 4 [pid 5031] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6814] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6818] <... memfd_create resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6818] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6815] munmap(0x7ff0df171000, 138412032 [pid 5031] <... openat resumed>) = 4 [pid 6815] <... munmap resumed>) = 0 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 6815] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] rmdir("./293/file0" [pid 6815] <... openat resumed>) = 4 [pid 5031] <... rmdir resumed>) = 0 [pid 6815] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 6814] <... ioctl resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6814] close(3 [pid 5031] rmdir("./293" [pid 6814] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6814] mkdir("./file0", 0777 [pid 5031] mkdir("./294", 0777 [pid 6814] <... mkdir resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6814] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [ 251.777101][ T6814] loop1: detected capacity change from 0 to 4096 [ 251.801896][ T6815] loop5: detected capacity change from 0 to 4096 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6819 attached [pid 6819] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6819 [pid 6819] <... set_robust_list resumed>) = 0 [pid 6819] chdir("./294") = 0 [pid 6819] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6819] setpgid(0, 0) = 0 [pid 6819] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6815] <... ioctl resumed>) = 0 [pid 6819] <... openat resumed>) = 3 [pid 6815] close(3 [pid 6819] write(3, "1000", 4 [pid 6815] <... close resumed>) = 0 [pid 6819] <... write resumed>) = 4 [pid 6815] mkdir("./file0", 0777 [pid 6819] close(3 [pid 6815] <... mkdir resumed>) = 0 [pid 6819] <... close resumed>) = 0 [ 251.819460][ T6814] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6817] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6815] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6819] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6816] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6819] memfd_create("syzkaller", 0) = 3 [pid 6819] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 251.874309][ T6815] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6818] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6816] <... write resumed>) = 2097152 [pid 6814] <... mount resumed>) = 0 [pid 6818] <... write resumed>) = 2097152 [pid 6816] munmap(0x7ff0df171000, 138412032 [pid 6818] munmap(0x7ff0df171000, 138412032 [pid 6814] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6814] chdir("./file0") = 0 [pid 6816] <... munmap resumed>) = 0 [pid 6814] ioctl(4, LOOP_CLR_FD) = 0 [pid 6814] close(4 [pid 6818] <... munmap resumed>) = 0 [pid 6816] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6814] <... close resumed>) = 0 [pid 6818] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6816] <... openat resumed>) = 4 [pid 6819] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6818] <... openat resumed>) = 4 [pid 6817] <... write resumed>) = 2097152 [pid 6816] ioctl(4, LOOP_SET_FD, 3 [pid 6814] exit_group(0 [pid 6818] ioctl(4, LOOP_SET_FD, 3 [pid 6814] <... exit_group resumed>) = ? [pid 6814] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6814, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6817] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./295/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./295/binderfs") = 0 [pid 5030] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6817] <... munmap resumed>) = 0 [pid 6817] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6817] ioctl(4, LOOP_SET_FD, 3 [pid 6815] <... mount resumed>) = 0 [ 251.972666][ T6818] loop4: detected capacity change from 0 to 4096 [ 251.980532][ T6816] loop0: detected capacity change from 0 to 4096 [pid 6815] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6819] <... write resumed>) = 2097152 [pid 6818] <... ioctl resumed>) = 0 [pid 6816] <... ioctl resumed>) = 0 [pid 6815] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 6819] munmap(0x7ff0df171000, 138412032 [pid 6818] close(3 [pid 6817] <... ioctl resumed>) = 0 [pid 6816] close(3 [pid 6815] chdir("./file0" [pid 5030] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6818] <... close resumed>) = 0 [pid 6817] close(3 [pid 6816] <... close resumed>) = 0 [pid 6815] <... chdir resumed>) = 0 [pid 6816] mkdir("./file0", 0777 [pid 6819] <... munmap resumed>) = 0 [pid 6818] mkdir("./file0", 0777 [pid 6815] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6819] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6818] <... mkdir resumed>) = 0 [pid 6817] <... close resumed>) = 0 [pid 6816] <... mkdir resumed>) = 0 [pid 6815] close(4 [pid 5030] newfstatat(AT_FDCWD, "./295/file0", [pid 6819] <... openat resumed>) = 4 [pid 6818] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6817] mkdir("./file0", 0777 [pid 6816] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6815] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6819] ioctl(4, LOOP_SET_FD, 3 [pid 6817] <... mkdir resumed>) = 0 [pid 6815] exit_group(0) = ? [pid 6817] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6815] +++ exited with 0 +++ [pid 6819] <... ioctl resumed>) = 0 [pid 5030] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6819] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6815, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6819] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 252.014113][ T6817] loop3: detected capacity change from 0 to 4096 [ 252.036832][ T6816] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 252.036888][ T6819] loop2: detected capacity change from 0 to 4096 [pid 6819] mkdir("./file0", 0777) = 0 [pid 5034] umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./288/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./288/binderfs") = 0 [pid 5034] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6819] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5034] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./295/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./288/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./288/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./288") = 0 [pid 5034] mkdir("./289", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6817] <... mount resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6817] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 6817] <... openat resumed>) = 3 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6817] chdir("./file0" [pid 5030] getdents64(3, [pid 6817] <... chdir resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6820 [ 252.064611][ T6817] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 252.073826][ T6818] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 252.092100][ T6819] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). ./strace-static-x86_64: Process 6820 attached [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6820] set_robust_list(0x55555635e660, 24 [pid 6817] ioctl(4, LOOP_CLR_FD [pid 5030] close(3 [pid 6820] <... set_robust_list resumed>) = 0 [pid 6817] <... ioctl resumed>) = 0 [pid 6820] chdir("./289" [pid 5030] <... close resumed>) = 0 [pid 6820] <... chdir resumed>) = 0 [pid 6820] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6820] setpgid(0, 0) = 0 [pid 6817] close(4 [pid 5030] rmdir("./295" [pid 6820] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6817] <... close resumed>) = 0 [pid 6816] <... mount resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6820] <... openat resumed>) = 3 [pid 6818] <... mount resumed>) = 0 [pid 6817] exit_group(0 [pid 5030] mkdir("./296", 0777 [pid 6820] write(3, "1000", 4 [pid 6817] <... exit_group resumed>) = ? [pid 6820] <... write resumed>) = 4 [pid 6818] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6820] close(3 [pid 5030] <... mkdir resumed>) = 0 [pid 6820] <... close resumed>) = 0 [pid 6818] <... openat resumed>) = 3 [pid 6820] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6819] <... mount resumed>) = 0 [pid 6818] chdir("./file0" [pid 6817] +++ exited with 0 +++ [pid 6816] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6817, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6818] <... chdir resumed>) = 0 [pid 6816] <... openat resumed>) = 3 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 6820] memfd_create("syzkaller", 0 [pid 6819] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6818] ioctl(4, LOOP_CLR_FD [pid 6816] chdir("./file0" [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6819] <... openat resumed>) = 3 [pid 6816] <... chdir resumed>) = 0 [pid 6818] <... ioctl resumed>) = 0 [pid 6819] chdir("./file0" [pid 6818] close(4 [pid 5032] umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6819] <... chdir resumed>) = 0 [pid 6818] <... close resumed>) = 0 [pid 6816] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6819] ioctl(4, LOOP_CLR_FD [pid 6818] exit_group(0 [pid 6816] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 6820] <... memfd_create resumed>) = 3 [pid 6819] <... ioctl resumed>) = 0 [pid 6818] <... exit_group resumed>) = ? [pid 6816] close(4 [pid 5032] <... openat resumed>) = 3 [pid 6820] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6819] close(4 [pid 6818] +++ exited with 0 +++ [pid 6816] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6820] <... mmap resumed>) = 0x7ff0df171000 [pid 6816] exit_group(0 [pid 5032] newfstatat(3, "", [pid 6816] <... exit_group resumed>) = ? [pid 6819] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6818, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6819] exit_group(0 [pid 5033] umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6816] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./297/binderfs", [pid 5030] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6816, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6819] <... exit_group resumed>) = ? [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] unlink("./297/binderfs" [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5032] <... unlink resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... restart_syscall resumed>) = 0 ./strace-static-x86_64: Process 6821 attached [pid 5033] newfstatat(3, "", [pid 6821] set_robust_list(0x55555635e660, 24 [pid 6819] +++ exited with 0 +++ [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6821 [pid 6821] <... set_robust_list resumed>) = 0 [pid 5033] getdents64(3, [pid 6821] chdir("./296") = 0 [pid 5029] umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6819, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6821] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6821] <... prctl resumed>) = 0 [pid 6821] setpgid(0, 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./290/binderfs", [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./294/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./294/binderfs") = 0 [pid 6821] <... setpgid resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(3, "", [pid 6821] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5033] unlink("./290/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6821] write(3, "1000", 4) = 4 [pid 5033] <... unlink resumed>) = 0 [pid 5029] getdents64(3, [pid 6821] close(3) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6821] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6821] memfd_create("syzkaller", 0 [pid 5033] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6821] <... memfd_create resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./296/binderfs", [pid 6821] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6821] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] unlink("./296/binderfs" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./297/file0", [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6820] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./297/file0") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./294/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./294/file0" [pid 5032] getdents64(3, [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] close(3 [pid 5031] rmdir("./294" [pid 5032] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] rmdir("./297" [pid 5031] mkdir("./295", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./298", 0777 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6822 ./strace-static-x86_64: Process 6822 attached [pid 5032] <... mkdir resumed>) = 0 [pid 6822] set_robust_list(0x55555635e660, 24 [pid 6821] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6822] <... set_robust_list resumed>) = 0 [pid 6822] chdir("./295") = 0 [pid 5032] <... openat resumed>) = 3 [pid 6822] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6822] <... prctl resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6822] setpgid(0, 0 [pid 5032] <... close resumed>) = 0 [pid 6822] <... setpgid resumed>) = 0 [pid 6820] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6820] munmap(0x7ff0df171000, 138412032) = 0 [pid 6822] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6823 [pid 6822] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 6823 attached [pid 6823] set_robust_list(0x55555635e660, 24 [pid 6822] close(3 [pid 5033] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 6822] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6822] symlink("/dev/binderfs", "./binderfs" [pid 5033] newfstatat(AT_FDCWD, "./290/file0", [pid 5029] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6823] <... set_robust_list resumed>) = 0 [pid 6822] <... symlink resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6823] chdir("./298" [pid 5033] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6823] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./296/file0", [pid 6823] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6823] <... prctl resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6823] setpgid(0, 0 [pid 6822] memfd_create("syzkaller", 0 [pid 6820] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... openat resumed>) = 4 [pid 6820] <... openat resumed>) = 4 [pid 6820] ioctl(4, LOOP_SET_FD, 3 [pid 6823] <... setpgid resumed>) = 0 [pid 5029] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(4, "", [pid 6823] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6822] <... memfd_create resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6822] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] getdents64(4, [pid 6823] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 6823] write(3, "1000", 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] newfstatat(4, "", [pid 6822] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6823] <... write resumed>) = 4 [pid 6823] close(3 [pid 5029] getdents64(4, [pid 6823] <... close resumed>) = 0 [pid 6823] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6823] memfd_create("syzkaller", 0 [pid 6820] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 6820] close(3 [pid 5033] close(4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6820] <... close resumed>) = 0 [pid 5029] close(4 [pid 5033] <... close resumed>) = 0 [pid 6820] mkdir("./file0", 0777 [pid 5033] rmdir("./290/file0" [pid 5029] <... close resumed>) = 0 [pid 6823] <... memfd_create resumed>) = 3 [pid 5029] rmdir("./296/file0" [pid 6823] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6820] <... mkdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6823] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [ 252.415743][ T6820] loop5: detected capacity change from 0 to 4096 [pid 6821] <... write resumed>) = 2097152 [pid 6820] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 5033] close(3) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] rmdir("./290" [pid 5029] close(3 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./296" [pid 6821] munmap(0x7ff0df171000, 138412032 [pid 5033] mkdir("./291", 0777 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./297", 0777 [pid 6821] <... munmap resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6821] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6821] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 6824 attached [pid 5033] <... openat resumed>) = 3 [pid 6822] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6824] set_robust_list(0x55555635e660, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6824 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6824] <... set_robust_list resumed>) = 0 [pid 5033] close(3) = 0 [pid 6824] chdir("./297" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6821] <... ioctl resumed>) = 0 [pid 6821] close(3./strace-static-x86_64: Process 6825 attached ) = 0 [pid 6825] set_robust_list(0x55555635e660, 24 [pid 6821] mkdir("./file0", 0777 [pid 6825] <... set_robust_list resumed>) = 0 [pid 6821] <... mkdir resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6825 [pid 6825] chdir("./291" [pid 6821] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6825] <... chdir resumed>) = 0 [ 252.458755][ T6820] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 252.485098][ T6821] loop1: detected capacity change from 0 to 4096 [pid 6824] <... chdir resumed>) = 0 [pid 6825] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6824] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6825] setpgid(0, 0 [pid 6824] <... prctl resumed>) = 0 [pid 6825] <... setpgid resumed>) = 0 [pid 6825] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6824] setpgid(0, 0 [pid 6825] <... openat resumed>) = 3 [pid 6824] <... setpgid resumed>) = 0 [pid 6825] write(3, "1000", 4 [pid 6824] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6825] <... write resumed>) = 4 [pid 6825] close(3 [pid 6824] <... openat resumed>) = 3 [pid 6825] <... close resumed>) = 0 [pid 6824] write(3, "1000", 4 [pid 6825] symlink("/dev/binderfs", "./binderfs" [pid 6824] <... write resumed>) = 4 [pid 6824] close(3) = 0 [pid 6825] <... symlink resumed>) = 0 [pid 6824] symlink("/dev/binderfs", "./binderfs" [pid 6825] memfd_create("syzkaller", 0 [pid 6824] <... symlink resumed>) = 0 [pid 6825] <... memfd_create resumed>) = 3 [pid 6825] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6824] memfd_create("syzkaller", 0) = 3 [pid 6824] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6823] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6824] <... mmap resumed>) = 0x7ff0df171000 [pid 6822] <... write resumed>) = 2097152 [ 252.511210][ T6821] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6822] munmap(0x7ff0df171000, 138412032 [pid 6820] <... mount resumed>) = 0 [pid 6822] <... munmap resumed>) = 0 [pid 6820] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6820] chdir("./file0" [pid 6822] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6820] <... chdir resumed>) = 0 [pid 6822] <... openat resumed>) = 4 [pid 6820] ioctl(4, LOOP_CLR_FD [pid 6822] ioctl(4, LOOP_SET_FD, 3 [pid 6820] <... ioctl resumed>) = 0 [pid 6820] close(4) = 0 [pid 6820] exit_group(0) = ? [pid 6820] +++ exited with 0 +++ [pid 6821] <... mount resumed>) = 0 [pid 6821] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6820, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 6821] <... openat resumed>) = 3 [pid 6821] chdir("./file0") = 0 [pid 6821] ioctl(4, LOOP_CLR_FD) = 0 [pid 6821] close(4) = 0 [pid 6821] exit_group(0) = ? [pid 6821] +++ exited with 0 +++ [pid 6822] <... ioctl resumed>) = 0 [pid 5034] umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6821, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6822] close(3 [pid 5030] newfstatat(3, "", [pid 6823] <... write resumed>) = 2097152 [pid 6822] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6822] mkdir("./file0", 0777 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6825] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6822] <... mkdir resumed>) = 0 [ 252.587108][ T6822] loop2: detected capacity change from 0 to 4096 [pid 5034] umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6824] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6823] munmap(0x7ff0df171000, 138412032 [pid 6822] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./289/binderfs", [pid 5030] getdents64(3, [pid 6823] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6823] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6823] ioctl(4, LOOP_SET_FD, 3 [pid 5034] unlink("./289/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./296/binderfs", [pid 6823] <... ioctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./296/binderfs" [pid 5034] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6823] close(3) = 0 [pid 6823] mkdir("./file0", 0777) = 0 [pid 6823] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6825] <... write resumed>) = 2097152 [pid 6824] <... write resumed>) = 2097152 [pid 6825] munmap(0x7ff0df171000, 138412032 [pid 6824] munmap(0x7ff0df171000, 138412032) = 0 [pid 6824] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 252.664806][ T6822] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 252.683754][ T6823] loop3: detected capacity change from 0 to 4096 [ 252.704449][ T6823] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6824] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... umount2 resumed>) = 0 [pid 6825] <... munmap resumed>) = 0 [pid 6825] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... umount2 resumed>) = 0 [pid 5030] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6825] <... openat resumed>) = 4 [pid 5034] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6823] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6825] ioctl(4, LOOP_SET_FD, 3 [pid 6823] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./296/file0", [pid 6823] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6823] chdir("./file0" [pid 5030] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6823] <... chdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6823] ioctl(4, LOOP_CLR_FD [pid 5030] openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6823] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6823] close(4 [pid 5030] newfstatat(4, "", [pid 6823] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6823] exit_group(0 [pid 5030] getdents64(4, [pid 6823] <... exit_group resumed>) = ? [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6823] +++ exited with 0 +++ [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(AT_FDCWD, "./289/file0", [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6823, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5030] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./296/file0") = 0 [pid 6822] <... mount resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./296") = 0 [pid 5030] mkdir("./297", 0777 [pid 5034] umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 5032] umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6822] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6824] <... ioctl resumed>) = 0 [pid 6822] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5032] openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6824] close(3 [pid 6822] chdir("./file0" [pid 5034] newfstatat(4, "", [pid 6824] <... close resumed>) = 0 [pid 6822] <... chdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6824] mkdir("./file0", 0777 [pid 6822] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6825] <... ioctl resumed>) = 0 [pid 6824] <... mkdir resumed>) = 0 [pid 6822] <... ioctl resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] newfstatat(3, "", [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] getdents64(3, [pid 6822] close(4 [pid 5030] <... ioctl resumed>) = 0 [pid 6822] <... close resumed>) = 0 [pid 5034] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(3 [pid 6825] close(3 [pid 6824] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6822] exit_group(0 [pid 5034] <... close resumed>) = 0 [ 252.738571][ T6824] loop0: detected capacity change from 0 to 4096 [ 252.753936][ T6825] loop4: detected capacity change from 0 to 4096 [pid 5032] umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6825] <... close resumed>) = 0 [pid 6822] <... exit_group resumed>) = ? [pid 5034] rmdir("./289/file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./298/binderfs", [pid 6825] mkdir("./file0", 0777) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] getdents64(3, [pid 5032] unlink("./298/binderfs" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6825] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6822] +++ exited with 0 +++ [pid 5034] close(3 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./289" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6822, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5034] <... rmdir resumed>) = 0 [pid 5031] umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] <... close resumed>) = 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./295/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./295/binderfs") = 0 [pid 5031] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./290", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6826 attached ) = -1 EINVAL (Invalid argument) [pid 6826] set_robust_list(0x55555635e660, 24 [pid 5032] newfstatat(AT_FDCWD, "./298/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6826] <... set_robust_list resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6826 [pid 5032] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6826] chdir("./290" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6827 attached [pid 6827] set_robust_list(0x55555635e660, 24) = 0 [pid 6827] chdir("./297") = 0 [pid 6827] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6826] <... chdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6827 [pid 6827] <... prctl resumed>) = 0 [pid 6827] setpgid(0, 0 [pid 5032] <... openat resumed>) = 4 [pid 6827] <... setpgid resumed>) = 0 [ 252.794554][ T6824] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 252.814152][ T6825] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] newfstatat(4, "", [pid 6827] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6826] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6826] <... prctl resumed>) = 0 [pid 5032] getdents64(4, [pid 6827] <... openat resumed>) = 3 [pid 6826] setpgid(0, 0 [pid 6827] write(3, "1000", 4 [pid 6826] <... setpgid resumed>) = 0 [pid 6827] <... write resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6827] close(3 [pid 5032] getdents64(4, [pid 6827] <... close resumed>) = 0 [pid 6827] symlink("/dev/binderfs", "./binderfs" [pid 6826] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6827] <... symlink resumed>) = 0 [pid 5032] close(4 [pid 6827] memfd_create("syzkaller", 0 [pid 6826] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./298/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6826] write(3, "1000", 4 [pid 6827] <... memfd_create resumed>) = 3 [pid 6824] <... mount resumed>) = 0 [pid 5032] close(3 [pid 6827] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6826] <... write resumed>) = 4 [pid 6824] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 6827] <... mmap resumed>) = 0x7ff0df171000 [pid 6826] close(3 [pid 6824] <... openat resumed>) = 3 [pid 5032] rmdir("./298" [pid 6826] <... close resumed>) = 0 [pid 6824] chdir("./file0" [pid 5032] <... rmdir resumed>) = 0 [pid 6826] symlink("/dev/binderfs", "./binderfs" [pid 5032] mkdir("./299", 0777 [pid 6826] <... symlink resumed>) = 0 [pid 6824] <... chdir resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6824] ioctl(4, LOOP_CLR_FD [pid 5032] <... openat resumed>) = 3 [pid 6824] <... ioctl resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = 0 [pid 6826] memfd_create("syzkaller", 0 [pid 6824] close(4 [pid 5032] <... ioctl resumed>) = 0 [pid 5032] close(3) = 0 [pid 6826] <... memfd_create resumed>) = 3 [pid 6824] <... close resumed>) = 0 [pid 6824] exit_group(0) = ? [pid 5031] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6826] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6824] +++ exited with 0 +++ [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./295/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6824, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- ./strace-static-x86_64: Process 6828 attached [pid 5029] umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6828] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6828 [pid 5031] newfstatat(4, "", [pid 5029] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6828] chdir("./299" [pid 5031] getdents64(4, [pid 5029] newfstatat(3, "", [pid 6826] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./295/file0" [pid 6828] <... chdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6828] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6828] <... prctl resumed>) = 0 [pid 5029] umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6828] setpgid(0, 0 [pid 5031] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./297/binderfs", [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./297/binderfs") = 0 [pid 5031] rmdir("./295") = 0 [pid 5031] mkdir("./296", 0777 [pid 6828] <... setpgid resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6828] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6828] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 6828] write(3, "1000", 4 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6828] <... write resumed>) = 4 [pid 6828] close(3) = 0 [pid 6828] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6829 [pid 6828] <... symlink resumed>) = 0 ./strace-static-x86_64: Process 6829 attached [pid 6829] set_robust_list(0x55555635e660, 24) = 0 [pid 6829] chdir("./296" [pid 6828] memfd_create("syzkaller", 0 [pid 6829] <... chdir resumed>) = 0 [pid 6829] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6829] setpgid(0, 0) = 0 [pid 6825] <... mount resumed>) = 0 [pid 6829] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6829] write(3, "1000", 4 [pid 6828] <... memfd_create resumed>) = 3 [pid 6827] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6825] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6829] <... write resumed>) = 4 [pid 6829] close(3 [pid 6828] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6825] <... openat resumed>) = 3 [pid 6829] <... close resumed>) = 0 [pid 6825] chdir("./file0" [pid 6829] symlink("/dev/binderfs", "./binderfs" [pid 6825] <... chdir resumed>) = 0 [pid 6829] <... symlink resumed>) = 0 [pid 6828] <... mmap resumed>) = 0x7ff0df171000 [pid 6829] memfd_create("syzkaller", 0 [pid 6825] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6825] close(4) = 0 [pid 6825] exit_group(0 [pid 6829] <... memfd_create resumed>) = 3 [pid 6829] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6825] <... exit_group resumed>) = ? [pid 5029] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./297/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6825] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6825, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} --- [pid 5029] openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 5033] umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(4, [pid 5033] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] newfstatat(3, "", [pid 5029] close(4) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] rmdir("./297/file0" [pid 5033] getdents64(3, [pid 6826] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... rmdir resumed>) = 0 [pid 6827] <... write resumed>) = 2097152 [pid 5033] umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 5033] newfstatat(AT_FDCWD, "./291/binderfs", [pid 5029] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] rmdir("./297" [pid 5033] unlink("./291/binderfs" [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./298", 0777 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6827] munmap(0x7ff0df171000, 138412032) = 0 [pid 6827] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6830 ./strace-static-x86_64: Process 6830 attached [pid 6827] <... openat resumed>) = 4 [pid 6830] set_robust_list(0x55555635e660, 24 [pid 6828] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6830] <... set_robust_list resumed>) = 0 [pid 6827] ioctl(4, LOOP_SET_FD, 3 [pid 6830] chdir("./298" [pid 6829] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6826] <... write resumed>) = 2097152 [pid 6830] <... chdir resumed>) = 0 [pid 6830] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6826] munmap(0x7ff0df171000, 138412032 [pid 6830] <... prctl resumed>) = 0 [pid 6830] setpgid(0, 0) = 0 [pid 6830] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6826] <... munmap resumed>) = 0 [pid 6830] <... openat resumed>) = 3 [pid 6827] <... ioctl resumed>) = 0 [pid 6830] write(3, "1000", 4 [pid 6827] close(3 [pid 6826] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6830] <... write resumed>) = 4 [pid 6830] close(3 [pid 6826] <... openat resumed>) = 4 [pid 6830] <... close resumed>) = 0 [pid 6826] ioctl(4, LOOP_SET_FD, 3 [pid 6830] symlink("/dev/binderfs", "./binderfs" [pid 6827] <... close resumed>) = 0 [pid 6827] mkdir("./file0", 0777) = 0 [ 253.118720][ T6827] loop1: detected capacity change from 0 to 4096 [ 253.154587][ T6826] loop5: detected capacity change from 0 to 4096 [pid 6827] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6830] <... symlink resumed>) = 0 [pid 6829] <... write resumed>) = 2097152 [pid 6828] <... write resumed>) = 2097152 [pid 6826] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6830] memfd_create("syzkaller", 0 [pid 6828] munmap(0x7ff0df171000, 138412032 [pid 6826] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6830] <... memfd_create resumed>) = 3 [pid 6826] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./291/file0", [pid 6830] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6826] mkdir("./file0", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6830] <... mmap resumed>) = 0x7ff0df171000 [pid 6826] <... mkdir resumed>) = 0 [pid 5033] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6826] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6828] <... munmap resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", [pid 6828] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6828] <... openat resumed>) = 4 [pid 5033] getdents64(4, [pid 6829] munmap(0x7ff0df171000, 138412032) = 0 [pid 6829] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6828] ioctl(4, LOOP_SET_FD, 3 [ 253.162033][ T6827] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 253.186537][ T6826] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 253.210462][ T6828] loop3: detected capacity change from 0 to 4096 [pid 6829] ioctl(4, LOOP_SET_FD, 3 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 6828] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./291/file0") = 0 [pid 6828] close(3 [pid 6827] <... mount resumed>) = 0 [pid 5033] getdents64(3, [pid 6828] <... close resumed>) = 0 [pid 6827] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6828] mkdir("./file0", 0777 [pid 5033] close(3 [pid 6828] <... mkdir resumed>) = 0 [pid 6827] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 6828] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6827] chdir("./file0" [ 253.215665][ T6829] loop2: detected capacity change from 0 to 4096 [pid 5033] rmdir("./291" [pid 6827] <... chdir resumed>) = 0 [pid 6827] ioctl(4, LOOP_CLR_FD) = 0 [pid 6827] close(4 [pid 6829] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6829] close(3) = 0 [pid 6829] mkdir("./file0", 0777) = 0 [pid 6829] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6830] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6827] <... close resumed>) = 0 [pid 6826] <... mount resumed>) = 0 [pid 5033] mkdir("./292", 0777 [pid 6827] exit_group(0 [pid 6826] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6827] <... exit_group resumed>) = ? [pid 6826] <... openat resumed>) = 3 [pid 5033] <... mkdir resumed>) = 0 [pid 6827] +++ exited with 0 +++ [pid 6826] chdir("./file0" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6826] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6827, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 6826] ioctl(4, LOOP_CLR_FD [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6826] <... ioctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6826] close(4 [pid 5033] close(3 [pid 6830] <... write resumed>) = 2097152 [pid 6826] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6826] exit_group(0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./297/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./297/binderfs"./strace-static-x86_64: Process 6831 attached [pid 6826] <... exit_group resumed>) = ? [pid 5030] <... unlink resumed>) = 0 [pid 6831] set_robust_list(0x55555635e660, 24 [pid 6826] +++ exited with 0 +++ [pid 5030] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6826, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 6831] <... set_robust_list resumed>) = 0 [pid 6830] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6831 [pid 6831] chdir("./292" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6831] <... chdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6831] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] newfstatat(3, "", [pid 6831] <... prctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6831] setpgid(0, 0 [ 253.247745][ T6828] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 253.274765][ T6829] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] getdents64(3, [pid 6831] <... setpgid resumed>) = 0 [pid 6829] <... mount resumed>) = 0 [pid 6828] <... mount resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6829] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6829] <... openat resumed>) = 3 [pid 6828] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 6829] chdir("./file0" [pid 5034] newfstatat(AT_FDCWD, "./290/binderfs", [pid 6829] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6831] write(3, "1000", 4) = 4 [pid 6829] ioctl(4, LOOP_CLR_FD [pid 6828] <... openat resumed>) = 3 [pid 5034] unlink("./290/binderfs" [pid 6831] close(3 [pid 6830] <... munmap resumed>) = 0 [pid 6829] <... ioctl resumed>) = 0 [pid 6828] chdir("./file0" [pid 5034] <... unlink resumed>) = 0 [pid 5030] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6831] <... close resumed>) = 0 [pid 6830] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6829] close(4 [pid 6828] <... chdir resumed>) = 0 [pid 5034] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6831] symlink("/dev/binderfs", "./binderfs" [pid 6830] <... openat resumed>) = 4 [pid 6829] <... close resumed>) = 0 [pid 6828] ioctl(4, LOOP_CLR_FD [pid 5030] newfstatat(AT_FDCWD, "./297/file0", [pid 6830] ioctl(4, LOOP_SET_FD, 3 [pid 6829] exit_group(0 [pid 6828] <... ioctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6831] <... symlink resumed>) = 0 [pid 6829] <... exit_group resumed>) = ? [pid 6829] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6829, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(4, "", [pid 5031] openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 5031] newfstatat(3, "", [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6831] memfd_create("syzkaller", 0 [pid 6828] close(4 [pid 5030] getdents64(4, [pid 6831] <... memfd_create resumed>) = 3 [pid 6831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6830] <... ioctl resumed>) = 0 [pid 6828] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6831] <... mmap resumed>) = 0x7ff0df171000 [pid 6830] close(3 [pid 6828] exit_group(0 [pid 5031] getdents64(3, [pid 5030] close(4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./297/file0") = 0 [pid 6830] <... close resumed>) = 0 [pid 6828] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = 0 [pid 5031] umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./296/binderfs", [pid 5030] close(3 [pid 6828] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6828, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 6830] mkdir("./file0", 0777 [pid 5030] <... close resumed>) = 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] rmdir("./297" [pid 5031] unlink("./296/binderfs" [pid 5030] <... rmdir resumed>) = 0 [pid 6830] <... mkdir resumed>) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./290/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./298", 0777 [pid 6830] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... mkdir resumed>) = 0 [ 253.349455][ T6830] loop0: detected capacity change from 0 to 4096 [pid 5032] openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./290/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(3, "", [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] rmdir("./290" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 5034] mkdir("./291", 0777 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... mkdir resumed>) = 0 [pid 5032] umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6832 attached [pid 6832] set_robust_list(0x55555635e660, 24) = 0 [pid 6832] chdir("./298") = 0 [pid 6832] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6832] setpgid(0, 0) = 0 [pid 6832] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6832] write(3, "1000", 4 [pid 5034] <... openat resumed>) = 3 [pid 6832] <... write resumed>) = 4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6832] close(3 [pid 5034] <... ioctl resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6832 [pid 6832] <... close resumed>) = 0 [pid 5034] close(3 [pid 6832] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... close resumed>) = 0 [pid 6832] <... symlink resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./299/binderfs", [pid 6832] memfd_create("syzkaller", 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./299/binderfs"./strace-static-x86_64: Process 6833 attached ) = 0 [pid 5032] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6833] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6833 [pid 6833] <... set_robust_list resumed>) = 0 [pid 6833] chdir("./291") = 0 [ 253.392600][ T6830] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6833] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6832] <... memfd_create resumed>) = 3 [pid 6833] setpgid(0, 0) = 0 [pid 6832] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6833] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6833] write(3, "1000", 4) = 4 [pid 6833] close(3) = 0 [pid 6833] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6833] memfd_create("syzkaller", 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6833] <... memfd_create resumed>) = 3 [pid 5031] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6833] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6833] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] newfstatat(AT_FDCWD, "./296/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6831] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./296/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./296") = 0 [pid 5031] mkdir("./297", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6834 ./strace-static-x86_64: Process 6834 attached [pid 6834] set_robust_list(0x55555635e660, 24) = 0 [pid 6834] chdir("./297") = 0 [pid 6832] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6834] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6834] setpgid(0, 0) = 0 [pid 6834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6830] <... mount resumed>) = 0 [pid 6834] <... openat resumed>) = 3 [pid 6834] write(3, "1000", 4) = 4 [pid 6834] close(3) = 0 [pid 6834] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6831] <... write resumed>) = 2097152 [pid 6830] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6834] memfd_create("syzkaller", 0 [pid 6830] <... openat resumed>) = 3 [pid 6830] chdir("./file0" [pid 6834] <... memfd_create resumed>) = 3 [pid 6833] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6831] munmap(0x7ff0df171000, 138412032 [pid 6830] <... chdir resumed>) = 0 [pid 6831] <... munmap resumed>) = 0 [pid 6830] ioctl(4, LOOP_CLR_FD [pid 6834] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6830] <... ioctl resumed>) = 0 [pid 6830] close(4) = 0 [pid 6830] exit_group(0) = ? [pid 5032] <... umount2 resumed>) = 0 [pid 6831] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6830] +++ exited with 0 +++ [pid 5032] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6830, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] newfstatat(AT_FDCWD, "./299/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6831] <... openat resumed>) = 4 [pid 5032] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6831] ioctl(4, LOOP_SET_FD, 3 [pid 5032] openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 6831] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 5032] rmdir("./299/file0" [pid 6831] close(3) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6831] mkdir("./file0", 0777 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 5032] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6831] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./299" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6831] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] <... rmdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./298/binderfs", [pid 5032] mkdir("./300", 0777 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./298/binderfs" [pid 5032] <... mkdir resumed>) = 0 [ 253.617895][ T6831] loop4: detected capacity change from 0 to 4096 [pid 6832] <... write resumed>) = 2097152 [pid 6832] munmap(0x7ff0df171000, 138412032 [pid 5029] <... unlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6834] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6832] <... munmap resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6835 attached [ 253.666579][ T6831] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6832] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6835] set_robust_list(0x55555635e660, 24 [pid 6832] <... openat resumed>) = 4 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6835 [pid 6835] <... set_robust_list resumed>) = 0 [pid 6832] ioctl(4, LOOP_SET_FD, 3 [pid 6835] chdir("./300") = 0 [pid 6835] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6833] <... write resumed>) = 2097152 [pid 6833] munmap(0x7ff0df171000, 138412032) = 0 [pid 6833] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6835] setpgid(0, 0) = 0 [pid 6833] <... openat resumed>) = 4 [pid 6835] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6833] ioctl(4, LOOP_SET_FD, 3 [pid 6832] <... ioctl resumed>) = 0 [pid 6835] <... openat resumed>) = 3 [pid 6832] close(3 [pid 6835] write(3, "1000", 4 [pid 6834] <... write resumed>) = 2097152 [pid 6832] <... close resumed>) = 0 [pid 6835] <... write resumed>) = 4 [pid 6835] close(3 [pid 6834] munmap(0x7ff0df171000, 138412032 [pid 6832] mkdir("./file0", 0777 [pid 6835] <... close resumed>) = 0 [pid 6832] <... mkdir resumed>) = 0 [pid 6835] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6831] <... mount resumed>) = 0 [ 253.712454][ T6832] loop1: detected capacity change from 0 to 4096 [ 253.749295][ T6833] loop5: detected capacity change from 0 to 4096 [pid 6832] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6835] memfd_create("syzkaller", 0 [pid 6834] <... munmap resumed>) = 0 [pid 6833] <... ioctl resumed>) = 0 [pid 6831] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6835] <... memfd_create resumed>) = 3 [pid 6833] close(3 [pid 6831] <... openat resumed>) = 3 [pid 6835] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6833] <... close resumed>) = 0 [pid 6831] chdir("./file0" [pid 6835] <... mmap resumed>) = 0x7ff0df171000 [pid 6831] <... chdir resumed>) = 0 [pid 6831] ioctl(4, LOOP_CLR_FD) = 0 [pid 6833] mkdir("./file0", 0777 [pid 6834] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6831] close(4) = 0 [pid 6834] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = 0 [pid 6833] <... mkdir resumed>) = 0 [pid 6834] ioctl(4, LOOP_SET_FD, 3 [pid 6833] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6831] exit_group(0) = ? [pid 6831] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6831, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 5033] umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 5029] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./298/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6834] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 6834] close(3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6834] <... close resumed>) = 0 [pid 5033] umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6834] mkdir("./file0", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 6834] <... mkdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./292/binderfs", [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6834] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [ 253.770396][ T6832] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 253.798715][ T6834] loop2: detected capacity change from 0 to 4096 [ 253.810061][ T6833] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] close(4) = 0 [pid 5029] rmdir("./298/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6832] <... mount resumed>) = 0 [pid 5029] close(3 [pid 5033] unlink("./292/binderfs") = 0 [pid 5029] <... close resumed>) = 0 [pid 6835] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6833] <... mount resumed>) = 0 [pid 5033] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./298" [pid 6833] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6832] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6833] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./299", 0777 [pid 6833] chdir("./file0" [pid 6832] <... openat resumed>) = 3 [pid 6833] <... chdir resumed>) = 0 [pid 6832] chdir("./file0" [pid 6833] ioctl(4, LOOP_CLR_FD [pid 6832] <... chdir resumed>) = 0 [pid 6833] <... ioctl resumed>) = 0 [pid 6832] ioctl(4, LOOP_CLR_FD [pid 6833] close(4 [pid 6832] <... ioctl resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6833] <... close resumed>) = 0 [pid 6832] close(4) = 0 [pid 6833] exit_group(0 [pid 6832] exit_group(0 [pid 6833] <... exit_group resumed>) = ? [pid 6832] <... exit_group resumed>) = ? [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6832] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6832, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6833] +++ exited with 0 +++ [pid 5030] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6833, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 5030] newfstatat(AT_FDCWD, "./298/binderfs", [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] unlink("./298/binderfs" [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 6836 attached [ 253.842666][ T6834] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6836] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6836 [pid 6836] <... set_robust_list resumed>) = 0 [pid 6835] <... write resumed>) = 2097152 [pid 5033] newfstatat(AT_FDCWD, "./292/file0", [pid 6836] chdir("./299" [pid 6835] munmap(0x7ff0df171000, 138412032 [pid 6834] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6836] <... chdir resumed>) = 0 [pid 6836] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6836] <... prctl resumed>) = 0 [pid 5033] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6836] setpgid(0, 0 [pid 6835] <... munmap resumed>) = 0 [pid 6834] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6836] <... setpgid resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6836] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] newfstatat(3, "", [pid 5033] <... openat resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6836] <... openat resumed>) = 3 [pid 5034] getdents64(3, [pid 5033] newfstatat(4, "", [pid 6836] write(3, "1000", 4 [pid 6835] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6834] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6836] <... write resumed>) = 4 [pid 6834] chdir("./file0" [pid 5034] umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 6836] close(3 [pid 6835] <... openat resumed>) = 4 [pid 6834] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6836] <... close resumed>) = 0 [pid 6834] ioctl(4, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6835] ioctl(4, LOOP_SET_FD, 3 [pid 5034] newfstatat(AT_FDCWD, "./291/binderfs", [pid 6834] <... ioctl resumed>) = 0 [pid 5033] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 6836] symlink("/dev/binderfs", "./binderfs" [pid 6834] close(4 [pid 5034] unlink("./291/binderfs" [pid 5033] <... close resumed>) = 0 [pid 6836] <... symlink resumed>) = 0 [pid 6834] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] rmdir("./292/file0" [pid 6834] exit_group(0 [pid 5034] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6834] <... exit_group resumed>) = ? [pid 5033] <... rmdir resumed>) = 0 [pid 6835] <... ioctl resumed>) = 0 [pid 6836] memfd_create("syzkaller", 0 [pid 6835] close(3 [pid 6834] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6834, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] close(3 [pid 5034] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5031] umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6836] <... memfd_create resumed>) = 3 [pid 6835] <... close resumed>) = 0 [pid 5033] rmdir("./292" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6836] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6835] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... rmdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 6836] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] newfstatat(AT_FDCWD, "./291/file0", [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6835] <... mkdir resumed>) = 0 [pid 5033] mkdir("./293", 0777 [pid 5031] newfstatat(AT_FDCWD, "./297/binderfs", [pid 6835] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./297/binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... unlink resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5031] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 253.926925][ T6835] loop3: detected capacity change from 0 to 4096 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./298/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./298/file0" [pid 5034] <... openat resumed>) = 4 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./298") = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] mkdir("./299", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5034] newfstatat(4, "", [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5033] close(3) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 6837 attached [pid 6837] set_robust_list(0x55555635e660, 24 [pid 5034] getdents64(4, [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6837] <... set_robust_list resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6837] chdir("./299" [pid 5034] rmdir("./291/file0" [pid 6837] <... chdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6837 [pid 6837] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6838 attached [pid 6837] <... prctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6838 [pid 6837] setpgid(0, 0 [pid 5034] getdents64(3, [pid 6837] <... setpgid resumed>) = 0 [pid 6837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6838] set_robust_list(0x55555635e660, 24) = 0 [pid 6838] chdir("./293" [pid 6837] <... openat resumed>) = 3 [pid 5034] close(3 [pid 6837] write(3, "1000", 4 [pid 6838] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6838] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] rmdir("./291" [pid 6838] <... prctl resumed>) = 0 [pid 6837] <... write resumed>) = 4 [pid 6837] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 6838] setpgid(0, 0) = 0 [pid 6837] <... close resumed>) = 0 [pid 5034] mkdir("./292", 0777 [pid 6838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [ 253.977866][ T6835] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6837] symlink("/dev/binderfs", "./binderfs" [pid 6838] <... openat resumed>) = 3 [pid 6837] <... symlink resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6838] write(3, "1000", 4) = 4 [pid 6838] close(3) = 0 [pid 6837] memfd_create("syzkaller", 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... umount2 resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6837] <... memfd_create resumed>) = 3 [pid 6837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6838] symlink("/dev/binderfs", "./binderfs" [pid 6837] <... mmap resumed>) = 0x7ff0df171000 [pid 6838] <... symlink resumed>) = 0 [pid 6838] memfd_create("syzkaller", 0 [pid 6836] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6835] <... mount resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./297/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6838] <... memfd_create resumed>) = 3 [pid 5034] <... ioctl resumed>) = 0 [pid 6835] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] close(3 [pid 6838] <... mmap resumed>) = 0x7ff0df171000 [pid 6835] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 5031] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6839 attached [pid 6835] chdir("./file0" [pid 5031] openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6835] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6835] ioctl(4, LOOP_CLR_FD [pid 6839] set_robust_list(0x55555635e660, 24 [pid 6835] <... ioctl resumed>) = 0 [pid 5031] getdents64(4, [pid 6835] close(4 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6839 [pid 6835] <... close resumed>) = 0 [pid 6835] exit_group(0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 6839] <... set_robust_list resumed>) = 0 [pid 6835] <... exit_group resumed>) = ? [pid 6835] +++ exited with 0 +++ [pid 5031] <... close resumed>) = 0 [pid 6839] chdir("./292" [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6835, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] rmdir("./297/file0" [pid 6839] <... chdir resumed>) = 0 [pid 5032] umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(3, "", [pid 5031] close(3) = 0 [pid 5031] rmdir("./297" [pid 6839] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6839] <... prctl resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] mkdir("./298", 0777 [pid 6839] setpgid(0, 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... mkdir resumed>) = 0 [pid 6839] <... setpgid resumed>) = 0 [pid 5032] umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6836] <... write resumed>) = 2097152 [pid 5032] newfstatat(AT_FDCWD, "./300/binderfs", [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./300/binderfs" [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6839] <... openat resumed>) = 3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6840 [pid 6839] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 6840 attached [pid 6840] set_robust_list(0x55555635e660, 24 [pid 6839] close(3 [pid 6840] <... set_robust_list resumed>) = 0 [pid 6839] <... close resumed>) = 0 [pid 6840] chdir("./298") = 0 [pid 6839] symlink("/dev/binderfs", "./binderfs" [pid 6840] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6839] <... symlink resumed>) = 0 [pid 6837] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6840] <... prctl resumed>) = 0 [pid 6840] setpgid(0, 0) = 0 [pid 6839] memfd_create("syzkaller", 0) = 3 [pid 6840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6836] munmap(0x7ff0df171000, 138412032 [pid 6840] <... openat resumed>) = 3 [pid 6840] write(3, "1000", 4 [pid 6839] <... mmap resumed>) = 0x7ff0df171000 [pid 6840] <... write resumed>) = 4 [pid 6840] close(3) = 0 [pid 6836] <... munmap resumed>) = 0 [pid 6840] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6840] memfd_create("syzkaller", 0) = 3 [pid 6840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6836] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6838] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6836] <... openat resumed>) = 4 [pid 6840] <... mmap resumed>) = 0x7ff0df171000 [pid 6837] <... write resumed>) = 2097152 [pid 6836] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = 0 [pid 6837] munmap(0x7ff0df171000, 138412032) = 0 [pid 6837] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6836] <... ioctl resumed>) = 0 [pid 6836] close(3) = 0 [pid 6836] mkdir("./file0", 0777 [pid 6837] <... openat resumed>) = 4 [pid 6836] <... mkdir resumed>) = 0 [ 254.233490][ T6836] loop0: detected capacity change from 0 to 4096 [pid 6837] ioctl(4, LOOP_SET_FD, 3 [pid 6836] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6837] <... ioctl resumed>) = 0 [pid 6837] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./300/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6837] <... close resumed>) = 0 [pid 5032] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 6838] <... write resumed>) = 2097152 [pid 6837] mkdir("./file0", 0777 [pid 6839] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6838] munmap(0x7ff0df171000, 138412032 [pid 6837] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6838] <... munmap resumed>) = 0 [pid 5032] close(4) = 0 [pid 6838] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6837] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [ 254.274908][ T6837] loop1: detected capacity change from 0 to 4096 [ 254.281458][ T6836] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5032] rmdir("./300/file0" [pid 6838] <... openat resumed>) = 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6840] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6838] ioctl(4, LOOP_SET_FD, 3 [pid 5032] close(3) = 0 [pid 5032] rmdir("./300") = 0 [pid 5032] mkdir("./301", 0777) = 0 [pid 6836] <... mount resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6836] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6838] <... ioctl resumed>) = 0 [pid 6836] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 6838] close(3 [pid 6836] chdir("./file0" [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6839] <... write resumed>) = 2097152 [pid 6838] <... close resumed>) = 0 [pid 6836] <... chdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6841 ./strace-static-x86_64: Process 6841 attached [pid 6838] mkdir("./file0", 0777 [pid 6836] ioctl(4, LOOP_CLR_FD [pid 6841] set_robust_list(0x55555635e660, 24 [pid 6836] <... ioctl resumed>) = 0 [pid 6841] <... set_robust_list resumed>) = 0 [pid 6839] munmap(0x7ff0df171000, 138412032 [pid 6838] <... mkdir resumed>) = 0 [pid 6836] close(4 [pid 6841] chdir("./301" [pid 6836] <... close resumed>) = 0 [pid 6838] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6841] <... chdir resumed>) = 0 [pid 6836] exit_group(0 [pid 6841] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6836] <... exit_group resumed>) = ? [pid 6841] setpgid(0, 0) = 0 [ 254.316591][ T6837] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 254.349114][ T6838] loop4: detected capacity change from 0 to 4096 [pid 6841] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6841] write(3, "1000", 4 [pid 6840] <... write resumed>) = 2097152 [pid 6841] <... write resumed>) = 4 [pid 6839] <... munmap resumed>) = 0 [pid 6841] close(3 [pid 6836] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6836, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 6839] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6841] <... close resumed>) = 0 [pid 6839] <... openat resumed>) = 4 [pid 6839] ioctl(4, LOOP_SET_FD, 3 [pid 5029] umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6841] symlink("/dev/binderfs", "./binderfs" [pid 6837] <... mount resumed>) = 0 [pid 6841] <... symlink resumed>) = 0 [pid 6837] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6837] <... openat resumed>) = 3 [pid 6837] chdir("./file0" [pid 6841] memfd_create("syzkaller", 0 [pid 6837] <... chdir resumed>) = 0 [pid 6837] ioctl(4, LOOP_CLR_FD) = 0 [pid 6837] close(4) = 0 [pid 6837] exit_group(0) = ? [pid 6839] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6839] close(3 [pid 6837] +++ exited with 0 +++ [pid 5029] <... openat resumed>) = 3 [pid 6839] <... close resumed>) = 0 [pid 6839] mkdir("./file0", 0777 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6837, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] newfstatat(3, "", [pid 5030] umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6841] <... memfd_create resumed>) = 3 [pid 6839] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(3, [pid 6841] <... mmap resumed>) = 0x7ff0df171000 [pid 6840] munmap(0x7ff0df171000, 138412032 [ 254.393185][ T6838] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 254.408591][ T6839] loop5: detected capacity change from 0 to 4096 [pid 6839] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] newfstatat(3, "", [pid 5029] umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6840] <... munmap resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./299/binderfs", [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./299/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6840] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] newfstatat(AT_FDCWD, "./299/binderfs", [pid 5029] <... unlink resumed>) = 0 [pid 6840] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6840] ioctl(4, LOOP_SET_FD, 3 [pid 5030] unlink("./299/binderfs") = 0 [pid 5030] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6838] <... mount resumed>) = 0 [pid 6838] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 6838] <... openat resumed>) = 3 [pid 5030] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./299/file0", [pid 6838] chdir("./file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6838] <... chdir resumed>) = 0 [pid 6838] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6838] <... ioctl resumed>) = 0 [pid 6838] close(4 [pid 5030] openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./299/file0") = 0 [pid 6840] <... ioctl resumed>) = 0 [pid 5030] getdents64(3, [pid 6840] close(3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6840] <... close resumed>) = 0 [pid 5030] close(3 [pid 6840] mkdir("./file0", 0777 [pid 5030] <... close resumed>) = 0 [pid 6840] <... mkdir resumed>) = 0 [pid 5030] rmdir("./299" [pid 6840] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6838] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [ 254.436505][ T6839] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 254.452151][ T6840] loop2: detected capacity change from 0 to 4096 [pid 6838] exit_group(0 [pid 5030] mkdir("./300", 0777 [pid 6838] <... exit_group resumed>) = ? [pid 6838] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6838, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] <... ioctl resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6842 [pid 6841] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 6842 attached [pid 6842] set_robust_list(0x55555635e660, 24 [pid 5033] umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6842] <... set_robust_list resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./293/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6842] chdir("./300" [pid 5033] unlink("./293/binderfs" [pid 6842] <... chdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6842] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6842] <... prctl resumed>) = 0 [pid 6842] setpgid(0, 0) = 0 [pid 6842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6842] write(3, "1000", 4 [pid 6839] <... mount resumed>) = 0 [ 254.503544][ T6840] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6842] <... write resumed>) = 4 [pid 5029] <... umount2 resumed>) = 0 [pid 6839] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6842] close(3 [pid 6839] <... openat resumed>) = 3 [pid 6842] <... close resumed>) = 0 [pid 6839] chdir("./file0" [pid 6842] symlink("/dev/binderfs", "./binderfs" [pid 6839] <... chdir resumed>) = 0 [pid 6842] <... symlink resumed>) = 0 [pid 6839] ioctl(4, LOOP_CLR_FD) = 0 [pid 6842] memfd_create("syzkaller", 0 [pid 6839] close(4) = 0 [pid 6839] exit_group(0) = ? [pid 6840] <... mount resumed>) = 0 [pid 6839] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6839, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 6840] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6840] chdir("./file0") = 0 [pid 5029] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6840] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6840] close(4 [pid 5029] newfstatat(AT_FDCWD, "./299/file0", [pid 6840] <... close resumed>) = 0 [pid 5034] umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6842] <... memfd_create resumed>) = 3 [pid 6840] exit_group(0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6842] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6840] <... exit_group resumed>) = ? [pid 5034] openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6840] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6842] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] newfstatat(3, "", [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6840, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=2 /* 0.02 s */} --- [pid 5031] umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5033] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(3, "", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(AT_FDCWD, "./293/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(3, [pid 5033] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5031] newfstatat(AT_FDCWD, "./298/binderfs", [pid 5029] newfstatat(4, "", [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] unlink("./298/binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5031] <... unlink resumed>) = 0 [pid 5029] getdents64(4, [pid 5034] newfstatat(AT_FDCWD, "./292/binderfs", [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] unlink("./292/binderfs" [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 5034] <... unlink resumed>) = 0 [pid 5033] close(4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5029] close(4 [pid 6841] <... write resumed>) = 2097152 [pid 5033] rmdir("./293/file0") = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./299/file0" [pid 5033] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 5033] close(3 [pid 6841] munmap(0x7ff0df171000, 138412032 [pid 5033] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] rmdir("./293" [pid 5029] close(3 [pid 6841] <... munmap resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./299") = 0 [pid 5029] mkdir("./300", 0777 [pid 5033] mkdir("./294", 0777) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6841] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6841] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5033] close(3 [pid 5029] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6843 [pid 6841] <... ioctl resumed>) = 0 [pid 6841] close(3./strace-static-x86_64: Process 6843 attached ) = 0 [pid 6841] mkdir("./file0", 0777) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6844 [pid 6841] mount("/dev/loop3", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6844 attached [pid 6843] set_robust_list(0x55555635e660, 24 [pid 6842] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6844] set_robust_list(0x55555635e660, 24 [pid 6843] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6844] <... set_robust_list resumed>) = 0 [pid 6843] chdir("./300" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6844] chdir("./294" [pid 5034] newfstatat(AT_FDCWD, "./292/file0", [pid 6843] <... chdir resumed>) = 0 [pid 6844] <... chdir resumed>) = 0 [pid 6843] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6843] <... prctl resumed>) = 0 [pid 5034] umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./298/file0", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6844] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6843] setpgid(0, 0 [pid 5034] openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6843] <... setpgid resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5031] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 6844] <... prctl resumed>) = 0 [pid 6843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6844] setpgid(0, 0 [pid 6843] <... openat resumed>) = 3 [pid 5034] getdents64(4, [pid 5031] openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6844] <... setpgid resumed>) = 0 [pid 6843] write(3, "1000", 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... openat resumed>) = 4 [pid 6844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6843] <... write resumed>) = 4 [pid 5034] getdents64(4, [pid 5031] newfstatat(4, "", [pid 6843] close(3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6844] <... openat resumed>) = 3 [pid 6843] <... close resumed>) = 0 [ 254.684202][ T6841] loop3: detected capacity change from 0 to 4096 [ 254.713852][ T6841] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5034] close(4 [pid 5031] getdents64(4, [pid 6844] write(3, "1000", 4 [pid 6843] symlink("/dev/binderfs", "./binderfs" [pid 6842] <... write resumed>) = 2097152 [pid 5034] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6844] <... write resumed>) = 4 [pid 6843] <... symlink resumed>) = 0 [pid 6842] munmap(0x7ff0df171000, 138412032 [pid 5034] rmdir("./292/file0") = 0 [pid 5031] getdents64(4, [pid 5034] getdents64(3, [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 6844] close(3 [pid 6843] memfd_create("syzkaller", 0 [pid 6841] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5031] rmdir("./298/file0") = 0 [pid 5031] getdents64(3, [pid 6844] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6844] symlink("/dev/binderfs", "./binderfs" [pid 6843] <... memfd_create resumed>) = 3 [pid 5034] rmdir("./292" [pid 5031] close(3) = 0 [pid 5031] rmdir("./298" [pid 6844] <... symlink resumed>) = 0 [pid 6843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6841] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6843] <... mmap resumed>) = 0x7ff0df171000 [pid 6841] <... openat resumed>) = 3 [pid 5034] mkdir("./293", 0777 [pid 5031] mkdir("./299", 0777 [pid 6841] chdir("./file0" [pid 5031] <... mkdir resumed>) = 0 [pid 6841] <... chdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6841] ioctl(4, LOOP_CLR_FD [pid 5034] <... mkdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6841] <... ioctl resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6844] memfd_create("syzkaller", 0 [pid 6841] close(4 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6842] <... munmap resumed>) = 0 [pid 6841] <... close resumed>) = 0 [pid 6841] exit_group(0) = ? [pid 6842] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] close(3 [pid 6841] +++ exited with 0 +++ [pid 6844] <... memfd_create resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6841, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5031] <... close resumed>) = 0 [pid 6844] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6842] <... openat resumed>) = 4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6844] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6845 attached [pid 6845] set_robust_list(0x55555635e660, 24 [pid 5032] openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6845] <... set_robust_list resumed>) = 0 [pid 6842] ioctl(4, LOOP_SET_FD, 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6845] chdir("./299" [pid 5032] <... openat resumed>) = 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6845 [pid 6845] <... chdir resumed>) = 0 [pid 6845] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6845] setpgid(0, 0) = 0 [pid 6845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6845] write(3, "1000", 4) = 4 [pid 5032] newfstatat(3, "", [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6845] close(3) = 0 [pid 6845] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] close(3 [pid 6845] <... symlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 6845] memfd_create("syzkaller", 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6845] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 6846 attached [pid 5032] umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6846] set_robust_list(0x55555635e660, 24 [pid 6845] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6846] <... set_robust_list resumed>) = 0 [pid 6845] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6846] chdir("./293" [pid 5032] newfstatat(AT_FDCWD, "./301/binderfs", [pid 6846] <... chdir resumed>) = 0 [pid 6846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6846 [pid 6846] setpgid(0, 0) = 0 [pid 6846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6846] write(3, "1000", 4) = 4 [pid 6846] close(3) = 0 [pid 6846] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6846] memfd_create("syzkaller", 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6846] <... memfd_create resumed>) = 3 [pid 5032] unlink("./301/binderfs" [pid 6846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] <... unlink resumed>) = 0 [pid 6842] <... ioctl resumed>) = 0 [pid 5032] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6842] close(3) = 0 [ 254.821896][ T6842] loop1: detected capacity change from 0 to 4096 [pid 6842] mkdir("./file0", 0777) = 0 [pid 6842] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [ 254.886666][ T6842] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6845] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6846] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6844] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6843] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6842] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6842] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./301/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6842] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6842] chdir("./file0" [pid 5032] getdents64(4, [pid 6842] <... chdir resumed>) = 0 [pid 6842] ioctl(4, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6842] <... ioctl resumed>) = 0 [pid 6842] close(4) = 0 [pid 5032] getdents64(4, [pid 6842] exit_group(0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6842] <... exit_group resumed>) = ? [pid 5032] close(4) = 0 [pid 5032] rmdir("./301/file0") = 0 [pid 5032] getdents64(3, [pid 6842] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6842, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] rmdir("./301") = 0 [pid 5032] mkdir("./302", 0777) = 0 [pid 5030] umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] getdents64(3, [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./300/binderfs", [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./300/binderfs"./strace-static-x86_64: Process 6847 attached ) = 0 [pid 5030] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6847 [pid 6847] set_robust_list(0x55555635e660, 24) = 0 [pid 6845] <... write resumed>) = 2097152 [pid 6845] munmap(0x7ff0df171000, 138412032) = 0 [pid 6843] <... write resumed>) = 2097152 [pid 6847] chdir("./302") = 0 [pid 6847] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6845] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... umount2 resumed>) = 0 [pid 6847] <... prctl resumed>) = 0 [pid 6845] <... openat resumed>) = 4 [pid 6844] <... write resumed>) = 2097152 [pid 6843] munmap(0x7ff0df171000, 138412032 [pid 6847] setpgid(0, 0 [pid 6845] ioctl(4, LOOP_SET_FD, 3 [pid 6847] <... setpgid resumed>) = 0 [pid 6844] munmap(0x7ff0df171000, 138412032 [pid 6843] <... munmap resumed>) = 0 [pid 6847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6844] <... munmap resumed>) = 0 [pid 6847] <... openat resumed>) = 3 [pid 6844] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6847] write(3, "1000", 4 [pid 6846] <... write resumed>) = 2097152 [pid 6844] <... openat resumed>) = 4 [pid 6843] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6847] <... write resumed>) = 4 [pid 6844] ioctl(4, LOOP_SET_FD, 3 [pid 6843] <... openat resumed>) = 4 [pid 6847] close(3 [pid 5030] newfstatat(AT_FDCWD, "./300/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6846] munmap(0x7ff0df171000, 138412032 [pid 6847] <... close resumed>) = 0 [pid 6846] <... munmap resumed>) = 0 [pid 6845] <... ioctl resumed>) = 0 [pid 6844] <... ioctl resumed>) = 0 [pid 6843] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... openat resumed>) = 4 [pid 6847] symlink("/dev/binderfs", "./binderfs" [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./300/file0" [pid 6847] <... symlink resumed>) = 0 [pid 6846] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... rmdir resumed>) = 0 [pid 6846] <... openat resumed>) = 4 [pid 6847] memfd_create("syzkaller", 0 [pid 5030] getdents64(3, [pid 6846] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6847] <... memfd_create resumed>) = 3 [pid 6845] close(3 [pid 6844] close(3 [pid 5030] close(3 [pid 6847] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6845] <... close resumed>) = 0 [pid 6844] <... close resumed>) = 0 [pid 6843] <... ioctl resumed>) = 0 [pid 6847] <... mmap resumed>) = 0x7ff0df171000 [pid 6845] mkdir("./file0", 0777 [pid 6844] mkdir("./file0", 0777 [pid 6843] close(3 [pid 6845] <... mkdir resumed>) = 0 [pid 6843] <... close resumed>) = 0 [pid 6843] mkdir("./file0", 0777 [pid 5030] <... close resumed>) = 0 [pid 6843] <... mkdir resumed>) = 0 [pid 6845] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6843] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] rmdir("./300") = 0 [ 255.062954][ T6845] loop2: detected capacity change from 0 to 4096 [ 255.076622][ T6844] loop4: detected capacity change from 0 to 4096 [ 255.087492][ T6843] loop0: detected capacity change from 0 to 4096 [ 255.098000][ T6846] loop5: detected capacity change from 0 to 4096 [pid 5030] mkdir("./301", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6846] <... ioctl resumed>) = 0 [pid 6846] close(3) = 0 [pid 6846] mkdir("./file0", 0777) = 0 [pid 6844] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6846] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] close(3) = 0 [pid 6844] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6848 ./strace-static-x86_64: Process 6848 attached [pid 6848] set_robust_list(0x55555635e660, 24) = 0 [pid 6848] chdir("./301") = 0 [pid 6848] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6848] setpgid(0, 0) = 0 [pid 6848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6848] write(3, "1000", 4) = 4 [pid 6848] close(3) = 0 [pid 6848] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6848] memfd_create("syzkaller", 0) = 3 [pid 6843] <... mount resumed>) = 0 [pid 6848] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6843] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6843] chdir("./file0") = 0 [ 255.110299][ T6843] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 255.122718][ T6845] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 255.137951][ T6846] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 255.144052][ T6844] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6843] ioctl(4, LOOP_CLR_FD) = 0 [pid 6843] close(4) = 0 [pid 6843] exit_group(0) = ? [pid 6845] <... mount resumed>) = 0 [pid 6843] +++ exited with 0 +++ [pid 6845] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6845] chdir("./file0" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6843, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 6845] <... chdir resumed>) = 0 [pid 5029] umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6845] ioctl(4, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6845] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6845] close(4) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6845] exit_group(0 [pid 5029] newfstatat(3, "", [pid 6845] <... exit_group resumed>) = ? [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6847] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6845] +++ exited with 0 +++ [pid 5029] getdents64(3, [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6845, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(3, "", [pid 5029] newfstatat(AT_FDCWD, "./300/binderfs", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(3, [pid 5029] unlink("./300/binderfs" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./299/binderfs", [pid 6844] <... mount resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6844] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] unlink("./299/binderfs" [pid 6844] <... openat resumed>) = 3 [pid 5031] <... unlink resumed>) = 0 [pid 6844] chdir("./file0") = 0 [pid 5031] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6844] ioctl(4, LOOP_CLR_FD) = 0 [pid 6844] close(4) = 0 [pid 6846] <... mount resumed>) = 0 [pid 6844] exit_group(0) = ? [pid 6846] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6846] chdir("./file0") = 0 [pid 6846] ioctl(4, LOOP_CLR_FD) = 0 [pid 6846] close(4) = 0 [pid 6846] exit_group(0) = ? [pid 6846] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6846, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 6844] +++ exited with 0 +++ [pid 5034] umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6844, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5034] openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 5033] umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 3 [pid 6848] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] newfstatat(AT_FDCWD, "./293/binderfs", [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(3, "", [pid 5034] unlink("./293/binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] getdents64(3, [pid 5034] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./294/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./294/binderfs") = 0 [pid 5033] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./300/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6847] <... write resumed>) = 2097152 [pid 5029] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6847] munmap(0x7ff0df171000, 138412032 [pid 5031] newfstatat(AT_FDCWD, "./299/file0", [pid 5029] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(4, "", [pid 5031] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 6847] <... munmap resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6847] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6847] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 6847] <... ioctl resumed>) = 0 [pid 6847] close(3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6847] <... close resumed>) = 0 [pid 6847] mkdir("./file0", 0777) = 0 [pid 5031] openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] close(4 [pid 6847] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] <... openat resumed>) = 4 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./300/file0" [pid 6848] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6848] munmap(0x7ff0df171000, 138412032 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6848] <... munmap resumed>) = 0 [pid 5031] getdents64(4, [pid 5029] close(3 [pid 5034] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 5034] newfstatat(AT_FDCWD, "./293/file0", [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] rmdir("./300" [pid 5031] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5031] rmdir("./299/file0" [pid 5029] mkdir("./301", 0777 [pid 6848] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] newfstatat(AT_FDCWD, "./294/file0", [pid 6848] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6848] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(3, [pid 5034] umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 255.332250][ T6847] loop3: detected capacity change from 0 to 4096 [ 255.356819][ T6847] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(4, "", [pid 5031] close(3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... close resumed>) = 0 [pid 5029] close(3 [pid 5031] rmdir("./299" [pid 5029] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./294/file0"./strace-static-x86_64: Process 6849 attached [pid 5034] <... openat resumed>) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] mkdir("./300", 0777) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6849 [pid 6849] set_robust_list(0x55555635e660, 24 [pid 5034] newfstatat(4, "", [pid 6849] <... set_robust_list resumed>) = 0 [pid 5033] getdents64(3, [pid 6849] chdir("./301" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./294" [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... rmdir resumed>) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6849] <... chdir resumed>) = 0 [pid 6848] <... ioctl resumed>) = 0 [pid 5033] mkdir("./295", 0777 [pid 5034] close(4 [pid 5031] <... openat resumed>) = 3 [pid 6848] close(3) = 0 [pid 6848] mkdir("./file0", 0777 [pid 6849] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6848] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6849] <... prctl resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6849] setpgid(0, 0 [pid 5034] rmdir("./293/file0" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6849] <... setpgid resumed>) = 0 [pid 6848] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [pid 6849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] getdents64(3, [pid 5033] <... openat resumed>) = 3 [pid 5031] close(3 [pid 6849] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6849] write(3, "1000", 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5031] <... close resumed>) = 0 [pid 6849] <... write resumed>) = 4 [pid 5034] close(3 [pid 6849] close(3 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6849] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [ 255.389817][ T6848] loop1: detected capacity change from 0 to 4096 ./strace-static-x86_64: Process 6850 attached [pid 6849] symlink("/dev/binderfs", "./binderfs" [pid 5034] rmdir("./293" [pid 5033] <... close resumed>) = 0 [pid 6850] set_robust_list(0x55555635e660, 24) = 0 [pid 6850] chdir("./300" [pid 5034] <... rmdir resumed>) = 0 [pid 6850] <... chdir resumed>) = 0 [pid 6849] <... symlink resumed>) = 0 [pid 6850] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6850 [pid 6850] <... prctl resumed>) = 0 [pid 6849] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6851 attached [pid 6850] setpgid(0, 0 [pid 6847] <... mount resumed>) = 0 [pid 5034] mkdir("./294", 0777 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6851 [pid 6850] <... setpgid resumed>) = 0 [pid 6849] <... memfd_create resumed>) = 3 [pid 6847] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... mkdir resumed>) = 0 [pid 6850] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6849] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6847] <... openat resumed>) = 3 [pid 6851] set_robust_list(0x55555635e660, 24 [pid 6849] <... mmap resumed>) = 0x7ff0df171000 [pid 6847] chdir("./file0" [pid 6851] <... set_robust_list resumed>) = 0 [pid 6850] <... openat resumed>) = 3 [pid 6847] <... chdir resumed>) = 0 [pid 6851] chdir("./295" [pid 6847] ioctl(4, LOOP_CLR_FD [pid 6851] <... chdir resumed>) = 0 [pid 6847] <... ioctl resumed>) = 0 [pid 6851] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6850] write(3, "1000", 4 [pid 6847] close(4 [pid 6851] setpgid(0, 0 [pid 6847] <... close resumed>) = 0 [pid 6851] <... setpgid resumed>) = 0 [pid 6850] <... write resumed>) = 4 [pid 6847] exit_group(0 [pid 6851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6847] <... exit_group resumed>) = ? [pid 6851] <... openat resumed>) = 3 [pid 6850] close(3 [pid 6847] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6851] write(3, "1000", 4 [pid 6850] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6847, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 6851] <... write resumed>) = 4 [pid 6850] symlink("/dev/binderfs", "./binderfs" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6851] close(3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6850] <... symlink resumed>) = 0 [pid 5034] close(3 [pid 6851] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6851] symlink("/dev/binderfs", "./binderfs" [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6851] <... symlink resumed>) = 0 [ 255.437390][ T6848] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5032] umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6851] memfd_create("syzkaller", 0 [pid 5032] openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6850] memfd_create("syzkaller", 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 6852 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6852 [pid 5032] umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6848] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./302/binderfs", [pid 6852] set_robust_list(0x55555635e660, 24 [pid 6850] <... memfd_create resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6852] <... set_robust_list resumed>) = 0 [pid 6851] <... memfd_create resumed>) = 3 [pid 6848] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] unlink("./302/binderfs" [pid 6852] chdir("./294" [pid 6851] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6848] <... openat resumed>) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 6852] <... chdir resumed>) = 0 [pid 6851] <... mmap resumed>) = 0x7ff0df171000 [pid 6850] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6852] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6850] <... mmap resumed>) = 0x7ff0df171000 [pid 6848] chdir("./file0") = 0 [pid 6852] <... prctl resumed>) = 0 [pid 6848] ioctl(4, LOOP_CLR_FD [pid 6852] setpgid(0, 0 [pid 6848] <... ioctl resumed>) = 0 [pid 6852] <... setpgid resumed>) = 0 [pid 6848] close(4 [pid 6852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6848] <... close resumed>) = 0 [pid 6852] <... openat resumed>) = 3 [pid 6848] exit_group(0 [pid 6852] write(3, "1000", 4 [pid 6848] <... exit_group resumed>) = ? [pid 6852] <... write resumed>) = 4 [pid 6852] close(3) = 0 [pid 6852] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6852] memfd_create("syzkaller", 0 [pid 6848] +++ exited with 0 +++ [pid 6852] <... memfd_create resumed>) = 3 [pid 6852] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6848, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5032] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./302/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6850] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6849] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./301/binderfs", [pid 5032] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./301/binderfs" [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... unlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 6851] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] rmdir("./302/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5032] rmdir("./302" [pid 5030] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./301/file0", [pid 5032] mkdir("./303", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6850] <... write resumed>) = 2097152 [pid 5030] getdents64(4, ./strace-static-x86_64: Process 6853 attached [pid 6850] munmap(0x7ff0df171000, 138412032 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6853 [pid 6853] set_robust_list(0x55555635e660, 24 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6853] <... set_robust_list resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6853] chdir("./303" [pid 6850] <... munmap resumed>) = 0 [pid 5030] rmdir("./301/file0" [pid 6853] <... chdir resumed>) = 0 [pid 6850] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6853] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6850] <... openat resumed>) = 4 [pid 6849] <... write resumed>) = 2097152 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6853] <... prctl resumed>) = 0 [pid 6850] ioctl(4, LOOP_SET_FD, 3 [pid 5030] close(3 [pid 6853] setpgid(0, 0) = 0 [pid 5030] <... close resumed>) = 0 [pid 6853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] rmdir("./301" [pid 6853] <... openat resumed>) = 3 [pid 6852] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6851] <... write resumed>) = 2097152 [pid 5030] <... rmdir resumed>) = 0 [pid 6853] write(3, "1000", 4 [pid 5030] mkdir("./302", 0777 [pid 6853] <... write resumed>) = 4 [pid 6850] <... ioctl resumed>) = 0 [pid 6853] close(3 [pid 6850] close(3 [pid 5030] <... mkdir resumed>) = 0 [pid 6849] munmap(0x7ff0df171000, 138412032 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6853] <... close resumed>) = 0 [pid 6850] <... close resumed>) = 0 [pid 6853] symlink("/dev/binderfs", "./binderfs" [pid 6850] mkdir("./file0", 0777 [pid 6849] <... munmap resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6851] munmap(0x7ff0df171000, 138412032 [pid 6850] <... mkdir resumed>) = 0 [pid 6853] <... symlink resumed>) = 0 [pid 6850] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] close(3 [pid 6849] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6849] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6851] <... munmap resumed>) = 0 [ 255.675424][ T6850] loop2: detected capacity change from 0 to 4096 [ 255.705439][ T6849] loop0: detected capacity change from 0 to 4096 [ 255.715917][ T6850] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6853] memfd_create("syzkaller", 0 [pid 6851] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6851] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 6854 attached [pid 6853] <... memfd_create resumed>) = 3 [pid 6849] close(3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6854 [pid 6854] set_robust_list(0x55555635e660, 24 [pid 6853] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6854] <... set_robust_list resumed>) = 0 [pid 6853] <... mmap resumed>) = 0x7ff0df171000 [pid 6852] <... write resumed>) = 2097152 [pid 6851] <... ioctl resumed>) = 0 [pid 6849] <... close resumed>) = 0 [pid 6854] chdir("./302") = 0 [pid 6849] mkdir("./file0", 0777 [pid 6854] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6852] munmap(0x7ff0df171000, 138412032 [pid 6851] close(3 [pid 6849] <... mkdir resumed>) = 0 [pid 6854] <... prctl resumed>) = 0 [pid 6854] setpgid(0, 0) = 0 [pid 6851] <... close resumed>) = 0 [pid 6854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6851] mkdir("./file0", 0777 [pid 6854] <... openat resumed>) = 3 [pid 6852] <... munmap resumed>) = 0 [pid 6851] <... mkdir resumed>) = 0 [pid 6854] write(3, "1000", 4) = 4 [pid 6849] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6854] close(3) = 0 [pid 6854] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6854] memfd_create("syzkaller", 0 [pid 6852] openat(AT_FDCWD, "/dev/loop5", O_RDWR [ 255.718646][ T6851] loop4: detected capacity change from 0 to 4096 [ 255.757011][ T6849] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6851] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6852] <... openat resumed>) = 4 [pid 6854] <... memfd_create resumed>) = 3 [pid 6852] ioctl(4, LOOP_SET_FD, 3 [pid 6854] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6852] <... ioctl resumed>) = 0 [pid 6850] <... mount resumed>) = 0 [pid 6852] close(3) = 0 [pid 6852] mkdir("./file0", 0777 [pid 6850] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6850] chdir("./file0") = 0 [pid 6852] <... mkdir resumed>) = 0 [pid 6852] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6853] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6850] ioctl(4, LOOP_CLR_FD) = 0 [pid 6850] close(4 [pid 6849] <... mount resumed>) = 0 [pid 6849] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6850] <... close resumed>) = 0 [pid 6850] exit_group(0) = ? [pid 6850] +++ exited with 0 +++ [pid 6849] <... openat resumed>) = 3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6850, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6849] chdir("./file0" [pid 5031] umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6849] <... chdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6849] ioctl(4, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6849] <... ioctl resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6849] close(4 [pid 5031] umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6849] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./300/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./300/binderfs") = 0 [pid 5031] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6849] exit_group(0) = ? [ 255.770232][ T6851] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 255.781199][ T6852] loop5: detected capacity change from 0 to 4096 [ 255.811806][ T6852] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6849] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6849, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=2 /* 0.02 s */} --- [pid 5029] umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./301/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./301/binderfs") = 0 [pid 6854] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6851] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6851] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6851] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./300/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./300/file0" [pid 6851] chdir("./file0" [pid 5031] <... rmdir resumed>) = 0 [pid 6851] <... chdir resumed>) = 0 [pid 5031] getdents64(3, [pid 6851] ioctl(4, LOOP_CLR_FD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6851] <... ioctl resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./300" [pid 6853] <... write resumed>) = 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 6851] close(4 [pid 5031] mkdir("./301", 0777) = 0 [pid 6853] munmap(0x7ff0df171000, 138412032 [pid 6851] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6853] <... munmap resumed>) = 0 [pid 6852] <... mount resumed>) = 0 [pid 6851] exit_group(0 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3 [pid 6852] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 6852] <... openat resumed>) = 3 [pid 6851] <... exit_group resumed>) = ? [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6852] chdir("./file0" [pid 6851] +++ exited with 0 +++ [pid 5029] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6855 attached [pid 6852] <... chdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6851, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6855] set_robust_list(0x55555635e660, 24 [pid 6853] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6852] ioctl(4, LOOP_CLR_FD [pid 6853] <... openat resumed>) = 4 [pid 6852] <... ioctl resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6855 [pid 5029] newfstatat(AT_FDCWD, "./301/file0", [pid 6853] ioctl(4, LOOP_SET_FD, 3 [pid 6852] close(4 [pid 5033] umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6852] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6852] exit_group(0 [pid 5033] openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6855] <... set_robust_list resumed>) = 0 [pid 6852] <... exit_group resumed>) = ? [pid 5033] newfstatat(3, "", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6855] chdir("./301" [pid 6853] <... ioctl resumed>) = 0 [pid 6852] +++ exited with 0 +++ [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6855] <... chdir resumed>) = 0 [pid 5029] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6852, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5029] openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... restart_syscall resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5033] getdents64(3, [pid 6855] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] newfstatat(4, "", [pid 6855] <... prctl resumed>) = 0 [pid 6855] setpgid(0, 0 [pid 5034] umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6855] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(AT_FDCWD, "./295/binderfs", [pid 5029] getdents64(4, [pid 5034] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6855] <... openat resumed>) = 3 [pid 6854] <... write resumed>) = 2097152 [pid 5034] newfstatat(3, "", [pid 5033] unlink("./295/binderfs" [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6853] close(3 [pid 5029] getdents64(4, [pid 6855] write(3, "1000", 4 [pid 5034] getdents64(3, [pid 5033] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6855] <... write resumed>) = 4 [pid 6853] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] close(4 [pid 6853] mkdir("./file0", 0777 [pid 5034] umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6855] close(3 [pid 5034] newfstatat(AT_FDCWD, "./294/binderfs", [pid 5029] rmdir("./301/file0" [pid 6855] <... close resumed>) = 0 [pid 6853] <... mkdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 255.944997][ T6853] loop3: detected capacity change from 0 to 4096 [pid 6855] symlink("/dev/binderfs", "./binderfs" [pid 6853] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] unlink("./294/binderfs" [pid 5029] <... rmdir resumed>) = 0 [pid 6855] <... symlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6854] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6855] memfd_create("syzkaller", 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./301") = 0 [pid 5029] mkdir("./302", 0777) = 0 [pid 6855] <... memfd_create resumed>) = 3 [pid 6855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6854] <... munmap resumed>) = 0 [pid 6855] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6854] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... openat resumed>) = 3 [pid 6854] <... openat resumed>) = 4 [pid 6854] ioctl(4, LOOP_SET_FD, 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = 0 [pid 6854] <... ioctl resumed>) = 0 [pid 6854] close(3) = 0 [pid 6854] mkdir("./file0", 0777) = 0 [pid 5033] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./295/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6854] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... umount2 resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [ 255.987169][ T6853] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 256.011869][ T6854] loop1: detected capacity change from 0 to 4096 [pid 6853] <... mount resumed>) = 0 [pid 5034] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./295/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./294/file0", [pid 6853] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6853] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 6853] chdir("./file0" [pid 5034] umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6853] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5034] openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 6853] ioctl(4, LOOP_CLR_FD [pid 5034] getdents64(4, [pid 5033] rmdir("./295" [pid 6853] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... rmdir resumed>) = 0 [pid 5034] getdents64(4, [pid 6853] close(4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] mkdir("./296", 0777 [pid 5034] close(4 [pid 6853] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5034] rmdir("./294/file0" [pid 6853] exit_group(0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [pid 6855] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6853] <... exit_group resumed>) = ? [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6853] +++ exited with 0 +++ [pid 5034] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 5034] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6853, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] <... ioctl resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] rmdir("./294" [pid 5032] umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW [ 256.058669][ T6854] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5029] close(3./strace-static-x86_64: Process 6856 attached [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... close resumed>) = 0 [pid 6856] set_robust_list(0x55555635e660, 24 [pid 5034] mkdir("./295", 0777 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6856 [pid 5032] openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6856] <... set_robust_list resumed>) = 0 [pid 6856] chdir("./296" [pid 6855] <... write resumed>) = 2097152 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6856] <... chdir resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6857 [pid 6856] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6856] setpgid(0, 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 6857 attached [pid 6856] <... setpgid resumed>) = 0 [pid 5032] umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6857] set_robust_list(0x55555635e660, 24 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] newfstatat(AT_FDCWD, "./303/binderfs", [pid 6857] <... set_robust_list resumed>) = 0 [pid 6857] chdir("./302" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./303/binderfs" [pid 6857] <... chdir resumed>) = 0 [pid 6857] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6857] <... prctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6857] setpgid(0, 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... unlink resumed>) = 0 [pid 6855] munmap(0x7ff0df171000, 138412032 [pid 6857] <... setpgid resumed>) = 0 [pid 6857] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6857] write(3, "1000", 4) = 4 [pid 6857] close(3) = 0 [pid 6857] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6856] <... openat resumed>) = 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6858 attached [pid 6856] write(3, "1000", 4 [pid 6858] set_robust_list(0x55555635e660, 24 [pid 6856] <... write resumed>) = 4 [pid 6858] <... set_robust_list resumed>) = 0 [pid 6858] chdir("./295" [pid 6856] close(3 [pid 6858] <... chdir resumed>) = 0 [pid 6855] <... munmap resumed>) = 0 [pid 6856] <... close resumed>) = 0 [pid 6858] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6856] symlink("/dev/binderfs", "./binderfs" [pid 6858] <... prctl resumed>) = 0 [pid 6858] setpgid(0, 0) = 0 [pid 6858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6856] <... symlink resumed>) = 0 [pid 6858] <... openat resumed>) = 3 [pid 6857] memfd_create("syzkaller", 0 [pid 6855] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6858 [pid 6858] write(3, "1000", 4 [pid 6857] <... memfd_create resumed>) = 3 [pid 6858] <... write resumed>) = 4 [pid 6857] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6858] close(3 [pid 6857] <... mmap resumed>) = 0x7ff0df171000 [pid 6855] <... openat resumed>) = 4 [pid 6858] <... close resumed>) = 0 [pid 6856] memfd_create("syzkaller", 0 [pid 6855] ioctl(4, LOOP_SET_FD, 3 [pid 6858] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6858] memfd_create("syzkaller", 0) = 3 [pid 6858] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6856] <... memfd_create resumed>) = 3 [pid 6858] <... mmap resumed>) = 0x7ff0df171000 [pid 6856] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6855] <... ioctl resumed>) = 0 [pid 6855] close(3 [pid 6854] <... mount resumed>) = 0 [pid 6855] <... close resumed>) = 0 [ 256.171986][ T6855] loop2: detected capacity change from 0 to 4096 [pid 6855] mkdir("./file0", 0777) = 0 [pid 6854] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6855] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6854] <... openat resumed>) = 3 [pid 6854] chdir("./file0") = 0 [pid 6854] ioctl(4, LOOP_CLR_FD) = 0 [pid 6854] close(4) = 0 [pid 6854] exit_group(0) = ? [pid 5032] <... umount2 resumed>) = 0 [pid 6854] +++ exited with 0 +++ [pid 6857] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6854, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6858] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./303/file0", [pid 5030] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 256.236188][ T6855] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5030] getdents64(3, [pid 6856] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6855] <... mount resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6855] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6855] <... openat resumed>) = 3 [pid 5030] newfstatat(AT_FDCWD, "./302/binderfs", [pid 5032] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6855] chdir("./file0" [pid 5032] newfstatat(4, "", [pid 5030] unlink("./302/binderfs" [pid 6855] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6855] ioctl(4, LOOP_CLR_FD [pid 5032] getdents64(4, [pid 5030] <... unlink resumed>) = 0 [pid 6855] <... ioctl resumed>) = 0 [pid 6855] close(4) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./303/file0" [pid 6858] <... write resumed>) = 2097152 [pid 6857] <... write resumed>) = 2097152 [pid 6855] exit_group(0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6855] <... exit_group resumed>) = ? [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6855] +++ exited with 0 +++ [pid 5032] close(3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6855, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./303" [pid 5031] openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] mkdir("./304", 0777 [pid 5031] umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./301/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./301/binderfs" [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6857] munmap(0x7ff0df171000, 138412032 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 6856] <... write resumed>) = 2097152 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6858] munmap(0x7ff0df171000, 138412032 [pid 6856] munmap(0x7ff0df171000, 138412032 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6857] <... munmap resumed>) = 0 [pid 6858] <... munmap resumed>) = 0 [pid 6857] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6856] <... munmap resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6857] <... openat resumed>) = 4 [pid 6856] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6858] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6857] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 6859 attached [pid 6858] <... openat resumed>) = 4 [pid 6856] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6856] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6859 [pid 6859] set_robust_list(0x55555635e660, 24 [pid 6858] ioctl(4, LOOP_SET_FD, 3 [pid 6859] <... set_robust_list resumed>) = 0 [pid 5031] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6859] chdir("./304" [pid 6856] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./301/file0", [pid 5030] newfstatat(AT_FDCWD, "./302/file0", [pid 6859] <... chdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6859] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6859] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6859] setpgid(0, 0) = 0 [pid 6857] <... ioctl resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(4, "", [pid 6857] close(3) = 0 [pid 6857] mkdir("./file0", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6859] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6857] <... mkdir resumed>) = 0 [pid 6856] close(3 [pid 5031] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6856] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6856] mkdir("./file0", 0777 [pid 5030] openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6859] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6857] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6859] write(3, "1000", 4 [pid 6856] <... mkdir resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6859] <... write resumed>) = 4 [pid 5031] close(4 [pid 5030] getdents64(4, [pid 6859] close(3 [pid 6856] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] <... close resumed>) = 0 [ 256.404644][ T6857] loop0: detected capacity change from 0 to 4096 [ 256.412339][ T6856] loop4: detected capacity change from 0 to 4096 [ 256.412447][ T6858] loop5: detected capacity change from 0 to 4096 [ 256.440919][ T6857] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] rmdir("./301/file0" [pid 6859] <... close resumed>) = 0 [pid 6858] <... ioctl resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6859] symlink("/dev/binderfs", "./binderfs" [pid 6858] close(3 [pid 5031] getdents64(3, [pid 5030] getdents64(4, [pid 6859] <... symlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5031] close(3 [pid 6858] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6858] mkdir("./file0", 0777 [pid 5031] rmdir("./301" [pid 5030] rmdir("./302/file0" [pid 6859] memfd_create("syzkaller", 0 [pid 6858] <... mkdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] mkdir("./302", 0777 [pid 5030] getdents64(3, [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./302") = 0 [pid 5030] mkdir("./303", 0777 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... mkdir resumed>) = 0 [pid 6858] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6859] <... memfd_create resumed>) = 3 [pid 6859] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... openat resumed>) = 3 [ 256.450435][ T6856] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6859] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 6860 attached ) = -1 ENXIO (No such device or address) [pid 6860] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6860 [pid 5030] close(3 [pid 6860] <... set_robust_list resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6860] chdir("./302" [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6860] <... chdir resumed>) = 0 [pid 6860] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6860] setpgid(0, 0) = 0 [pid 6860] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6861 [pid 6860] <... openat resumed>) = 3 [pid 6860] write(3, "1000", 4./strace-static-x86_64: Process 6861 attached ) = 4 [pid 6861] set_robust_list(0x55555635e660, 24 [pid 6860] close(3 [pid 6856] <... mount resumed>) = 0 [pid 6860] <... close resumed>) = 0 [pid 6860] symlink("/dev/binderfs", "./binderfs" [pid 6861] <... set_robust_list resumed>) = 0 [pid 6860] <... symlink resumed>) = 0 [pid 6861] chdir("./303" [pid 6856] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6861] <... chdir resumed>) = 0 [pid 6857] <... mount resumed>) = 0 [pid 6856] <... openat resumed>) = 3 [pid 6861] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6860] memfd_create("syzkaller", 0 [pid 6857] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6861] <... prctl resumed>) = 0 [pid 6861] setpgid(0, 0 [pid 6857] <... openat resumed>) = 3 [pid 6856] chdir("./file0" [pid 6861] <... setpgid resumed>) = 0 [pid 6861] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6860] <... memfd_create resumed>) = 3 [pid 6856] <... chdir resumed>) = 0 [pid 6860] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6856] ioctl(4, LOOP_CLR_FD [pid 6861] <... openat resumed>) = 3 [pid 6860] <... mmap resumed>) = 0x7ff0df171000 [pid 6856] <... ioctl resumed>) = 0 [pid 6861] write(3, "1000", 4 [pid 6857] chdir("./file0" [pid 6861] <... write resumed>) = 4 [pid 6857] <... chdir resumed>) = 0 [ 256.483390][ T6858] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6861] close(3 [pid 6859] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6857] ioctl(4, LOOP_CLR_FD [pid 6856] close(4 [pid 6861] <... close resumed>) = 0 [pid 6857] <... ioctl resumed>) = 0 [pid 6856] <... close resumed>) = 0 [pid 6861] symlink("/dev/binderfs", "./binderfs" [pid 6857] close(4 [pid 6856] exit_group(0 [pid 6861] <... symlink resumed>) = 0 [pid 6857] <... close resumed>) = 0 [pid 6856] <... exit_group resumed>) = ? [pid 6861] memfd_create("syzkaller", 0 [pid 6857] exit_group(0 [pid 6856] +++ exited with 0 +++ [pid 6857] <... exit_group resumed>) = ? [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6856, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6857] +++ exited with 0 +++ [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6857, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] getdents64(3, [pid 6861] <... memfd_create resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6861] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6861] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] newfstatat(AT_FDCWD, "./296/binderfs", [pid 5029] openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5033] unlink("./296/binderfs" [pid 5029] newfstatat(3, "", [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./302/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./302/binderfs") = 0 [pid 5029] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6858] <... mount resumed>) = 0 [pid 6860] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6859] <... write resumed>) = 2097152 [pid 6858] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6859] munmap(0x7ff0df171000, 138412032 [pid 6858] <... openat resumed>) = 3 [pid 6858] chdir("./file0") = 0 [pid 6858] ioctl(4, LOOP_CLR_FD) = 0 [pid 6858] close(4 [pid 6861] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6859] <... munmap resumed>) = 0 [pid 6858] <... close resumed>) = 0 [pid 6859] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6858] exit_group(0 [pid 6859] <... openat resumed>) = 4 [pid 6858] <... exit_group resumed>) = ? [pid 6859] ioctl(4, LOOP_SET_FD, 3 [pid 6858] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6858, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 5034] umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./295/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./295/binderfs" [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./296/file0", [pid 5029] newfstatat(AT_FDCWD, "./302/file0", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(4, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5029] openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] newfstatat(4, "", [pid 5033] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] getdents64(4, [pid 6860] <... write resumed>) = 2097152 [pid 5033] rmdir("./296/file0") = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(3, [pid 5029] getdents64(4, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5029] close(4 [pid 5033] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5033] rmdir("./296" [pid 5029] rmdir("./302/file0" [pid 6861] <... write resumed>) = 2097152 [pid 6860] munmap(0x7ff0df171000, 138412032 [pid 6859] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5033] mkdir("./297", 0777) = 0 [pid 6859] close(3) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] getdents64(3, [pid 6859] mkdir("./file0", 0777 [pid 5033] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5029] close(3) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] rmdir("./302" [pid 5033] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 6859] <... mkdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [ 256.661014][ T6859] loop3: detected capacity change from 0 to 4096 [pid 5029] mkdir("./303", 0777 [pid 6859] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 6862 attached ) = 3 [pid 6862] set_robust_list(0x55555635e660, 24 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6862] <... set_robust_list resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6862] chdir("./297" [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6862] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 6863 attached [pid 6862] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6862 [pid 6862] <... prctl resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6863 [pid 6863] set_robust_list(0x55555635e660, 24 [pid 6862] setpgid(0, 0 [pid 6863] <... set_robust_list resumed>) = 0 [pid 6862] <... setpgid resumed>) = 0 [pid 6863] chdir("./303" [pid 6862] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6863] <... chdir resumed>) = 0 [pid 6863] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6863] setpgid(0, 0) = 0 [pid 6863] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6862] write(3, "1000", 4 [pid 6860] <... munmap resumed>) = 0 [pid 6861] munmap(0x7ff0df171000, 138412032 [pid 6863] write(3, "1000", 4 [pid 6862] <... write resumed>) = 4 [pid 6863] <... write resumed>) = 4 [pid 6862] close(3 [pid 6861] <... munmap resumed>) = 0 [pid 6860] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6862] <... close resumed>) = 0 [pid 6860] <... openat resumed>) = 4 [pid 6862] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6861] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6860] ioctl(4, LOOP_SET_FD, 3 [pid 6863] close(3 [pid 6862] memfd_create("syzkaller", 0 [pid 6863] <... close resumed>) = 0 [pid 6863] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6863] memfd_create("syzkaller", 0 [pid 6861] <... openat resumed>) = 4 [pid 6861] ioctl(4, LOOP_SET_FD, 3 [pid 6863] <... memfd_create resumed>) = 3 [pid 6862] <... memfd_create resumed>) = 3 [pid 6862] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6860] <... ioctl resumed>) = 0 [pid 6860] close(3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6863] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6860] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./295/file0", [pid 6860] mkdir("./file0", 0777 [pid 6861] <... ioctl resumed>) = 0 [pid 6860] <... mkdir resumed>) = 0 [pid 6861] close(3 [pid 6863] <... mmap resumed>) = 0x7ff0df171000 [pid 6861] <... close resumed>) = 0 [pid 6860] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 256.711182][ T6859] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 256.744892][ T6860] loop2: detected capacity change from 0 to 4096 [ 256.752650][ T6861] loop1: detected capacity change from 0 to 4096 [pid 6861] mkdir("./file0", 0777) = 0 [pid 5034] umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6861] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./295/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./295") = 0 [pid 5034] mkdir("./296", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6864 ./strace-static-x86_64: Process 6864 attached [pid 6859] <... mount resumed>) = 0 [pid 6864] set_robust_list(0x55555635e660, 24 [pid 6859] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6859] chdir("./file0" [pid 6864] <... set_robust_list resumed>) = 0 [pid 6862] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6859] <... chdir resumed>) = 0 [pid 6864] chdir("./296" [pid 6859] ioctl(4, LOOP_CLR_FD [pid 6864] <... chdir resumed>) = 0 [pid 6859] <... ioctl resumed>) = 0 [pid 6864] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6859] close(4 [pid 6864] <... prctl resumed>) = 0 [pid 6859] <... close resumed>) = 0 [pid 6864] setpgid(0, 0 [pid 6859] exit_group(0 [pid 6864] <... setpgid resumed>) = 0 [ 256.777675][ T6860] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 256.795290][ T6861] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6859] <... exit_group resumed>) = ? [pid 6864] <... openat resumed>) = 3 [pid 6864] write(3, "1000", 4) = 4 [pid 6859] +++ exited with 0 +++ [pid 6864] close(3) = 0 [pid 6864] symlink("/dev/binderfs", "./binderfs" [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6859, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 6864] <... symlink resumed>) = 0 [pid 6864] memfd_create("syzkaller", 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6864] <... memfd_create resumed>) = 3 [pid 6863] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6864] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6862] <... write resumed>) = 2097152 [pid 5032] newfstatat(AT_FDCWD, "./304/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6860] <... mount resumed>) = 0 [pid 5032] unlink("./304/binderfs") = 0 [pid 5032] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6860] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6861] <... mount resumed>) = 0 [pid 6861] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6860] <... openat resumed>) = 3 [pid 6860] chdir("./file0") = 0 [pid 6861] <... openat resumed>) = 3 [pid 6860] ioctl(4, LOOP_CLR_FD [pid 6863] <... write resumed>) = 2097152 [pid 6862] munmap(0x7ff0df171000, 138412032 [pid 6860] <... ioctl resumed>) = 0 [pid 6863] munmap(0x7ff0df171000, 138412032 [pid 6860] close(4 [pid 6861] chdir("./file0" [pid 6860] <... close resumed>) = 0 [pid 6863] <... munmap resumed>) = 0 [pid 6862] <... munmap resumed>) = 0 [pid 6861] <... chdir resumed>) = 0 [pid 6860] exit_group(0 [pid 6861] ioctl(4, LOOP_CLR_FD [pid 6860] <... exit_group resumed>) = ? [pid 6861] <... ioctl resumed>) = 0 [pid 6860] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6860, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6861] close(4 [pid 5031] <... restart_syscall resumed>) = 0 [pid 6861] <... close resumed>) = 0 [pid 5031] umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6861] exit_group(0 [pid 5031] openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6862] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6861] <... exit_group resumed>) = ? [pid 5031] <... openat resumed>) = 3 [pid 6862] <... openat resumed>) = 4 [pid 5031] newfstatat(3, "", [pid 6862] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6862] <... ioctl resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6864] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6863] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6863] <... openat resumed>) = 4 [pid 6861] +++ exited with 0 +++ [pid 5031] newfstatat(AT_FDCWD, "./302/binderfs", [pid 6863] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] unlink("./302/binderfs" [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6861, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5030] umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6863] <... ioctl resumed>) = 0 [pid 6862] close(3 [pid 5030] openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6863] close(3 [pid 6862] <... close resumed>) = 0 [pid 6862] mkdir("./file0", 0777) = 0 [pid 6862] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] newfstatat(AT_FDCWD, "./304/file0", [pid 5030] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6863] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 6863] mkdir("./file0", 0777 [pid 5032] <... openat resumed>) = 4 [pid 6863] <... mkdir resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 256.984408][ T6862] loop4: detected capacity change from 0 to 4096 [ 256.995083][ T6863] loop0: detected capacity change from 0 to 4096 [ 257.019504][ T6862] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6864] <... write resumed>) = 2097152 [pid 6863] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./303/binderfs", [pid 5032] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5030] unlink("./303/binderfs" [pid 5032] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5032] rmdir("./304/file0" [pid 5030] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6864] munmap(0x7ff0df171000, 138412032) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6864] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6864] ioctl(4, LOOP_SET_FD, 3 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./304") = 0 [pid 5032] mkdir("./305", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 6864] <... ioctl resumed>) = 0 [pid 6864] close(3) = 0 [pid 6864] mkdir("./file0", 0777 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = 0 [ 257.044012][ T6863] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 257.061333][ T6864] loop5: detected capacity change from 0 to 4096 [pid 5031] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6865 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6865 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 6865] set_robust_list(0x55555635e660, 24) = 0 [pid 6862] <... mount resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./302/file0", [pid 6862] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6865] chdir("./305" [pid 6862] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6865] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6862] chdir("./file0" [pid 5030] newfstatat(AT_FDCWD, "./303/file0", [pid 6864] <... mkdir resumed>) = 0 [pid 6862] <... chdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6862] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6862] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6862] close(4 [pid 5030] openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6862] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... openat resumed>) = 4 [pid 6865] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6862] exit_group(0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(4, "", [pid 6862] <... exit_group resumed>) = ? [pid 5031] getdents64(4, [pid 6865] <... prctl resumed>) = 0 [pid 6862] +++ exited with 0 +++ [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 6864] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6862, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=1 /* 0.01 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6865] setpgid(0, 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6865] <... setpgid resumed>) = 0 [pid 5031] close(4 [pid 5030] getdents64(4, [pid 5033] umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./303/file0") = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] getdents64(3, [pid 5033] newfstatat(3, "", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(3) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6863] <... mount resumed>) = 0 [pid 5033] umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./302/file0" [pid 5030] rmdir("./303" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6865] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] newfstatat(AT_FDCWD, "./297/binderfs", [pid 5031] getdents64(3, [pid 5030] mkdir("./304", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6865] <... openat resumed>) = 3 [pid 5033] unlink("./297/binderfs" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6863] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... unlink resumed>) = 0 [pid 5031] close(3 [pid 5030] <... openat resumed>) = 3 [pid 6865] write(3, "1000", 4 [pid 5031] <... close resumed>) = 0 [pid 6865] <... write resumed>) = 4 [pid 6863] <... openat resumed>) = 3 [pid 5033] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./302" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6865] close(3 [pid 6863] chdir("./file0" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6865] <... close resumed>) = 0 [pid 6863] <... chdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] close(3 [pid 6865] symlink("/dev/binderfs", "./binderfs" [pid 6863] ioctl(4, LOOP_CLR_FD [pid 5031] mkdir("./303", 0777 [pid 5030] <... close resumed>) = 0 [pid 6865] <... symlink resumed>) = 0 [pid 6863] <... ioctl resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR./strace-static-x86_64: Process 6866 attached [pid 6863] close(4 [pid 5031] <... openat resumed>) = 3 [pid 6866] set_robust_list(0x55555635e660, 24 [pid 6863] <... close resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6866 [pid 6866] <... set_robust_list resumed>) = 0 [pid 6863] exit_group(0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6865] memfd_create("syzkaller", 0 [pid 6866] chdir("./304" [pid 6863] <... exit_group resumed>) = ? [ 257.124974][ T6864] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6866] <... chdir resumed>) = 0 [pid 6865] <... memfd_create resumed>) = 3 [pid 6863] +++ exited with 0 +++ [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6866] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6865] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] close(3 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6863, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 6866] <... prctl resumed>) = 0 [pid 6865] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5031] <... close resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6866] setpgid(0, 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6866] <... setpgid resumed>) = 0 [pid 6866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6867 attached [pid 6866] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6867] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6867 [pid 5029] openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6866] write(3, "1000", 4 [pid 5033] newfstatat(AT_FDCWD, "./297/file0", [pid 5029] <... openat resumed>) = 3 [pid 6866] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(3, "", [pid 6866] close(3 [pid 5033] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6867] <... set_robust_list resumed>) = 0 [pid 6866] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 6866] symlink("/dev/binderfs", "./binderfs" [pid 5033] openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6867] chdir("./303" [pid 6866] <... symlink resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5029] umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6867] <... chdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./303/binderfs", [pid 5033] newfstatat(4, "", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] unlink("./303/binderfs" [pid 5033] getdents64(4, [pid 5029] <... unlink resumed>) = 0 [pid 6867] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6866] memfd_create("syzkaller", 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 6866] <... memfd_create resumed>) = 3 [pid 5033] rmdir("./297/file0" [pid 6867] <... prctl resumed>) = 0 [pid 6866] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6866] <... mmap resumed>) = 0x7ff0df171000 [pid 6867] setpgid(0, 0 [pid 5033] getdents64(3, [pid 6867] <... setpgid resumed>) = 0 [pid 6867] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 6867] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./297" [pid 6867] write(3, "1000", 4 [pid 5033] <... rmdir resumed>) = 0 [pid 6867] <... write resumed>) = 4 [pid 6867] close(3) = 0 [pid 6867] symlink("/dev/binderfs", "./binderfs" [pid 5033] mkdir("./298", 0777 [pid 6867] <... symlink resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 6864] <... mount resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6864] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] close(3 [pid 6867] memfd_create("syzkaller", 0 [pid 6864] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 6864] chdir("./file0" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6868 attached [pid 6867] <... memfd_create resumed>) = 3 [pid 6864] <... chdir resumed>) = 0 [pid 6868] set_robust_list(0x55555635e660, 24 [pid 6864] ioctl(4, LOOP_CLR_FD) = 0 [pid 6864] close(4 [pid 6868] <... set_robust_list resumed>) = 0 [pid 6864] <... close resumed>) = 0 [pid 6868] chdir("./298" [pid 6864] exit_group(0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6868 [pid 6868] <... chdir resumed>) = 0 [pid 6864] <... exit_group resumed>) = ? [pid 6868] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6864] +++ exited with 0 +++ [pid 6868] <... prctl resumed>) = 0 [pid 5029] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6868] setpgid(0, 0 [pid 6867] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6868] <... setpgid resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./303/file0", [pid 6868] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6864, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6868] <... openat resumed>) = 3 [pid 5034] umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6868] write(3, "1000", 4 [pid 5029] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6868] <... write resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6868] close(3) = 0 [pid 6868] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6868] memfd_create("syzkaller", 0 [pid 5029] openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] newfstatat(3, "", [pid 6868] <... memfd_create resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... openat resumed>) = 4 [pid 6868] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(3, [pid 5029] newfstatat(4, "", [pid 6868] <... mmap resumed>) = 0x7ff0df171000 [pid 6865] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./303/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./303" [pid 5034] umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6866] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] newfstatat(AT_FDCWD, "./296/binderfs", [pid 5029] mkdir("./304", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5034] unlink("./296/binderfs" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... unlink resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5034] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6869 attached , child_tidptr=0x55555635e650) = 6869 [pid 6869] set_robust_list(0x55555635e660, 24) = 0 [pid 6869] chdir("./304") = 0 [pid 6869] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6869] setpgid(0, 0) = 0 [pid 6867] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6869] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6869] write(3, "1000", 4) = 4 [pid 6869] close(3) = 0 [pid 6869] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6869] memfd_create("syzkaller", 0) = 3 [pid 6869] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6868] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6866] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 6865] <... write resumed>) = 2097152 [pid 5034] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./296/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6865] munmap(0x7ff0df171000, 138412032 [pid 6866] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6866] <... munmap resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6866] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6865] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6866] <... openat resumed>) = 4 [pid 5034] <... openat resumed>) = 4 [pid 6866] ioctl(4, LOOP_SET_FD, 3 [pid 5034] newfstatat(4, "", [pid 6866] <... ioctl resumed>) = 0 [pid 6865] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6867] <... write resumed>) = 2097152 [pid 6865] <... openat resumed>) = 4 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 6867] munmap(0x7ff0df171000, 138412032 [pid 6865] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6865] <... ioctl resumed>) = 0 [pid 5034] close(4 [pid 6866] close(3) = 0 [pid 6866] mkdir("./file0", 0777) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./296/file0" [pid 6866] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [ 257.444764][ T6866] loop1: detected capacity change from 0 to 4096 [ 257.475717][ T6865] loop3: detected capacity change from 0 to 4096 [pid 6869] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6868] <... write resumed>) = 2097152 [pid 6867] <... munmap resumed>) = 0 [pid 6865] close(3 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6867] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] close(3) = 0 [pid 6867] <... openat resumed>) = 4 [pid 6865] <... close resumed>) = 0 [pid 5034] rmdir("./296" [pid 6868] munmap(0x7ff0df171000, 138412032 [pid 6867] ioctl(4, LOOP_SET_FD, 3 [pid 6865] mkdir("./file0", 0777 [pid 5034] <... rmdir resumed>) = 0 [pid 6865] <... mkdir resumed>) = 0 [pid 5034] mkdir("./297", 0777) = 0 [pid 6868] <... munmap resumed>) = 0 [pid 6865] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 6868] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6867] <... ioctl resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6868] <... openat resumed>) = 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6868] ioctl(4, LOOP_SET_FD, 3 [pid 6867] close(3 [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6867] <... close resumed>) = 0 ./strace-static-x86_64: Process 6870 attached [pid 6867] mkdir("./file0", 0777 [pid 6868] <... ioctl resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6870 [pid 6870] set_robust_list(0x55555635e660, 24 [pid 6869] <... write resumed>) = 2097152 [pid 6868] close(3 [pid 6867] <... mkdir resumed>) = 0 [pid 6870] <... set_robust_list resumed>) = 0 [ 257.488167][ T6866] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 257.505451][ T6867] loop2: detected capacity change from 0 to 4096 [ 257.527376][ T6868] loop4: detected capacity change from 0 to 4096 [ 257.534789][ T6865] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6869] munmap(0x7ff0df171000, 138412032 [pid 6868] <... close resumed>) = 0 [pid 6867] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6870] chdir("./297" [pid 6868] mkdir("./file0", 0777 [pid 6866] <... mount resumed>) = 0 [pid 6870] <... chdir resumed>) = 0 [pid 6869] <... munmap resumed>) = 0 [pid 6868] <... mkdir resumed>) = 0 [pid 6870] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6868] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6870] <... prctl resumed>) = 0 [pid 6870] setpgid(0, 0) = 0 [pid 6870] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6866] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6870] <... openat resumed>) = 3 [pid 6866] <... openat resumed>) = 3 [pid 6866] chdir("./file0") = 0 [pid 6870] write(3, "1000", 4 [pid 6869] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6870] <... write resumed>) = 4 [pid 6869] <... openat resumed>) = 4 [pid 6870] close(3) = 0 [pid 6869] ioctl(4, LOOP_SET_FD, 3 [pid 6870] symlink("/dev/binderfs", "./binderfs" [pid 6867] <... mount resumed>) = 0 [pid 6866] ioctl(4, LOOP_CLR_FD [pid 6870] <... symlink resumed>) = 0 [pid 6869] <... ioctl resumed>) = 0 [pid 6870] memfd_create("syzkaller", 0 [pid 6867] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6866] <... ioctl resumed>) = 0 [pid 6869] close(3 [pid 6866] close(4 [pid 6869] <... close resumed>) = 0 [pid 6870] <... memfd_create resumed>) = 3 [pid 6870] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6867] <... openat resumed>) = 3 [pid 6866] <... close resumed>) = 0 [pid 6869] mkdir("./file0", 0777) = 0 [pid 6867] chdir("./file0" [pid 6866] exit_group(0 [pid 6867] <... chdir resumed>) = 0 [pid 6867] ioctl(4, LOOP_CLR_FD [pid 6866] <... exit_group resumed>) = ? [ 257.565412][ T6867] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 257.584060][ T6868] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 257.600713][ T6869] loop0: detected capacity change from 0 to 4096 [pid 6869] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6867] <... ioctl resumed>) = 0 [pid 6867] close(4) = 0 [pid 6866] +++ exited with 0 +++ [pid 6865] <... mount resumed>) = 0 [pid 6865] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6867] exit_group(0 [pid 6865] <... openat resumed>) = 3 [pid 6865] chdir("./file0") = 0 [pid 6865] ioctl(4, LOOP_CLR_FD) = 0 [pid 6867] <... exit_group resumed>) = ? [pid 6865] close(4) = 0 [pid 6865] exit_group(0) = ? [pid 6865] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6866, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6865, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6868] <... mount resumed>) = 0 [pid 5032] umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6868] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6868] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5030] newfstatat(3, "", [pid 6867] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5030] getdents64(3, [pid 6868] chdir("./file0" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6867, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6868] <... chdir resumed>) = 0 [pid 5032] umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6868] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6868] <... ioctl resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./305/binderfs", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6868] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./304/binderfs", [pid 6868] <... close resumed>) = 0 [pid 5032] unlink("./305/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./304/binderfs" [pid 6868] exit_group(0 [pid 5032] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 6868] <... exit_group resumed>) = ? [pid 5030] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... openat resumed>) = 3 [ 257.633320][ T6869] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6868] +++ exited with 0 +++ [pid 5031] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6868, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5031] getdents64(3, [pid 5030] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... restart_syscall resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./304/file0", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(AT_FDCWD, "./303/binderfs", [pid 5030] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] unlink("./303/binderfs" [pid 5033] openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... openat resumed>) = 3 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5033] newfstatat(3, "", [pid 5031] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(4, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5030] getdents64(4, [pid 6870] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./304/file0") = 0 [pid 5033] umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./298/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./298/binderfs" [pid 5030] getdents64(3, [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./304") = 0 [pid 5033] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./305", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./303/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6871 [pid 5031] getdents64(4, ./strace-static-x86_64: Process 6871 attached 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6871] set_robust_list(0x55555635e660, 24) = 0 [pid 6871] chdir("./305" [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6871] <... chdir resumed>) = 0 [pid 5031] close(4 [pid 6871] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... close resumed>) = 0 [pid 6871] <... prctl resumed>) = 0 [pid 5031] rmdir("./303/file0" [pid 6871] setpgid(0, 0 [pid 6869] <... mount resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6871] <... setpgid resumed>) = 0 [pid 6869] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = 0 [pid 6871] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6869] <... openat resumed>) = 3 [pid 5031] getdents64(3, [pid 6869] chdir("./file0" [pid 6871] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 6871] write(3, "1000", 4 [pid 5031] rmdir("./303" [pid 6869] <... chdir resumed>) = 0 [pid 6869] ioctl(4, LOOP_CLR_FD [pid 5032] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./305/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6869] <... ioctl resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6871] <... write resumed>) = 4 [pid 5032] openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6871] close(3 [pid 5032] <... openat resumed>) = 4 [pid 6871] <... close resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 6871] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] mkdir("./304", 0777 [pid 6871] <... symlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] <... mkdir resumed>) = 0 [pid 6869] close(4 [pid 6871] memfd_create("syzkaller", 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5032] close(4) = 0 [pid 5032] rmdir("./305/file0" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6869] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6871] <... memfd_create resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 6871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] getdents64(3, [pid 6871] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5031] close(3 [pid 5032] rmdir("./305" [pid 5031] <... close resumed>) = 0 [pid 6870] <... write resumed>) = 2097152 [pid 6869] exit_group(0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6869] <... exit_group resumed>) = ? [pid 6869] +++ exited with 0 +++ [pid 5032] mkdir("./306", 0777) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6869, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6872 [pid 5029] umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(AT_FDCWD, "./298/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] newfstatat(3, "", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] getdents64(3, [pid 5033] newfstatat(4, "", ./strace-static-x86_64: Process 6872 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] getdents64(4, [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6872] set_robust_list(0x55555635e660, 24 [pid 6870] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(4, [pid 5032] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6872] <... set_robust_list resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... close resumed>) = 0 [pid 5033] close(4 [pid 6872] chdir("./304" [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./298/file0") = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] getdents64(3, [pid 5029] newfstatat(AT_FDCWD, "./304/binderfs", [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6873 [pid 5033] close(3) = 0 [pid 5033] rmdir("./298") = 0 [pid 5033] mkdir("./299", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6872] <... chdir resumed>) = 0 [pid 5033] close(3./strace-static-x86_64: Process 6873 attached ) = 0 [pid 6873] set_robust_list(0x55555635e660, 24 [pid 6872] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6870] <... munmap resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] unlink("./304/binderfs" [pid 6873] <... set_robust_list resumed>) = 0 [pid 6872] <... prctl resumed>) = 0 [pid 6870] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6873] chdir("./306" [pid 6872] setpgid(0, 0 [pid 5029] <... unlink resumed>) = 0 [pid 6873] <... chdir resumed>) = 0 [pid 6872] <... setpgid resumed>) = 0 [pid 6870] <... openat resumed>) = 4 ./strace-static-x86_64: Process 6874 attached [pid 6873] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6872] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6870] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6874 [pid 5029] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6874] set_robust_list(0x55555635e660, 24 [pid 6873] <... prctl resumed>) = 0 [pid 6872] <... openat resumed>) = 3 [pid 6873] setpgid(0, 0) = 0 [pid 6873] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6874] <... set_robust_list resumed>) = 0 [pid 6873] <... openat resumed>) = 3 [pid 6874] chdir("./299" [pid 6873] write(3, "1000", 4) = 4 [pid 6873] close(3 [pid 6874] <... chdir resumed>) = 0 [pid 6873] <... close resumed>) = 0 [pid 6872] write(3, "1000", 4 [pid 6873] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6872] <... write resumed>) = 4 [pid 6873] memfd_create("syzkaller", 0 [pid 6872] close(3) = 0 [pid 6874] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6872] symlink("/dev/binderfs", "./binderfs" [pid 6874] <... prctl resumed>) = 0 [pid 6873] <... memfd_create resumed>) = 3 [pid 6874] setpgid(0, 0 [pid 6873] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6872] <... symlink resumed>) = 0 [pid 6874] <... setpgid resumed>) = 0 [pid 6874] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6874] write(3, "1000", 4) = 4 [pid 6874] close(3) = 0 [pid 6871] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6874] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6872] memfd_create("syzkaller", 0 [pid 6874] memfd_create("syzkaller", 0 [pid 6870] <... ioctl resumed>) = 0 [pid 6874] <... memfd_create resumed>) = 3 [pid 6874] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6872] <... memfd_create resumed>) = 3 [pid 6870] close(3) = 0 [ 257.844710][ T6870] loop5: detected capacity change from 0 to 4096 [pid 6872] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6870] mkdir("./file0", 0777 [pid 6872] <... mmap resumed>) = 0x7ff0df171000 [pid 6870] <... mkdir resumed>) = 0 [pid 6870] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] <... umount2 resumed>) = 0 [pid 6873] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./304/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6871] <... write resumed>) = 2097152 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6871] munmap(0x7ff0df171000, 138412032 [pid 5029] openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6871] <... munmap resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6871] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 6871] <... openat resumed>) = 4 [pid 5029] rmdir("./304/file0" [pid 6872] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... rmdir resumed>) = 0 [ 257.933165][ T6870] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6871] ioctl(4, LOOP_SET_FD, 3 [pid 5029] getdents64(3, [pid 6874] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6871] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6871] close(3) = 0 [pid 6871] mkdir("./file0", 0777) = 0 [pid 6871] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] close(3) = 0 [pid 6870] <... mount resumed>) = 0 [pid 5029] rmdir("./304" [pid 6870] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 6870] <... openat resumed>) = 3 [pid 6870] chdir("./file0" [pid 5029] mkdir("./305", 0777 [pid 6870] <... chdir resumed>) = 0 [pid 6870] ioctl(4, LOOP_CLR_FD [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6870] <... ioctl resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [ 257.983928][ T6871] loop1: detected capacity change from 0 to 4096 [ 258.007852][ T6871] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6870] close(4 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6870] <... close resumed>) = 0 [pid 6873] <... write resumed>) = 2097152 [pid 6870] exit_group(0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6870] <... exit_group resumed>) = ? [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6875 attached , child_tidptr=0x55555635e650) = 6875 [pid 6875] set_robust_list(0x55555635e660, 24) = 0 [pid 6873] munmap(0x7ff0df171000, 138412032 [pid 6870] +++ exited with 0 +++ [pid 6875] chdir("./305" [pid 6873] <... munmap resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6870, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 6875] <... chdir resumed>) = 0 [pid 6872] <... write resumed>) = 2097152 [pid 6875] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6875] <... prctl resumed>) = 0 [pid 6872] munmap(0x7ff0df171000, 138412032 [pid 5034] <... openat resumed>) = 3 [pid 6873] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6875] setpgid(0, 0 [pid 6873] <... openat resumed>) = 4 [pid 6872] <... munmap resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 6875] <... setpgid resumed>) = 0 [pid 6874] <... write resumed>) = 2097152 [pid 6873] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 6875] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6874] munmap(0x7ff0df171000, 138412032 [pid 6872] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6871] <... mount resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6875] <... openat resumed>) = 3 [pid 5034] umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6875] write(3, "1000", 4 [pid 6874] <... munmap resumed>) = 0 [pid 6872] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6875] <... write resumed>) = 4 [pid 5034] newfstatat(AT_FDCWD, "./297/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6875] close(3 [pid 5034] unlink("./297/binderfs" [pid 6871] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6875] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6871] chdir("./file0" [pid 6875] symlink("/dev/binderfs", "./binderfs" [pid 6871] <... chdir resumed>) = 0 [pid 5034] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6871] ioctl(4, LOOP_CLR_FD [pid 6875] <... symlink resumed>) = 0 [pid 6871] <... ioctl resumed>) = 0 [pid 6871] close(4 [pid 6874] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6871] <... close resumed>) = 0 [pid 6874] <... openat resumed>) = 4 [pid 6873] <... ioctl resumed>) = 0 [pid 6871] exit_group(0 [pid 6875] memfd_create("syzkaller", 0 [pid 6874] ioctl(4, LOOP_SET_FD, 3 [pid 6873] close(3 [pid 6872] ioctl(4, LOOP_SET_FD, 3 [pid 6871] <... exit_group resumed>) = ? [pid 6875] <... memfd_create resumed>) = 3 [pid 6871] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6871, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 6874] <... ioctl resumed>) = 0 [pid 6874] close(3 [pid 5030] umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6874] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6873] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 6874] mkdir("./file0", 0777 [pid 6873] mkdir("./file0", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6875] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6874] <... mkdir resumed>) = 0 [pid 6873] <... mkdir resumed>) = 0 [pid 5030] umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6875] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6873] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(AT_FDCWD, "./305/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 258.106504][ T6873] loop3: detected capacity change from 0 to 4096 [ 258.124865][ T6874] loop4: detected capacity change from 0 to 4096 [ 258.131755][ T6872] loop2: detected capacity change from 0 to 4096 [pid 6874] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] unlink("./305/binderfs" [pid 6872] <... ioctl resumed>) = 0 [pid 6872] close(3) = 0 [pid 6872] mkdir("./file0", 0777 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6872] <... mkdir resumed>) = 0 [pid 6872] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./297/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5030] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./305/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(4, [pid 5030] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(4, "", [pid 5034] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./297/file0" [pid 5030] getdents64(4, [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5034] getdents64(3, [pid 5030] rmdir("./305/file0" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./297" [pid 5030] getdents64(3, [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./305" [pid 5034] mkdir("./298", 0777 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./306", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5030] <... ioctl resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD) = 0 [pid 5030] close(3 [pid 5034] close(3) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6876 attached [pid 6876] set_robust_list(0x55555635e660, 24) = 0 [pid 6876] chdir("./298") = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6876 [ 258.148291][ T6873] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 258.166312][ T6872] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 258.168240][ T6874] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6876] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 6877 attached ) = 0 [pid 6877] set_robust_list(0x55555635e660, 24 [pid 6876] setpgid(0, 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6877 [pid 6877] <... set_robust_list resumed>) = 0 [pid 6876] <... setpgid resumed>) = 0 [pid 6877] chdir("./306" [pid 6876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6877] <... chdir resumed>) = 0 [pid 6877] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6876] write(3, "1000", 4) = 4 [pid 6877] <... prctl resumed>) = 0 [pid 6877] setpgid(0, 0 [pid 6876] close(3 [pid 6873] <... mount resumed>) = 0 [pid 6877] <... setpgid resumed>) = 0 [pid 6877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6876] <... close resumed>) = 0 [pid 6877] write(3, "1000", 4 [pid 6876] symlink("/dev/binderfs", "./binderfs" [pid 6873] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6877] <... write resumed>) = 4 [pid 6876] <... symlink resumed>) = 0 [pid 6873] <... openat resumed>) = 3 [pid 6877] close(3 [pid 6873] chdir("./file0" [pid 6877] <... close resumed>) = 0 [pid 6873] <... chdir resumed>) = 0 [pid 6877] symlink("/dev/binderfs", "./binderfs" [pid 6873] ioctl(4, LOOP_CLR_FD [pid 6877] <... symlink resumed>) = 0 [pid 6873] <... ioctl resumed>) = 0 [pid 6876] memfd_create("syzkaller", 0 [pid 6873] close(4) = 0 [pid 6877] memfd_create("syzkaller", 0 [pid 6876] <... memfd_create resumed>) = 3 [pid 6875] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6873] exit_group(0 [pid 6872] <... mount resumed>) = 0 [pid 6876] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6873] <... exit_group resumed>) = ? [pid 6877] <... memfd_create resumed>) = 3 [pid 6873] +++ exited with 0 +++ [pid 6872] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6873, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=8 /* 0.08 s */} --- [pid 6877] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6872] <... openat resumed>) = 3 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 6872] chdir("./file0" [pid 5032] <... restart_syscall resumed>) = 0 [pid 6877] <... mmap resumed>) = 0x7ff0df171000 [pid 6872] <... chdir resumed>) = 0 [pid 5032] umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6872] ioctl(4, LOOP_CLR_FD) = 0 [pid 6872] close(4) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6872] exit_group(0 [pid 5032] getdents64(3, [pid 6874] <... mount resumed>) = 0 [pid 6872] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./306/binderfs", [pid 6872] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6872, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6874] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6875] <... write resumed>) = 2097152 [pid 6874] <... openat resumed>) = 3 [pid 5032] unlink("./306/binderfs" [pid 6875] munmap(0x7ff0df171000, 138412032 [pid 6874] chdir("./file0" [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6874] <... chdir resumed>) = 0 [pid 6874] ioctl(4, LOOP_CLR_FD [pid 5031] umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6874] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6874] close(4 [pid 5031] openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6875] <... munmap resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6875] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6874] <... close resumed>) = 0 [pid 6875] <... openat resumed>) = 4 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6875] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./304/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./304/binderfs") = 0 [pid 5031] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6875] <... ioctl resumed>) = 0 [pid 6875] close(3 [pid 6874] exit_group(0 [pid 6875] <... close resumed>) = 0 [pid 6874] <... exit_group resumed>) = ? [pid 6877] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6876] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6875] mkdir("./file0", 0777 [pid 6874] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6874, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6875] <... mkdir resumed>) = 0 [pid 6875] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 258.345746][ T6875] loop0: detected capacity change from 0 to 4096 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./299/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./299/binderfs") = 0 [pid 5033] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6876] <... write resumed>) = 2097152 [pid 5031] newfstatat(AT_FDCWD, "./304/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 6877] <... write resumed>) = 2097152 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6877] munmap(0x7ff0df171000, 138412032 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 6876] munmap(0x7ff0df171000, 138412032 [pid 5031] <... close resumed>) = 0 [ 258.398357][ T6875] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] rmdir("./304/file0") = 0 [pid 5032] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./306/file0", [pid 5031] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... close resumed>) = 0 [pid 6877] <... munmap resumed>) = 0 [pid 6876] <... munmap resumed>) = 0 [pid 5032] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./304" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] mkdir("./305", 0777 [pid 5032] <... openat resumed>) = 4 [pid 5031] <... mkdir resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5032] getdents64(4, [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] getdents64(4, [pid 5031] close(3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 6877] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6876] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] close(4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... close resumed>) = 0 [pid 6876] <... openat resumed>) = 4 [pid 5032] rmdir("./306/file0" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6878 [pid 6877] <... openat resumed>) = 4 [pid 5032] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6878 attached [pid 6876] ioctl(4, LOOP_SET_FD, 3 [pid 5032] getdents64(3, [pid 6878] set_robust_list(0x55555635e660, 24 [pid 6877] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6878] <... set_robust_list resumed>) = 0 [pid 5032] close(3 [pid 6878] chdir("./305" [pid 5032] <... close resumed>) = 0 [pid 6878] <... chdir resumed>) = 0 [pid 5032] rmdir("./306" [pid 6878] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 6878] <... prctl resumed>) = 0 [pid 5032] mkdir("./307", 0777) = 0 [pid 6878] setpgid(0, 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6878] <... setpgid resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] newfstatat(AT_FDCWD, "./299/file0", [pid 5032] <... openat resumed>) = 3 [pid 6878] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6878] write(3, "1000", 4 [pid 5033] openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(3 [pid 6878] <... write resumed>) = 4 [pid 5033] <... openat resumed>) = 4 [pid 5032] <... close resumed>) = 0 [pid 6878] close(3 [pid 6876] <... ioctl resumed>) = 0 [pid 6878] <... close resumed>) = 0 [pid 6876] close(3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6876] <... close resumed>) = 0 [pid 6876] mkdir("./file0", 0777 [pid 5033] newfstatat(4, "", [pid 6878] symlink("/dev/binderfs", "./binderfs" [pid 6877] <... ioctl resumed>) = 0 [pid 6876] <... mkdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6877] close(3 [pid 6876] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6878] <... symlink resumed>) = 0 [pid 5033] getdents64(4, [pid 6878] memfd_create("syzkaller", 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 6879 attached [pid 5033] getdents64(4, [pid 6879] set_robust_list(0x55555635e660, 24 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6879] <... set_robust_list resumed>) = 0 [pid 5033] close(4 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6879 [pid 6879] chdir("./307" [pid 5033] <... close resumed>) = 0 [pid 6879] <... chdir resumed>) = 0 [pid 5033] rmdir("./299/file0") = 0 [pid 6879] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6878] <... memfd_create resumed>) = 3 [pid 6879] <... prctl resumed>) = 0 [pid 6878] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] getdents64(3, [pid 6879] setpgid(0, 0 [pid 6878] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6879] <... setpgid resumed>) = 0 [pid 6877] <... close resumed>) = 0 [pid 6877] mkdir("./file0", 0777 [pid 6875] <... mount resumed>) = 0 [pid 6879] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] close(3 [pid 6877] <... mkdir resumed>) = 0 [pid 6877] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... close resumed>) = 0 [ 258.494763][ T6876] loop5: detected capacity change from 0 to 4096 [ 258.501617][ T6877] loop1: detected capacity change from 0 to 4096 [ 258.529440][ T6876] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5033] rmdir("./299" [pid 6879] <... openat resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 6879] write(3, "1000", 4) = 4 [pid 6875] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] mkdir("./300", 0777 [pid 6875] <... openat resumed>) = 3 [pid 6879] close(3 [pid 6875] chdir("./file0" [pid 5033] <... mkdir resumed>) = 0 [pid 6879] <... close resumed>) = 0 [pid 6879] symlink("/dev/binderfs", "./binderfs" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6879] <... symlink resumed>) = 0 [pid 6875] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6875] ioctl(4, LOOP_CLR_FD [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6875] <... ioctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6875] close(4 [pid 5033] close(3 [pid 6875] <... close resumed>) = 0 [pid 6879] memfd_create("syzkaller", 0 [pid 6875] exit_group(0 [pid 5033] <... close resumed>) = 0 [pid 6875] <... exit_group resumed>) = ? [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6879] <... memfd_create resumed>) = 3 [pid 6875] +++ exited with 0 +++ [pid 6879] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6880 [pid 6879] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6875, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5029] umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6880 attached ) = -1 EINVAL (Invalid argument) [pid 6880] set_robust_list(0x55555635e660, 24 [pid 5029] openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 6880] <... set_robust_list resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6880] chdir("./300" [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6880] <... chdir resumed>) = 0 [pid 5029] umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6880] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6880] <... prctl resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./305/binderfs", [pid 6880] setpgid(0, 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6880] <... setpgid resumed>) = 0 [pid 5029] unlink("./305/binderfs" [pid 6880] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... unlink resumed>) = 0 [pid 6880] <... openat resumed>) = 3 [ 258.548102][ T6877] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6880] write(3, "1000", 4) = 4 [pid 6880] close(3) = 0 [pid 6880] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6880] memfd_create("syzkaller", 0 [pid 6877] <... mount resumed>) = 0 [pid 6880] <... memfd_create resumed>) = 3 [pid 6877] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6876] <... mount resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6880] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6877] <... openat resumed>) = 3 [pid 6876] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6880] <... mmap resumed>) = 0x7ff0df171000 [pid 6877] chdir("./file0" [pid 6876] <... openat resumed>) = 3 [pid 6878] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6877] <... chdir resumed>) = 0 [pid 6876] chdir("./file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6876] <... chdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./305/file0", [pid 6877] ioctl(4, LOOP_CLR_FD [pid 6876] ioctl(4, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6879] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6877] <... ioctl resumed>) = 0 [pid 6876] <... ioctl resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 6877] close(4 [pid 6876] close(4 [pid 6877] <... close resumed>) = 0 [pid 6876] <... close resumed>) = 0 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6876] exit_group(0 [pid 6877] exit_group(0 [pid 6876] <... exit_group resumed>) = ? [pid 5029] close(4) = 0 [pid 5029] rmdir("./305/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6876] +++ exited with 0 +++ [pid 6877] <... exit_group resumed>) = ? [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./305") = 0 [pid 6877] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6876, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=2 /* 0.02 s */} --- [pid 5029] mkdir("./306", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6877, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./298/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 5034] unlink("./298/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5034] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... openat resumed>) = 3 [pid 5030] umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./306/binderfs", [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./306/binderfs") = 0 [pid 5030] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6881 ./strace-static-x86_64: Process 6881 attached [pid 6881] set_robust_list(0x55555635e660, 24) = 0 [pid 6881] chdir("./306") = 0 [pid 6880] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6878] <... write resumed>) = 2097152 [pid 6881] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6878] munmap(0x7ff0df171000, 138412032 [pid 6881] <... prctl resumed>) = 0 [pid 6881] setpgid(0, 0) = 0 [pid 6881] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6881] write(3, "1000", 4) = 4 [pid 6878] <... munmap resumed>) = 0 [pid 6881] close(3) = 0 [pid 6881] symlink("/dev/binderfs", "./binderfs" [pid 6878] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6881] <... symlink resumed>) = 0 [pid 6878] <... openat resumed>) = 4 [pid 6878] ioctl(4, LOOP_SET_FD, 3 [pid 6881] memfd_create("syzkaller", 0) = 3 [pid 5034] <... umount2 resumed>) = 0 [pid 6879] <... write resumed>) = 2097152 [pid 6881] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6881] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./298/file0", [pid 6879] munmap(0x7ff0df171000, 138412032 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./306/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6879] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 4 [pid 6879] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6879] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6879] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5034] getdents64(4, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 6880] <... write resumed>) = 2097152 [pid 6879] <... ioctl resumed>) = 0 [pid 6878] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 6878] close(3 [pid 5030] rmdir("./306/file0" [pid 6878] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6878] mkdir("./file0", 0777) = 0 [pid 5030] getdents64(3, [pid 6878] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [ 258.787013][ T6878] loop2: detected capacity change from 0 to 4096 [ 258.823951][ T6879] loop3: detected capacity change from 0 to 4096 [pid 5030] rmdir("./306" [pid 6880] munmap(0x7ff0df171000, 138412032 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./298/file0" [pid 5030] mkdir("./307", 0777 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6879] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6879] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 5030] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6879] mkdir("./file0", 0777 [pid 5034] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6880] <... munmap resumed>) = 0 [pid 6879] <... mkdir resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6879] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5030] close(3 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./298" [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... rmdir resumed>) = 0 [pid 6880] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6882 ./strace-static-x86_64: Process 6882 attached [pid 6882] set_robust_list(0x55555635e660, 24) = 0 [pid 5034] mkdir("./299", 0777 [pid 6882] chdir("./307") = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6882] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6880] ioctl(4, LOOP_SET_FD, 3 [pid 6882] <... prctl resumed>) = 0 [pid 6882] setpgid(0, 0) = 0 [pid 6882] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6882] write(3, "1000", 4) = 4 [pid 6882] close(3) = 0 [pid 6882] symlink("/dev/binderfs", "./binderfs") = 0 [ 258.840180][ T6878] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 258.862923][ T6879] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6881] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6882] memfd_create("syzkaller", 0) = 3 [pid 6882] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6880] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6880] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6880] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 6880] mkdir("./file0", 0777 [pid 5034] <... close resumed>) = 0 [pid 6880] <... mkdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6880] mount("/dev/loop4", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6883 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6883 [pid 6883] set_robust_list(0x55555635e660, 24) = 0 [pid 6883] chdir("./299") = 0 [pid 6883] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6883] setpgid(0, 0) = 0 [pid 6883] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 258.890988][ T6880] loop4: detected capacity change from 0 to 4096 [ 258.922275][ T6880] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6883] write(3, "1000", 4) = 4 [pid 6883] close(3) = 0 [pid 6883] symlink("/dev/binderfs", "./binderfs" [pid 6878] <... mount resumed>) = 0 [pid 6878] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6882] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6878] chdir("./file0") = 0 [pid 6878] ioctl(4, LOOP_CLR_FD [pid 6883] <... symlink resumed>) = 0 [pid 6883] memfd_create("syzkaller", 0) = 3 [pid 6881] <... write resumed>) = 2097152 [pid 6879] <... mount resumed>) = 0 [pid 6883] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6881] munmap(0x7ff0df171000, 138412032 [pid 6878] <... ioctl resumed>) = 0 [pid 6879] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6878] close(4 [pid 6879] <... openat resumed>) = 3 [pid 6878] <... close resumed>) = 0 [pid 6883] <... mmap resumed>) = 0x7ff0df171000 [pid 6881] <... munmap resumed>) = 0 [pid 6879] chdir("./file0" [pid 6878] exit_group(0 [pid 6879] <... chdir resumed>) = 0 [pid 6879] ioctl(4, LOOP_CLR_FD) = 0 [pid 6879] close(4 [pid 6878] <... exit_group resumed>) = ? [pid 6881] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6882] <... write resumed>) = 2097152 [pid 6879] <... close resumed>) = 0 [pid 6878] +++ exited with 0 +++ [pid 6881] <... openat resumed>) = 4 [pid 6880] <... mount resumed>) = 0 [pid 6879] exit_group(0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6878, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6881] ioctl(4, LOOP_SET_FD, 3 [pid 6880] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6879] <... exit_group resumed>) = ? [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6880] <... openat resumed>) = 3 [pid 6879] +++ exited with 0 +++ [pid 5031] <... restart_syscall resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6879, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 6880] chdir("./file0" [pid 5031] umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6880] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6880] ioctl(4, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 3 [pid 6880] <... ioctl resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6880] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6882] munmap(0x7ff0df171000, 138412032 [pid 6880] <... close resumed>) = 0 [pid 5032] umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 6880] exit_group(0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6882] <... munmap resumed>) = 0 [pid 6880] <... exit_group resumed>) = ? [pid 5032] <... openat resumed>) = 3 [pid 5031] umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6880] +++ exited with 0 +++ [pid 5032] newfstatat(3, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6880, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] getdents64(3, [pid 5031] newfstatat(AT_FDCWD, "./305/binderfs", [pid 5033] umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./307/binderfs", [pid 5031] unlink("./305/binderfs" [pid 5033] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6881] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 6881] close(3 [pid 5032] unlink("./307/binderfs" [pid 5031] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6881] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 6882] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6881] mkdir("./file0", 0777 [pid 6882] <... openat resumed>) = 4 [pid 6881] <... mkdir resumed>) = 0 [pid 6882] ioctl(4, LOOP_SET_FD, 3 [pid 6881] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 259.031936][ T6881] loop0: detected capacity change from 0 to 4096 [ 259.068747][ T6882] loop1: detected capacity change from 0 to 4096 [pid 5033] getdents64(3, [pid 5032] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6882] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./300/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6882] close(3) = 0 [pid 5033] unlink("./300/binderfs" [pid 6882] mkdir("./file0", 0777) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6882] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6883] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./305/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./305/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./305") = 0 [pid 5031] mkdir("./306", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3) = 0 [ 259.070943][ T6881] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 259.101114][ T6882] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6884 attached ) = -1 EINVAL (Invalid argument) [pid 6884] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] newfstatat(AT_FDCWD, "./307/file0", [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6884 [pid 6884] chdir("./306" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6883] <... write resumed>) = 2097152 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6884] <... chdir resumed>) = 0 [pid 6881] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6884] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6882] <... mount resumed>) = 0 [pid 6881] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6882] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... openat resumed>) = 4 [pid 6884] <... prctl resumed>) = 0 [pid 6883] munmap(0x7ff0df171000, 138412032 [pid 6882] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", [pid 6882] chdir("./file0") = 0 [pid 6884] setpgid(0, 0 [pid 6883] <... munmap resumed>) = 0 [pid 6882] ioctl(4, LOOP_CLR_FD [pid 6881] <... openat resumed>) = 3 [pid 5033] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6884] <... setpgid resumed>) = 0 [pid 6883] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6882] <... ioctl resumed>) = 0 [pid 5032] getdents64(4, [pid 6884] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6883] <... openat resumed>) = 4 [pid 6882] close(4 [pid 6881] chdir("./file0" [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6884] <... openat resumed>) = 3 [pid 6883] ioctl(4, LOOP_SET_FD, 3 [pid 6882] <... close resumed>) = 0 [pid 6881] <... chdir resumed>) = 0 [pid 5032] getdents64(4, [pid 6884] write(3, "1000", 4 [pid 6881] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6884] <... write resumed>) = 4 [pid 6882] exit_group(0 [pid 6881] <... ioctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./300/file0", [pid 6884] close(3 [pid 6881] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6884] <... close resumed>) = 0 [pid 6881] <... close resumed>) = 0 [pid 5033] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6884] symlink("/dev/binderfs", "./binderfs" [pid 6881] exit_group(0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6884] <... symlink resumed>) = 0 [pid 6882] <... exit_group resumed>) = ? [pid 6881] <... exit_group resumed>) = ? [pid 5033] openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(4 [pid 5033] <... openat resumed>) = 4 [pid 6882] +++ exited with 0 +++ [pid 5033] newfstatat(4, "", [pid 6884] memfd_create("syzkaller", 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... close resumed>) = 0 [pid 6881] +++ exited with 0 +++ [pid 5032] rmdir("./307/file0" [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6882, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] getdents64(4, [pid 5030] umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6884] <... memfd_create resumed>) = 3 [pid 6883] <... ioctl resumed>) = 0 [pid 5033] getdents64(4, [pid 5032] getdents64(3, [pid 5030] openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6881, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 6884] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6883] close(3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6884] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] close(4 [pid 5030] newfstatat(3, "", [pid 5033] <... close resumed>) = 0 [pid 5032] close(3 [pid 5029] <... restart_syscall resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5029] umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5033] rmdir("./300/file0" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] rmdir("./307" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] mkdir("./308", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 5032] <... mkdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./307/binderfs", [pid 5029] newfstatat(3, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] unlink("./307/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5033] close(3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] getdents64(3, [pid 5030] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... close resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./300" [pid 5032] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./306/binderfs", [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./306/binderfs" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6885 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] mkdir("./301", 0777./strace-static-x86_64: Process 6885 attached [pid 6885] set_robust_list(0x55555635e660, 24 [pid 5033] <... mkdir resumed>) = 0 [pid 6883] <... close resumed>) = 0 [ 259.216889][ T6883] loop5: detected capacity change from 0 to 4096 [pid 6883] mkdir("./file0", 0777 [pid 6885] <... set_robust_list resumed>) = 0 [pid 6885] chdir("./308" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6883] <... mkdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6883] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] close(3) = 0 [pid 6885] <... chdir resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... umount2 resumed>) = 0 [pid 6885] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6885] setpgid(0, 0 [pid 5030] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6885] <... setpgid resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6885] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] newfstatat(AT_FDCWD, "./307/file0", ./strace-static-x86_64: Process 6886 attached [pid 6885] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6886] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6886 [pid 5030] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6885] write(3, "1000", 4 [pid 5030] <... openat resumed>) = 4 [pid 6885] <... write resumed>) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./307/file0") = 0 [pid 6885] close(3) = 0 [pid 6885] symlink("/dev/binderfs", "./binderfs" [pid 6886] <... set_robust_list resumed>) = 0 [pid 6885] <... symlink resumed>) = 0 [pid 5030] getdents64(3, [pid 6886] chdir("./301" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 6886] <... chdir resumed>) = 0 [pid 5030] rmdir("./307" [pid 6886] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6885] memfd_create("syzkaller", 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./308", 0777 [pid 6886] setpgid(0, 0 [pid 6884] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... mkdir resumed>) = 0 [pid 6886] <... setpgid resumed>) = 0 [pid 6886] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6885] <... memfd_create resumed>) = 3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6886] <... openat resumed>) = 3 [pid 6885] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6886] write(3, "1000", 4 [pid 5029] newfstatat(AT_FDCWD, "./306/file0", [pid 6886] <... write resumed>) = 4 [pid 6886] close(3 [pid 6885] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6886] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6886] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6886] <... symlink resumed>) = 0 [pid 5030] close(3 [pid 5029] openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6887 [ 259.319219][ T6883] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). ./strace-static-x86_64: Process 6887 attached [pid 6886] memfd_create("syzkaller", 0 [pid 5029] newfstatat(4, "", [pid 6887] set_robust_list(0x55555635e660, 24) = 0 [pid 6887] chdir("./308") = 0 [pid 6887] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6887] setpgid(0, 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6887] <... setpgid resumed>) = 0 [pid 6886] <... memfd_create resumed>) = 3 [pid 5029] getdents64(4, [pid 6887] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6886] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6887] write(3, "1000", 4 [pid 6886] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] getdents64(4, [pid 6887] <... write resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6887] close(3 [pid 5029] close(4 [pid 6887] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6887] symlink("/dev/binderfs", "./binderfs" [pid 5029] rmdir("./306/file0" [pid 6887] <... symlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6887] memfd_create("syzkaller", 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6887] <... memfd_create resumed>) = 3 [pid 6887] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] close(3) = 0 [pid 6884] <... write resumed>) = 2097152 [pid 6883] <... mount resumed>) = 0 [pid 5029] rmdir("./306") = 0 [pid 5029] mkdir("./307", 0777 [pid 6883] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6885] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6884] munmap(0x7ff0df171000, 138412032 [pid 6883] chdir("./file0" [pid 6884] <... munmap resumed>) = 0 [pid 6883] <... chdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6883] ioctl(4, LOOP_CLR_FD [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6883] <... ioctl resumed>) = 0 [pid 6883] close(4 [pid 5029] <... openat resumed>) = 3 [pid 6883] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6884] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6884] <... openat resumed>) = 4 [pid 6884] ioctl(4, LOOP_SET_FD, 3 [pid 6883] exit_group(0 [pid 5029] close(3 [pid 6883] <... exit_group resumed>) = ? [pid 6883] +++ exited with 0 +++ [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6888 attached [pid 6886] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6883, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 6888] set_robust_list(0x55555635e660, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6888 [pid 6888] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6888] chdir("./307" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6884] <... ioctl resumed>) = 0 [pid 6884] close(3) = 0 [pid 6884] mkdir("./file0", 0777) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 6888] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6888] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6888] <... prctl resumed>) = 0 [pid 5034] umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./299/binderfs", [pid 6884] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 259.452276][ T6884] loop2: detected capacity change from 0 to 4096 [pid 6888] setpgid(0, 0) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6887] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] unlink("./299/binderfs") = 0 [pid 6888] <... openat resumed>) = 3 [pid 5034] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6888] write(3, "1000", 4) = 4 [ 259.495277][ T6884] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6888] close(3 [pid 6886] <... write resumed>) = 2097152 [pid 6885] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 6888] <... close resumed>) = 0 [pid 6886] munmap(0x7ff0df171000, 138412032 [pid 6885] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6884] <... mount resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./299/file0", [pid 6888] symlink("/dev/binderfs", "./binderfs" [pid 6884] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6888] <... symlink resumed>) = 0 [pid 6884] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6884] chdir("./file0") = 0 [pid 6884] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6884] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6884] close(4) = 0 [pid 6886] <... munmap resumed>) = 0 [pid 6886] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6885] <... munmap resumed>) = 0 [pid 6884] exit_group(0) = ? [pid 6888] memfd_create("syzkaller", 0 [pid 6886] <... openat resumed>) = 4 [pid 6885] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6884] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6885] <... openat resumed>) = 4 [pid 5034] <... openat resumed>) = 4 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6884, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5031] umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6888] <... memfd_create resumed>) = 3 [pid 6886] ioctl(4, LOOP_SET_FD, 3 [pid 6885] ioctl(4, LOOP_SET_FD, 3 [pid 5034] newfstatat(4, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./306/binderfs", [pid 5034] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./306/binderfs") = 0 [pid 5031] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6885] <... ioctl resumed>) = 0 [pid 6888] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6885] close(3 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6885] <... close resumed>) = 0 [pid 6885] mkdir("./file0", 0777 [pid 5034] close(4 [pid 6885] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6885] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] rmdir("./299/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 6887] <... write resumed>) = 2097152 [pid 6887] munmap(0x7ff0df171000, 138412032) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6886] <... ioctl resumed>) = 0 [pid 5034] rmdir("./299") = 0 [pid 6886] close(3 [pid 5034] mkdir("./300", 0777 [pid 5031] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 6886] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6886] mkdir("./file0", 0777 [pid 5031] newfstatat(AT_FDCWD, "./306/file0", [pid 6886] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6886] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 259.587826][ T6886] loop4: detected capacity change from 0 to 4096 [ 259.594686][ T6885] loop3: detected capacity change from 0 to 4096 [ 259.617917][ T6885] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6887] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... openat resumed>) = 4 [pid 6887] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", [pid 6887] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] close(3 [pid 5031] getdents64(4, [pid 5034] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6888] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./306/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./306") = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6889 ./strace-static-x86_64: Process 6889 attached [pid 6889] set_robust_list(0x55555635e660, 24 [pid 5031] mkdir("./307", 0777 [pid 6889] <... set_robust_list resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6889] chdir("./300") = 0 [pid 6887] <... ioctl resumed>) = 0 [pid 6889] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6887] close(3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6889] <... prctl resumed>) = 0 [pid 6887] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6889] setpgid(0, 0 [pid 6887] mkdir("./file0", 0777 [pid 6889] <... setpgid resumed>) = 0 [pid 6889] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6887] <... mkdir resumed>) = 0 [pid 5031] <... ioctl resumed>) = 0 [pid 6889] <... openat resumed>) = 3 [pid 6889] write(3, "1000", 4 [pid 6887] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5031] close(3 [pid 6889] <... write resumed>) = 4 [ 259.644580][ T6886] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 259.646831][ T6887] loop1: detected capacity change from 0 to 4096 [pid 5031] <... close resumed>) = 0 [pid 6889] close(3 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6889] <... close resumed>) = 0 ./strace-static-x86_64: Process 6890 attached [pid 6890] set_robust_list(0x55555635e660, 24) = 0 [pid 6890] chdir("./307") = 0 [pid 6890] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6889] symlink("/dev/binderfs", "./binderfs" [pid 6890] <... prctl resumed>) = 0 [pid 6889] <... symlink resumed>) = 0 [pid 6890] setpgid(0, 0) = 0 [pid 6889] memfd_create("syzkaller", 0 [pid 6890] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6890 [pid 6890] <... openat resumed>) = 3 [pid 6890] write(3, "1000", 4 [pid 6889] <... memfd_create resumed>) = 3 [pid 6890] <... write resumed>) = 4 [pid 6889] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6890] close(3 [pid 6889] <... mmap resumed>) = 0x7ff0df171000 [pid 6890] <... close resumed>) = 0 [pid 6890] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6890] memfd_create("syzkaller", 0) = 3 [ 259.691825][ T6887] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6890] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6888] <... write resumed>) = 2097152 [pid 6888] munmap(0x7ff0df171000, 138412032 [pid 6886] <... mount resumed>) = 0 [pid 6885] <... mount resumed>) = 0 [pid 6885] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6888] <... munmap resumed>) = 0 [pid 6886] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6885] chdir("./file0" [pid 6886] <... openat resumed>) = 3 [pid 6885] <... chdir resumed>) = 0 [pid 6888] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6886] chdir("./file0" [pid 6885] ioctl(4, LOOP_CLR_FD [pid 6886] <... chdir resumed>) = 0 [pid 6886] ioctl(4, LOOP_CLR_FD [pid 6885] <... ioctl resumed>) = 0 [pid 6888] <... openat resumed>) = 4 [pid 6886] <... ioctl resumed>) = 0 [pid 6885] close(4 [pid 6888] ioctl(4, LOOP_SET_FD, 3 [pid 6886] close(4) = 0 [pid 6889] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6886] exit_group(0 [pid 6885] <... close resumed>) = 0 [pid 6885] exit_group(0 [pid 6886] <... exit_group resumed>) = ? [pid 6885] <... exit_group resumed>) = ? [pid 6890] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6888] <... ioctl resumed>) = 0 [pid 6886] +++ exited with 0 +++ [pid 6885] +++ exited with 0 +++ [pid 6888] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6885, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 6888] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6886, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... restart_syscall resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./308/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./308/binderfs" [pid 6888] mkdir("./file0", 0777 [pid 6887] <... mount resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 6888] <... mkdir resumed>) = 0 [pid 5033] umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6888] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6887] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6889] <... write resumed>) = 2097152 [pid 6887] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6887] chdir("./file0" [pid 5033] <... openat resumed>) = 3 [pid 6887] <... chdir resumed>) = 0 [pid 6887] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 6887] close(4) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6887] exit_group(0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6887] <... exit_group resumed>) = ? [pid 5033] newfstatat(AT_FDCWD, "./301/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./301/binderfs") = 0 [pid 5033] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6887] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6887, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5030] umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./308/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./308/binderfs") = 0 [ 259.794967][ T6888] loop0: detected capacity change from 0 to 4096 [ 259.832334][ T6888] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6889] munmap(0x7ff0df171000, 138412032 [pid 5032] newfstatat(AT_FDCWD, "./308/file0", [pid 6888] <... mount resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6888] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5032] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6888] chdir("./file0" [pid 5032] openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6889] <... munmap resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 6888] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6888] ioctl(4, LOOP_CLR_FD) = 0 [pid 6888] close(4) = 0 [pid 6888] exit_group(0 [pid 5032] getdents64(4, [pid 6890] <... write resumed>) = 2097152 [pid 6889] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6888] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = 0 [pid 6889] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6889] ioctl(4, LOOP_SET_FD, 3 [pid 6888] +++ exited with 0 +++ [pid 6890] munmap(0x7ff0df171000, 138412032 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6888, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 6890] <... munmap resumed>) = 0 [pid 5029] umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./307/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./307/binderfs") = 0 [pid 5033] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./301/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6890] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6890] <... openat resumed>) = 4 [pid 5033] openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6890] ioctl(4, LOOP_SET_FD, 3 [pid 5033] newfstatat(4, "", [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] rmdir("./308/file0" [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./301/file0" [pid 6889] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 6889] close(3 [pid 5033] <... close resumed>) = 0 [pid 5032] close(3 [pid 5030] <... umount2 resumed>) = 0 [pid 6889] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6889] mkdir("./file0", 0777 [pid 5030] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./301" [pid 6889] <... mkdir resumed>) = 0 [pid 6889] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... rmdir resumed>) = 0 [pid 5032] rmdir("./308" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] mkdir("./302", 0777 [pid 5030] newfstatat(AT_FDCWD, "./308/file0", [pid 5032] <... rmdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6890] <... ioctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6890] close(3 [pid 5033] close(3 [pid 5032] mkdir("./309", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6890] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6891 attached [pid 6890] mkdir("./file0", 0777 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6891 [pid 5030] <... openat resumed>) = 4 [pid 6890] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] newfstatat(4, "", [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] getdents64(4, [pid 5032] close(3 [pid 6891] set_robust_list(0x55555635e660, 24 [pid 6890] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5032] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 259.923106][ T6889] loop5: detected capacity change from 0 to 4096 [ 259.937069][ T6890] loop2: detected capacity change from 0 to 4096 [ 259.959120][ T6889] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6891] <... set_robust_list resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] getdents64(4, ./strace-static-x86_64: Process 6892 attached [pid 6891] chdir("./302" [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6892 [pid 5030] <... close resumed>) = 0 [pid 6892] set_robust_list(0x55555635e660, 24 [pid 5030] rmdir("./308/file0" [pid 6892] <... set_robust_list resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 6891] <... chdir resumed>) = 0 [pid 6891] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6891] setpgid(0, 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./308" [pid 6892] chdir("./309" [pid 6891] <... setpgid resumed>) = 0 [pid 6891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6892] <... chdir resumed>) = 0 [pid 6891] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 6892] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6891] write(3, "1000", 4) = 4 [pid 6891] close(3 [pid 6892] <... prctl resumed>) = 0 [pid 6891] <... close resumed>) = 0 [pid 6892] setpgid(0, 0 [pid 6891] symlink("/dev/binderfs", "./binderfs" [pid 5030] mkdir("./309", 0777 [pid 6892] <... setpgid resumed>) = 0 [pid 6891] <... symlink resumed>) = 0 [pid 6892] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... mkdir resumed>) = 0 [pid 6892] <... openat resumed>) = 3 [pid 6891] memfd_create("syzkaller", 0 [pid 6892] write(3, "1000", 4 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6892] <... write resumed>) = 4 [pid 6892] close(3) = 0 [pid 6892] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... openat resumed>) = 3 [pid 6892] <... symlink resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6891] <... memfd_create resumed>) = 3 [pid 6891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 ./strace-static-x86_64: Process 6893 attached [pid 6892] memfd_create("syzkaller", 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6893] set_robust_list(0x55555635e660, 24 [pid 5029] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6893] <... set_robust_list resumed>) = 0 [ 259.984750][ T6890] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6893] chdir("./309" [pid 6892] <... memfd_create resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6893 [pid 5029] newfstatat(AT_FDCWD, "./307/file0", [pid 6893] <... chdir resumed>) = 0 [pid 6892] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6893] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6892] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6893] <... prctl resumed>) = 0 [pid 6893] setpgid(0, 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6893] <... setpgid resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6893] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 6893] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 6893] write(3, "1000", 4) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6893] close(3 [pid 5029] close(4 [pid 6893] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6893] symlink("/dev/binderfs", "./binderfs" [pid 5029] rmdir("./307/file0" [pid 6893] <... symlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6893] memfd_create("syzkaller", 0) = 3 [pid 6893] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./307") = 0 [pid 5029] mkdir("./308", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6889] <... mount resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6889] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6889] chdir("./file0"./strace-static-x86_64: Process 6894 attached ) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6894 [pid 6894] set_robust_list(0x55555635e660, 24 [pid 6889] ioctl(4, LOOP_CLR_FD [pid 6894] <... set_robust_list resumed>) = 0 [pid 6889] <... ioctl resumed>) = 0 [pid 6889] close(4 [pid 6894] chdir("./308" [pid 6889] <... close resumed>) = 0 [pid 6894] <... chdir resumed>) = 0 [pid 6889] exit_group(0 [pid 6894] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6889] <... exit_group resumed>) = ? [pid 6894] <... prctl resumed>) = 0 [pid 6889] +++ exited with 0 +++ [pid 6894] setpgid(0, 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6889, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6894] <... setpgid resumed>) = 0 [pid 6894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6890] <... mount resumed>) = 0 [pid 6894] <... openat resumed>) = 3 [pid 6890] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6890] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6890] chdir("./file0" [pid 5034] newfstatat(3, "", [pid 6890] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 6894] write(3, "1000", 4 [pid 6891] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6890] ioctl(4, LOOP_CLR_FD [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6894] <... write resumed>) = 4 [pid 6890] <... ioctl resumed>) = 0 [pid 5034] umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6894] close(3 [pid 6890] close(4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6890] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./300/binderfs", [pid 6894] <... close resumed>) = 0 [pid 6892] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6890] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./300/binderfs" [pid 6894] symlink("/dev/binderfs", "./binderfs" [pid 6890] <... exit_group resumed>) = ? [pid 5034] <... unlink resumed>) = 0 [pid 6894] <... symlink resumed>) = 0 [pid 6893] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6890] +++ exited with 0 +++ [pid 6894] memfd_create("syzkaller", 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6890, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6894] <... memfd_create resumed>) = 3 [pid 6894] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./307/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./307/binderfs") = 0 [pid 5031] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6894] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./300/file0", [pid 6892] <... write resumed>) = 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6891] <... write resumed>) = 2097152 [pid 5034] umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6891] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6891] <... munmap resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 6892] munmap(0x7ff0df171000, 138412032) = 0 [pid 6893] <... write resumed>) = 2097152 [pid 5034] newfstatat(4, "", [pid 6893] munmap(0x7ff0df171000, 138412032 [pid 6892] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6891] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6892] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6891] <... openat resumed>) = 4 [pid 5034] getdents64(4, [pid 6891] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6892] ioctl(4, LOOP_SET_FD, 3 [pid 5034] close(4 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6893] <... munmap resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./307/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] rmdir("./300/file0" [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6893] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... rmdir resumed>) = 0 [pid 5031] getdents64(4, [pid 6891] <... ioctl resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6893] <... openat resumed>) = 4 [pid 6891] close(3 [pid 5034] getdents64(3, [pid 5031] getdents64(4, [pid 6893] ioctl(4, LOOP_SET_FD, 3 [pid 6891] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6894] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6891] mkdir("./file0", 0777 [pid 5034] close(3 [pid 5031] close(4) = 0 [pid 5031] rmdir("./307/file0" [pid 6891] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6891] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] rmdir("./300" [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./307") = 0 [pid 5031] mkdir("./308", 0777 [pid 6892] <... ioctl resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6892] close(3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6893] <... ioctl resumed>) = 0 [pid 6892] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6893] close(3 [pid 6892] mkdir("./file0", 0777 [ 260.264968][ T6891] loop4: detected capacity change from 0 to 4096 [ 260.268861][ T6892] loop3: detected capacity change from 0 to 4096 [ 260.291501][ T6893] loop1: detected capacity change from 0 to 4096 [ 260.306094][ T6891] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6893] <... close resumed>) = 0 [pid 6892] <... mkdir resumed>) = 0 [pid 5034] mkdir("./301", 0777 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6892] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] <... close resumed>) = 0 [pid 6893] mkdir("./file0", 0777 [pid 5034] <... mkdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6893] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 6895 attached [pid 6893] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6895] set_robust_list(0x55555635e660, 24 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6895] <... set_robust_list resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6895 [pid 6895] chdir("./308") = 0 [pid 6895] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... openat resumed>) = 3 [pid 6895] <... prctl resumed>) = 0 [pid 6895] setpgid(0, 0) = 0 [pid 6895] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6895] write(3, "1000", 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6895] <... write resumed>) = 4 [pid 5034] close(3 [pid 6895] close(3) = 0 [pid 6895] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6895] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6896 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6896 [pid 6896] set_robust_list(0x55555635e660, 24 [pid 6894] <... write resumed>) = 2097152 [pid 6896] <... set_robust_list resumed>) = 0 [pid 6895] <... memfd_create resumed>) = 3 [ 260.322187][ T6892] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 260.334644][ T6893] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6894] munmap(0x7ff0df171000, 138412032 [pid 6896] chdir("./301" [pid 6895] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6894] <... munmap resumed>) = 0 [pid 6895] <... mmap resumed>) = 0x7ff0df171000 [pid 6896] <... chdir resumed>) = 0 [pid 6896] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6894] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6896] <... prctl resumed>) = 0 [pid 6894] <... openat resumed>) = 4 [pid 6896] setpgid(0, 0 [pid 6894] ioctl(4, LOOP_SET_FD, 3 [pid 6896] <... setpgid resumed>) = 0 [pid 6893] <... mount resumed>) = 0 [pid 6896] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6893] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6896] write(3, "1000", 4) = 4 [pid 6893] <... openat resumed>) = 3 [pid 6892] <... mount resumed>) = 0 [pid 6896] close(3 [pid 6894] <... ioctl resumed>) = 0 [pid 6893] chdir("./file0" [pid 6891] <... mount resumed>) = 0 [pid 6892] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6896] <... close resumed>) = 0 [pid 6894] close(3 [pid 6893] <... chdir resumed>) = 0 [pid 6891] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6896] symlink("/dev/binderfs", "./binderfs" [pid 6894] <... close resumed>) = 0 [pid 6893] ioctl(4, LOOP_CLR_FD [pid 6892] <... openat resumed>) = 3 [pid 6891] <... openat resumed>) = 3 [pid 6896] <... symlink resumed>) = 0 [pid 6894] mkdir("./file0", 0777 [pid 6893] <... ioctl resumed>) = 0 [pid 6892] chdir("./file0" [pid 6896] memfd_create("syzkaller", 0 [pid 6894] <... mkdir resumed>) = 0 [pid 6893] close(4 [pid 6892] <... chdir resumed>) = 0 [pid 6891] chdir("./file0" [pid 6896] <... memfd_create resumed>) = 3 [pid 6893] <... close resumed>) = 0 [pid 6892] ioctl(4, LOOP_CLR_FD [pid 6896] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6893] exit_group(0 [pid 6892] <... ioctl resumed>) = 0 [pid 6891] <... chdir resumed>) = 0 [pid 6896] <... mmap resumed>) = 0x7ff0df171000 [pid 6894] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6893] <... exit_group resumed>) = ? [pid 6892] close(4 [pid 6891] ioctl(4, LOOP_CLR_FD [pid 6895] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6892] <... close resumed>) = 0 [pid 6891] <... ioctl resumed>) = 0 [pid 6891] close(4) = 0 [ 260.401757][ T6894] loop0: detected capacity change from 0 to 4096 [pid 6892] exit_group(0 [pid 6891] exit_group(0 [pid 6893] +++ exited with 0 +++ [pid 6892] <... exit_group resumed>) = ? [pid 6891] <... exit_group resumed>) = ? [pid 6892] +++ exited with 0 +++ [pid 6891] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6893, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6891, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6892, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=8 /* 0.08 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... restart_syscall resumed>) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 5032] newfstatat(3, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 5032] getdents64(3, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] newfstatat(3, "", [pid 5033] umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./302/binderfs", [pid 5032] newfstatat(AT_FDCWD, "./309/binderfs", [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] unlink("./302/binderfs" [pid 5032] unlink("./309/binderfs" [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5033] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./309/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./309/binderfs") = 0 [ 260.447164][ T6894] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6895] <... write resumed>) = 2097152 [pid 6895] munmap(0x7ff0df171000, 138412032 [pid 6896] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6895] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6895] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... umount2 resumed>) = 0 [pid 6895] <... openat resumed>) = 4 [pid 6895] ioctl(4, LOOP_SET_FD, 3 [pid 5032] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./309/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(AT_FDCWD, "./302/file0", [pid 6895] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5030] <... umount2 resumed>) = 0 [pid 6895] close(3 [pid 5033] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6895] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6895] mkdir("./file0", 0777 [pid 5033] openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6895] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5032] close(4) = 0 [pid 5033] newfstatat(4, "", [pid 5032] rmdir("./309/file0" [pid 6895] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5033] getdents64(4, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 260.551084][ T6895] loop2: detected capacity change from 0 to 4096 [pid 5032] close(3) = 0 [pid 5032] rmdir("./309") = 0 [pid 5032] mkdir("./310", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5033] getdents64(4, [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5033] close(4 [pid 5032] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] rmdir("./302/file0"./strace-static-x86_64: Process 6897 attached [pid 6896] <... write resumed>) = 2097152 [pid 6894] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6894] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6897 [pid 5030] newfstatat(AT_FDCWD, "./309/file0", [pid 6894] <... openat resumed>) = 3 [pid 6897] set_robust_list(0x55555635e660, 24 [pid 6894] chdir("./file0" [pid 5033] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6894] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6894] ioctl(4, LOOP_CLR_FD [pid 5033] rmdir("./302" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6897] <... set_robust_list resumed>) = 0 [pid 6894] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6894] close(4 [pid 6897] chdir("./310" [pid 6894] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6897] <... chdir resumed>) = 0 [pid 6894] exit_group(0 [pid 5033] mkdir("./303", 0777 [pid 6897] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6897] setpgid(0, 0) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6894] <... exit_group resumed>) = ? [pid 6897] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6897] write(3, "1000", 4) = 4 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] newfstatat(4, "", [pid 6897] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6897] <... close resumed>) = 0 [pid 6897] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 6897] <... symlink resumed>) = 0 [pid 6896] munmap(0x7ff0df171000, 138412032 [pid 6894] +++ exited with 0 +++ [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6897] memfd_create("syzkaller", 0 [pid 6896] <... munmap resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6894, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] getdents64(4, [pid 5033] close(3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6897] <... memfd_create resumed>) = 3 [ 260.598022][ T6895] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] <... close resumed>) = 0 [pid 5030] close(4 [pid 6897] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6897] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... close resumed>) = 0 ./strace-static-x86_64: Process 6898 attached [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./309/file0" [pid 5029] openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6898] set_robust_list(0x55555635e660, 24) = 0 [pid 6896] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] <... openat resumed>) = 3 [pid 6896] <... openat resumed>) = 4 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 6898] chdir("./303" [pid 5030] getdents64(3, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6898] <... chdir resumed>) = 0 [pid 6896] ioctl(4, LOOP_SET_FD, 3 [pid 5030] close(3 [pid 5029] getdents64(3, [pid 6898] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6898 [pid 5030] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] rmdir("./309" [pid 6898] <... prctl resumed>) = 0 [pid 5029] umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6898] setpgid(0, 0 [pid 5030] mkdir("./310", 0777 [pid 5029] newfstatat(AT_FDCWD, "./308/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6896] <... ioctl resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] unlink("./308/binderfs" [pid 6898] <... setpgid resumed>) = 0 [pid 6896] close(3 [pid 5029] <... unlink resumed>) = 0 [pid 6898] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6896] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6895] <... mount resumed>) = 0 [pid 5029] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6896] mkdir("./file0", 0777) = 0 [pid 6896] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6898] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6898] write(3, "1000", 4 [pid 6895] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6898] <... write resumed>) = 4 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6898] close(3 [pid 6895] <... openat resumed>) = 3 [pid 5030] close(3 [pid 6898] <... close resumed>) = 0 [pid 6895] chdir("./file0" [pid 6898] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... close resumed>) = 0 [pid 6895] <... chdir resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6895] ioctl(4, LOOP_CLR_FD [pid 6898] <... symlink resumed>) = 0 [pid 6895] <... ioctl resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6899 [pid 6895] close(4./strace-static-x86_64: Process 6899 attached [pid 6899] set_robust_list(0x55555635e660, 24) = 0 [pid 6899] chdir("./310") = 0 [pid 6895] <... close resumed>) = 0 [pid 6899] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6895] exit_group(0 [pid 6899] <... prctl resumed>) = 0 [pid 6895] <... exit_group resumed>) = ? [pid 6899] setpgid(0, 0 [pid 6898] memfd_create("syzkaller", 0) = 3 [pid 6898] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6895] +++ exited with 0 +++ [pid 6898] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6895, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6899] <... setpgid resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6899] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6897] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6899] write(3, "1000", 4) = 4 [pid 5029] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6899] close(3) = 0 [pid 6899] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6899] memfd_create("syzkaller", 0) = 3 [pid 5029] newfstatat(AT_FDCWD, "./308/file0", [pid 6899] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 260.666581][ T6896] loop5: detected capacity change from 0 to 4096 [ 260.695038][ T6896] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 5031] getdents64(3, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] getdents64(4, [pid 5031] umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5031] newfstatat(AT_FDCWD, "./308/binderfs", [pid 5029] <... close resumed>) = 0 [pid 6896] <... mount resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] rmdir("./308/file0" [pid 6896] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6896] chdir("./file0") = 0 [pid 5031] unlink("./308/binderfs" [pid 5029] <... rmdir resumed>) = 0 [pid 6896] ioctl(4, LOOP_CLR_FD) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5029] getdents64(3, [pid 6896] close(4 [pid 5031] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6896] <... close resumed>) = 0 [pid 6896] exit_group(0 [pid 5029] close(3 [pid 6896] <... exit_group resumed>) = ? [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./308" [pid 6896] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6896, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 5029] mkdir("./309", 0777 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./301/binderfs", [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./301/binderfs") = 0 [pid 5034] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6898] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6899] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6897] <... write resumed>) = 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] close(3 [pid 6897] munmap(0x7ff0df171000, 138412032 [pid 5031] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6900 attached [pid 6897] <... munmap resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./308/file0", [pid 6898] <... write resumed>) = 2097152 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6900] set_robust_list(0x55555635e660, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6900 [pid 5031] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6900] <... set_robust_list resumed>) = 0 [pid 6897] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6900] chdir("./309" [pid 5031] <... openat resumed>) = 4 [pid 6900] <... chdir resumed>) = 0 [pid 6897] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", [pid 6900] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6897] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6900] <... prctl resumed>) = 0 [pid 5031] close(4 [pid 6900] setpgid(0, 0 [pid 5031] <... close resumed>) = 0 [pid 6900] <... setpgid resumed>) = 0 [pid 5031] rmdir("./308/file0" [pid 6900] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... rmdir resumed>) = 0 [pid 6900] <... openat resumed>) = 3 [pid 5031] getdents64(3, [pid 6900] write(3, "1000", 4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6900] <... write resumed>) = 4 [pid 6899] <... write resumed>) = 2097152 [pid 6898] munmap(0x7ff0df171000, 138412032 [pid 6897] <... ioctl resumed>) = 0 [pid 5031] close(3 [pid 6900] close(3) = 0 [pid 5031] <... close resumed>) = 0 [pid 6900] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... umount2 resumed>) = 0 [pid 5031] rmdir("./308" [pid 6900] <... symlink resumed>) = 0 [pid 6897] close(3) = 0 [pid 6897] mkdir("./file0", 0777 [pid 5034] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./301/file0", [pid 6897] <... mkdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6900] memfd_create("syzkaller", 0 [pid 6898] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6897] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] <... rmdir resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5031] mkdir("./309", 0777 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5031] <... mkdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./301/file0" [pid 6900] <... memfd_create resumed>) = 3 [pid 6898] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... rmdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6900] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6898] <... openat resumed>) = 4 [pid 5034] getdents64(3, [pid 6900] <... mmap resumed>) = 0x7ff0df171000 [pid 6898] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 260.892820][ T6897] loop3: detected capacity change from 0 to 4096 [pid 5031] <... openat resumed>) = 3 [pid 6899] munmap(0x7ff0df171000, 138412032 [pid 5034] close(3) = 0 [pid 6899] <... munmap resumed>) = 0 [pid 5034] rmdir("./301") = 0 [pid 5034] mkdir("./302", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6899] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5034] close(3 [pid 6899] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... close resumed>) = 0 [pid 6899] <... ioctl resumed>) = 0 [pid 6898] <... ioctl resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6898] close(3 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 6901 attached [pid 6901] set_robust_list(0x55555635e660, 24 [pid 6898] <... close resumed>) = 0 [pid 5031] close(3 [pid 6901] <... set_robust_list resumed>) = 0 [pid 6898] mkdir("./file0", 0777 [pid 5031] <... close resumed>) = 0 [pid 6901] chdir("./302" [pid 6898] <... mkdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6898] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6901] <... chdir resumed>) = 0 [pid 6901] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6901 [pid 6901] setpgid(0, 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6902 [pid 6901] <... setpgid resumed>) = 0 [pid 6901] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6901] write(3, "1000", 4) = 4 [pid 6901] close(3) = 0 [pid 6901] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6901] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6902 attached [pid 6902] set_robust_list(0x55555635e660, 24) = 0 [pid 6902] chdir("./309") = 0 [pid 6899] close(3) = 0 [pid 6902] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6901] <... memfd_create resumed>) = 3 [ 260.943142][ T6897] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 260.952993][ T6898] loop4: detected capacity change from 0 to 4096 [ 260.964202][ T6899] loop1: detected capacity change from 0 to 4096 [pid 6899] mkdir("./file0", 0777 [pid 6902] <... prctl resumed>) = 0 [pid 6901] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6899] <... mkdir resumed>) = 0 [pid 6901] <... mmap resumed>) = 0x7ff0df171000 [pid 6899] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6902] setpgid(0, 0) = 0 [pid 6902] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6900] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6902] write(3, "1000", 4) = 4 [pid 6902] close(3) = 0 [pid 6902] symlink("/dev/binderfs", "./binderfs") = 0 [ 260.997511][ T6898] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 261.004220][ T6899] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6902] memfd_create("syzkaller", 0) = 3 [pid 6902] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6899] <... mount resumed>) = 0 [pid 6899] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6899] chdir("./file0") = 0 [pid 6899] ioctl(4, LOOP_CLR_FD) = 0 [pid 6899] close(4) = 0 [pid 6899] exit_group(0) = ? [pid 6899] +++ exited with 0 +++ [pid 6897] <... mount resumed>) = 0 [pid 6897] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6899, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 6897] <... openat resumed>) = 3 [pid 6897] chdir("./file0") = 0 [pid 6901] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6897] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6897] close(4) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6900] <... write resumed>) = 2097152 [pid 6897] exit_group(0 [pid 5030] openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6900] munmap(0x7ff0df171000, 138412032 [pid 6897] <... exit_group resumed>) = ? [pid 5030] <... openat resumed>) = 3 [pid 6897] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6897, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] newfstatat(3, "", [pid 6900] <... munmap resumed>) = 0 [pid 6898] <... mount resumed>) = 0 [pid 5032] umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6898] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6900] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6898] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 6900] <... openat resumed>) = 4 [pid 6898] chdir("./file0" [pid 5032] <... openat resumed>) = 3 [pid 6898] <... chdir resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6900] ioctl(4, LOOP_SET_FD, 3 [pid 6898] ioctl(4, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6898] <... ioctl resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6898] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./310/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./310/binderfs") = 0 [pid 5032] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6902] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6898] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6898] exit_group(0 [pid 5030] newfstatat(AT_FDCWD, "./310/binderfs", [pid 6898] <... exit_group resumed>) = ? [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./310/binderfs") = 0 [pid 6898] +++ exited with 0 +++ [pid 6900] <... ioctl resumed>) = 0 [pid 5030] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6898, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6900] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6901] <... write resumed>) = 2097152 [pid 6900] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6900] mkdir("./file0", 0777 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6900] <... mkdir resumed>) = 0 [ 261.159845][ T6900] loop0: detected capacity change from 0 to 4096 [pid 6900] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... umount2 resumed>) = 0 [pid 6901] munmap(0x7ff0df171000, 138412032 [pid 5033] umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6901] <... munmap resumed>) = 0 [pid 6901] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6901] ioctl(4, LOOP_SET_FD, 3 [pid 6902] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./303/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./310/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./303/binderfs" [pid 5032] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5033] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./310/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6901] <... ioctl resumed>) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./310") = 0 [pid 6901] close(3 [pid 5032] mkdir("./311", 0777 [pid 6902] munmap(0x7ff0df171000, 138412032 [pid 6901] <... close resumed>) = 0 [pid 6901] mkdir("./file0", 0777) = 0 [pid 6902] <... munmap resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6901] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5032] <... openat resumed>) = 3 [ 261.226414][ T6900] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 261.245959][ T6901] loop5: detected capacity change from 0 to 4096 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = 0 [pid 5032] close(3 [pid 6902] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 5030] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6902] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./310/file0", [pid 6902] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6903 ./strace-static-x86_64: Process 6903 attached [pid 6903] set_robust_list(0x55555635e660, 24) = 0 [pid 6903] chdir("./311") = 0 [pid 6903] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6903] setpgid(0, 0) = 0 [pid 6903] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6903] write(3, "1000", 4) = 4 [pid 6903] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6903] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6903] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6903] <... symlink resumed>) = 0 [pid 6900] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6900] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6900] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./303/file0", [pid 6902] <... ioctl resumed>) = 0 [pid 6903] memfd_create("syzkaller", 0 [pid 6902] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6902] <... close resumed>) = 0 [pid 6900] chdir("./file0" [pid 5033] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 6902] mkdir("./file0", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6902] <... mkdir resumed>) = 0 [pid 6900] <... chdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(4 [pid 6902] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6900] ioctl(4, LOOP_CLR_FD [pid 5033] <... openat resumed>) = 4 [pid 5030] <... close resumed>) = 0 [pid 6900] <... ioctl resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5030] rmdir("./310/file0" [ 261.302778][ T6901] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 261.316570][ T6902] loop2: detected capacity change from 0 to 4096 [pid 6900] close(4 [pid 6903] <... memfd_create resumed>) = 3 [pid 6903] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6900] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6900] exit_group(0) = ? [pid 5030] getdents64(3, [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] getdents64(4, [pid 5030] close(3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./310" [pid 5033] close(4 [pid 6900] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5033] rmdir("./303/file0" [pid 5030] mkdir("./311", 0777 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6900, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] <... mkdir resumed>) = 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... rmdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... restart_syscall resumed>) = 0 [pid 5033] getdents64(3, [pid 5030] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 5033] close(3 [pid 5030] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6904 attached [pid 5033] rmdir("./303" [pid 5029] newfstatat(3, "", [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6904 [pid 6904] set_robust_list(0x55555635e660, 24) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6904] chdir("./311" [pid 5029] getdents64(3, [pid 6904] <... chdir resumed>) = 0 [pid 6904] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 261.351779][ T6902] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6904] <... prctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6904] setpgid(0, 0) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] mkdir("./304", 0777 [pid 6904] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] newfstatat(AT_FDCWD, "./309/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./309/binderfs") = 0 [pid 5029] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6904] <... openat resumed>) = 3 [pid 6902] <... mount resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6904] write(3, "1000", 4 [pid 6902] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6904] <... write resumed>) = 4 [pid 6904] close(3) = 0 [pid 6902] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6904] symlink("/dev/binderfs", "./binderfs" [pid 6902] chdir("./file0") = 0 [pid 6902] ioctl(4, LOOP_CLR_FD) = 0 [pid 6904] <... symlink resumed>) = 0 [pid 6904] memfd_create("syzkaller", 0 [pid 6902] close(4 [pid 5033] <... openat resumed>) = 3 [pid 6903] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6904] <... memfd_create resumed>) = 3 [pid 6902] <... close resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6904] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6902] exit_group(0 [pid 5033] close(3 [pid 6904] <... mmap resumed>) = 0x7ff0df171000 [pid 6902] <... exit_group resumed>) = ? [pid 6902] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6902, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6901] <... mount resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6901] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6901] chdir("./file0") = 0 [pid 5031] umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6901] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6901] <... ioctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6901] close(4 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6905 [pid 5031] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6905 attached [pid 6905] set_robust_list(0x55555635e660, 24 [pid 6901] <... close resumed>) = 0 [pid 6901] exit_group(0) = ? [pid 6905] <... set_robust_list resumed>) = 0 [pid 6901] +++ exited with 0 +++ [pid 5031] newfstatat(3, "", [pid 6905] chdir("./304" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6901, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6905] <... chdir resumed>) = 0 [pid 5031] getdents64(3, [pid 6905] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6905] <... prctl resumed>) = 0 [pid 5034] umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6905] setpgid(0, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./309/binderfs", [pid 6905] <... setpgid resumed>) = 0 [pid 6905] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6905] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6905] write(3, "1000", 4 [pid 5034] newfstatat(3, "", [pid 5031] unlink("./309/binderfs" [pid 5029] newfstatat(AT_FDCWD, "./309/file0", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... unlink resumed>) = 0 [pid 5029] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6905] <... write resumed>) = 4 [pid 6904] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6905] close(3 [pid 5034] newfstatat(AT_FDCWD, "./302/binderfs", [pid 5029] openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6905] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... openat resumed>) = 4 [pid 6905] symlink("/dev/binderfs", "./binderfs" [pid 5034] unlink("./302/binderfs" [pid 5029] newfstatat(4, "", [pid 6905] <... symlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./309/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./309") = 0 [pid 5029] mkdir("./310", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6905] memfd_create("syzkaller", 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6905] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 6906 attached [pid 6906] set_robust_list(0x55555635e660, 24) = 0 [pid 6903] <... write resumed>) = 2097152 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6906 [pid 6906] chdir("./310" [pid 6905] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6906] <... chdir resumed>) = 0 [pid 6905] <... mmap resumed>) = 0x7ff0df171000 [pid 6906] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6906] setpgid(0, 0) = 0 [pid 6906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6903] munmap(0x7ff0df171000, 138412032) = 0 [pid 6906] write(3, "1000", 4 [pid 5034] <... umount2 resumed>) = 0 [pid 6906] <... write resumed>) = 4 [pid 6906] close(3) = 0 [pid 6906] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6906] memfd_create("syzkaller", 0 [pid 6903] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6906] <... memfd_create resumed>) = 3 [pid 6903] <... openat resumed>) = 4 [pid 6906] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6903] ioctl(4, LOOP_SET_FD, 3 [pid 6906] <... mmap resumed>) = 0x7ff0df171000 [pid 6903] <... ioctl resumed>) = 0 [pid 5034] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6903] close(3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6903] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./302/file0", [pid 6903] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6903] <... mkdir resumed>) = 0 [pid 5034] umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6903] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 261.612201][ T6903] loop3: detected capacity change from 0 to 4096 [pid 6904] <... write resumed>) = 2097152 [pid 5034] openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5031] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./309/file0", [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5031] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] rmdir("./302/file0" [pid 6905] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(3, [pid 5031] openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 5031] <... openat resumed>) = 4 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./302") = 0 [pid 5034] mkdir("./303", 0777) = 0 [pid 5031] newfstatat(4, "", [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6904] munmap(0x7ff0df171000, 138412032 [pid 5034] <... openat resumed>) = 3 [pid 5031] getdents64(4, [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6904] <... munmap resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4./strace-static-x86_64: Process 6907 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6907 [pid 5031] <... close resumed>) = 0 [pid 6907] set_robust_list(0x55555635e660, 24 [pid 6904] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] rmdir("./309/file0" [pid 6907] <... set_robust_list resumed>) = 0 [pid 6907] chdir("./303" [pid 5031] <... rmdir resumed>) = 0 [pid 6907] <... chdir resumed>) = 0 [ 261.658247][ T6903] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6904] <... openat resumed>) = 4 [pid 5031] getdents64(3, [pid 6906] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 6907] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6904] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... close resumed>) = 0 [pid 6907] <... prctl resumed>) = 0 [pid 5031] rmdir("./309") = 0 [pid 6907] setpgid(0, 0 [pid 5031] mkdir("./310", 0777) = 0 [pid 6907] <... setpgid resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6907] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... openat resumed>) = 3 [pid 6907] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6907] write(3, "1000", 4 [pid 5031] close(3 [pid 6907] <... write resumed>) = 4 [pid 6907] close(3 [pid 5031] <... close resumed>) = 0 [pid 6907] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6908 attached [pid 6907] symlink("/dev/binderfs", "./binderfs" [pid 6908] set_robust_list(0x55555635e660, 24 [pid 6907] <... symlink resumed>) = 0 [pid 6905] <... write resumed>) = 2097152 [pid 6904] <... ioctl resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6908 [pid 6907] memfd_create("syzkaller", 0 [pid 6904] close(3 [pid 6903] <... mount resumed>) = 0 [pid 6903] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6904] <... close resumed>) = 0 [pid 6904] mkdir("./file0", 0777 [pid 6908] <... set_robust_list resumed>) = 0 [pid 6904] <... mkdir resumed>) = 0 [pid 6903] <... openat resumed>) = 3 [pid 6908] chdir("./310" [pid 6907] <... memfd_create resumed>) = 3 [pid 6903] chdir("./file0" [pid 6907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6903] <... chdir resumed>) = 0 [pid 6907] <... mmap resumed>) = 0x7ff0df171000 [pid 6903] ioctl(4, LOOP_CLR_FD [pid 6908] <... chdir resumed>) = 0 [pid 6903] <... ioctl resumed>) = 0 [pid 6908] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6903] close(4 [pid 6908] <... prctl resumed>) = 0 [pid 6903] <... close resumed>) = 0 [pid 6908] setpgid(0, 0 [pid 6903] exit_group(0 [pid 6908] <... setpgid resumed>) = 0 [pid 6903] <... exit_group resumed>) = ? [pid 6908] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6903] +++ exited with 0 +++ [pid 6904] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6908] <... openat resumed>) = 3 [pid 6908] write(3, "1000", 4) = 4 [pid 6908] close(3) = 0 [pid 6908] symlink("/dev/binderfs", "./binderfs" [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6903, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...> [ 261.737174][ T6904] loop1: detected capacity change from 0 to 4096 [pid 6905] munmap(0x7ff0df171000, 138412032 [pid 5032] <... restart_syscall resumed>) = 0 [pid 6908] <... symlink resumed>) = 0 [pid 6908] memfd_create("syzkaller", 0 [pid 6905] <... munmap resumed>) = 0 [pid 6908] <... memfd_create resumed>) = 3 [pid 6908] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6905] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5032] umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6905] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", [pid 6905] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6905] close(3 [pid 5032] getdents64(3, [pid 6906] <... write resumed>) = 2097152 [pid 6905] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6905] mkdir("./file0", 0777 [pid 5032] umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6906] munmap(0x7ff0df171000, 138412032 [pid 6905] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6906] <... munmap resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./311/binderfs", [pid 6905] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./311/binderfs" [ 261.803143][ T6904] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 261.838302][ T6905] loop4: detected capacity change from 0 to 4096 [pid 6906] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... unlink resumed>) = 0 [pid 6906] <... openat resumed>) = 4 [pid 6906] ioctl(4, LOOP_SET_FD, 3 [pid 5032] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6907] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6908] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6906] <... ioctl resumed>) = 0 [pid 6906] close(3) = 0 [pid 6904] <... mount resumed>) = 0 [pid 6906] mkdir("./file0", 0777 [pid 6904] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6906] <... mkdir resumed>) = 0 [pid 6904] <... openat resumed>) = 3 [pid 6906] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 261.867290][ T6905] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 261.868865][ T6906] loop0: detected capacity change from 0 to 4096 [pid 6904] chdir("./file0") = 0 [pid 6904] ioctl(4, LOOP_CLR_FD) = 0 [pid 6904] close(4) = 0 [pid 6904] exit_group(0) = ? [pid 6904] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6904, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5030] umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./311/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./311/binderfs") = 0 [ 261.919044][ T6906] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6906] <... mount resumed>) = 0 [pid 6907] <... write resumed>) = 2097152 [pid 5030] <... umount2 resumed>) = 0 [pid 6908] <... write resumed>) = 2097152 [pid 6907] munmap(0x7ff0df171000, 138412032 [pid 5032] <... umount2 resumed>) = 0 [pid 6906] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6906] chdir("./file0") = 0 [pid 6906] ioctl(4, LOOP_CLR_FD) = 0 [pid 6906] close(4) = 0 [pid 6906] exit_group(0) = ? [pid 5032] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6907] <... munmap resumed>) = 0 [pid 6906] +++ exited with 0 +++ [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./311/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6906, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5032] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 4 [pid 5029] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", [pid 5029] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5029] getdents64(3, [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] getdents64(4, [pid 5030] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6908] munmap(0x7ff0df171000, 138412032 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6907] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] close(4 [pid 5030] newfstatat(AT_FDCWD, "./311/file0", [pid 5029] newfstatat(AT_FDCWD, "./310/binderfs", [pid 6908] <... munmap resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6907] <... openat resumed>) = 4 [pid 5032] rmdir("./311/file0" [pid 5029] unlink("./310/binderfs" [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5032] getdents64(3, [pid 5029] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6907] ioctl(4, LOOP_SET_FD, 3 [pid 5032] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] rmdir("./311" [pid 5030] getdents64(4, [pid 6908] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6908] <... openat resumed>) = 4 [pid 5030] close(4) = 0 [pid 6908] ioctl(4, LOOP_SET_FD, 3 [pid 5032] mkdir("./312", 0777 [pid 5030] rmdir("./311/file0" [pid 6907] <... ioctl resumed>) = 0 [pid 6907] close(3 [pid 6905] <... mount resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6907] <... close resumed>) = 0 [pid 6905] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] getdents64(3, [pid 6907] mkdir("./file0", 0777 [pid 6905] <... openat resumed>) = 3 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6905] chdir("./file0" [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6907] <... mkdir resumed>) = 0 [pid 6905] <... chdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6907] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6905] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] <... close resumed>) = 0 [pid 6905] close(4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6905] <... close resumed>) = 0 ./strace-static-x86_64: Process 6909 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6909 [pid 5030] close(3 [pid 6909] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] <... close resumed>) = 0 [pid 6909] chdir("./312") = 0 [pid 5030] rmdir("./311" [pid 6909] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... rmdir resumed>) = 0 [pid 6909] <... prctl resumed>) = 0 [pid 6909] setpgid(0, 0) = 0 [pid 5030] mkdir("./312", 0777 [pid 6909] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... mkdir resumed>) = 0 [pid 6909] <... openat resumed>) = 3 [pid 6905] exit_group(0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6909] write(3, "1000", 4 [pid 5030] <... openat resumed>) = 3 [pid 6909] <... write resumed>) = 4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6909] close(3 [pid 6905] <... exit_group resumed>) = ? [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6909] <... close resumed>) = 0 [pid 6909] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6908] <... ioctl resumed>) = 0 [pid 6905] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6905, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] close(3) = 0 [pid 6909] memfd_create("syzkaller", 0 [pid 6908] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6908] mkdir("./file0", 0777 [pid 6909] <... memfd_create resumed>) = 3 [pid 6908] <... mkdir resumed>) = 0 [pid 5033] umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6909] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6908] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6909] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 262.045321][ T6907] loop5: detected capacity change from 0 to 4096 [ 262.051227][ T6908] loop2: detected capacity change from 0 to 4096 [ 262.068768][ T6907] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6910 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 6910 attached [pid 5033] umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6910] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(AT_FDCWD, "./304/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6910] <... set_robust_list resumed>) = 0 [pid 5033] unlink("./304/binderfs" [pid 6910] chdir("./312" [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 6910] <... chdir resumed>) = 0 [pid 6910] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6910] setpgid(0, 0) = 0 [pid 5029] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6910] write(3, "1000", 4) = 4 [pid 5029] newfstatat(AT_FDCWD, "./310/file0", [pid 6910] close(3) = 0 [pid 6910] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6910] <... symlink resumed>) = 0 [pid 5029] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6910] memfd_create("syzkaller", 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6910] <... memfd_create resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 6910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] newfstatat(4, "", [pid 6910] <... mmap resumed>) = 0x7ff0df171000 [ 262.113143][ T6908] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6909] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./310/file0") = 0 [pid 5029] getdents64(3, [pid 6908] <... mount resumed>) = 0 [pid 6907] <... mount resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6907] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] close(3 [pid 6907] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./310" [pid 6907] chdir("./file0") = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6907] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] mkdir("./311", 0777 [pid 6907] close(4 [pid 6908] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6907] <... close resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6907] exit_group(0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6908] chdir("./file0" [pid 6907] <... exit_group resumed>) = ? [pid 5033] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6908] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 6908] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./304/file0", [pid 6908] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6908] close(4 [pid 6907] +++ exited with 0 +++ [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6908] <... close resumed>) = 0 [pid 5033] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6908] exit_group(0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6907, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6908] <... exit_group resumed>) = ? [pid 5034] umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6908] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 4 [pid 5034] openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(4, "", [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6908, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5034] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(3, "", [pid 5033] getdents64(4, [pid 5029] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 5033] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] close(4 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5034] umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./304/file0" [pid 5031] getdents64(3, [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6911 [pid 5034] newfstatat(AT_FDCWD, "./303/binderfs", [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] unlink("./303/binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6911 attached [pid 5034] <... unlink resumed>) = 0 [pid 5033] getdents64(3, [pid 5031] newfstatat(AT_FDCWD, "./310/binderfs", [pid 6911] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] close(3 [pid 5031] unlink("./310/binderfs" [pid 6911] <... set_robust_list resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 6911] chdir("./311" [pid 5033] rmdir("./304" [pid 5031] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6911] <... chdir resumed>) = 0 [pid 6910] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 6911] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6909] <... write resumed>) = 2097152 [pid 5033] mkdir("./305", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6912 attached [pid 6912] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6912 [pid 6912] chdir("./305") = 0 [pid 6912] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6912] setpgid(0, 0 [pid 6911] <... prctl resumed>) = 0 [pid 6912] <... setpgid resumed>) = 0 [pid 6911] setpgid(0, 0 [pid 6912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6911] <... setpgid resumed>) = 0 [pid 6912] <... openat resumed>) = 3 [pid 6911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6912] write(3, "1000", 4 [pid 6911] <... openat resumed>) = 3 [pid 6912] <... write resumed>) = 4 [pid 6911] write(3, "1000", 4 [pid 6912] close(3 [pid 6911] <... write resumed>) = 4 [pid 6912] <... close resumed>) = 0 [pid 6911] close(3 [pid 6909] munmap(0x7ff0df171000, 138412032 [pid 6912] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6911] <... close resumed>) = 0 [pid 6909] <... munmap resumed>) = 0 [pid 6911] symlink("/dev/binderfs", "./binderfs" [pid 6912] memfd_create("syzkaller", 0 [pid 6911] <... symlink resumed>) = 0 [pid 6912] <... memfd_create resumed>) = 3 [pid 6911] memfd_create("syzkaller", 0 [pid 6912] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6909] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6912] <... mmap resumed>) = 0x7ff0df171000 [pid 6911] <... memfd_create resumed>) = 3 [pid 6909] <... openat resumed>) = 4 [pid 6911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6909] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./303/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./303/file0") = 0 [pid 6909] <... ioctl resumed>) = 0 [pid 5034] getdents64(3, [pid 6909] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6909] <... close resumed>) = 0 [pid 5034] close(3 [pid 6909] mkdir("./file0", 0777 [pid 5031] <... umount2 resumed>) = 0 [pid 6909] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./303") = 0 [pid 6909] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6910] <... write resumed>) = 2097152 [ 262.347302][ T6909] loop3: detected capacity change from 0 to 4096 [pid 6910] munmap(0x7ff0df171000, 138412032 [pid 5034] mkdir("./304", 0777) = 0 [pid 6910] <... munmap resumed>) = 0 [pid 5031] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6910] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6910] ioctl(4, LOOP_SET_FD, 3 [pid 5031] newfstatat(AT_FDCWD, "./310/file0", [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6913 attached [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6913] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6913 [pid 5031] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 6913] <... set_robust_list resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6910] <... ioctl resumed>) = 0 [pid 5031] getdents64(4, [pid 6913] chdir("./304" [pid 6910] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6913] <... chdir resumed>) = 0 [pid 6911] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6910] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 6913] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6913] <... prctl resumed>) = 0 [pid 5031] close(4 [pid 6913] setpgid(0, 0 [pid 6910] mkdir("./file0", 0777 [pid 5031] <... close resumed>) = 0 [pid 6913] <... setpgid resumed>) = 0 [pid 6912] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6910] <... mkdir resumed>) = 0 [ 262.396573][ T6909] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 262.414742][ T6910] loop1: detected capacity change from 0 to 4096 [pid 5031] rmdir("./310/file0" [pid 6913] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6910] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5031] <... rmdir resumed>) = 0 [pid 6913] <... openat resumed>) = 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 6913] write(3, "1000", 4 [pid 5031] <... close resumed>) = 0 [pid 6913] <... write resumed>) = 4 [pid 5031] rmdir("./310" [pid 6913] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 6913] <... close resumed>) = 0 [pid 5031] mkdir("./311", 0777 [pid 6913] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6913] memfd_create("syzkaller", 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6913] <... memfd_create resumed>) = 3 [pid 6913] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... openat resumed>) = 3 [ 262.457437][ T6910] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 6914 ./strace-static-x86_64: Process 6914 attached [pid 6911] <... write resumed>) = 2097152 [pid 6910] <... mount resumed>) = 0 [pid 6914] set_robust_list(0x55555635e660, 24 [pid 6911] munmap(0x7ff0df171000, 138412032 [pid 6910] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6914] <... set_robust_list resumed>) = 0 [pid 6911] <... munmap resumed>) = 0 [pid 6910] <... openat resumed>) = 3 [pid 6914] chdir("./311" [pid 6910] chdir("./file0") = 0 [pid 6910] ioctl(4, LOOP_CLR_FD [pid 6914] <... chdir resumed>) = 0 [pid 6910] <... ioctl resumed>) = 0 [pid 6914] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6910] close(4 [pid 6914] <... prctl resumed>) = 0 [pid 6910] <... close resumed>) = 0 [pid 6909] <... mount resumed>) = 0 [pid 6914] setpgid(0, 0 [pid 6910] exit_group(0 [pid 6914] <... setpgid resumed>) = 0 [pid 6910] <... exit_group resumed>) = ? [pid 6914] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6909] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6909] chdir("./file0" [pid 6910] +++ exited with 0 +++ [pid 6909] <... chdir resumed>) = 0 [pid 6914] <... openat resumed>) = 3 [pid 6909] ioctl(4, LOOP_CLR_FD [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6910, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 6914] write(3, "1000", 4 [pid 6911] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6909] <... ioctl resumed>) = 0 [pid 6914] <... write resumed>) = 4 [pid 6912] <... write resumed>) = 2097152 [pid 6909] close(4 [pid 5030] umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6911] <... openat resumed>) = 4 [pid 6914] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6914] <... close resumed>) = 0 [pid 6911] ioctl(4, LOOP_SET_FD, 3 [pid 5030] openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6909] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./312/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6909] exit_group(0 [pid 5030] unlink("./312/binderfs" [pid 6909] <... exit_group resumed>) = ? [pid 5030] <... unlink resumed>) = 0 [pid 6914] symlink("/dev/binderfs", "./binderfs" [pid 6909] +++ exited with 0 +++ [pid 5030] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6914] <... symlink resumed>) = 0 [pid 6912] munmap(0x7ff0df171000, 138412032 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6909, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6914] memfd_create("syzkaller", 0 [pid 6913] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 6914] <... memfd_create resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6914] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] getdents64(3, [pid 6914] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./312/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6912] <... munmap resumed>) = 0 [pid 5032] unlink("./312/binderfs" [pid 6911] <... ioctl resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6912] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6911] close(3 [pid 6912] <... openat resumed>) = 4 [pid 6912] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6911] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6911] mkdir("./file0", 0777 [pid 5030] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./312/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 262.590991][ T6911] loop0: detected capacity change from 0 to 4096 [ 262.626421][ T6912] loop4: detected capacity change from 0 to 4096 [pid 5030] newfstatat(4, "", [pid 6911] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6911] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./312/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] rmdir("./312") = 0 [pid 5030] mkdir("./313", 0777) = 0 [pid 6912] close(3) = 0 [pid 5032] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6912] mkdir("./file0", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 6912] <... mkdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./312/file0", [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6912] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... ioctl resumed>) = 0 [pid 5032] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6915 attached [pid 5032] close(4 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6915 [pid 6915] set_robust_list(0x55555635e660, 24 [pid 5032] <... close resumed>) = 0 [pid 6915] <... set_robust_list resumed>) = 0 [pid 5032] rmdir("./312/file0" [pid 6915] chdir("./313" [pid 5032] <... rmdir resumed>) = 0 [pid 6915] <... chdir resumed>) = 0 [pid 6915] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6913] <... write resumed>) = 2097152 [pid 5032] getdents64(3, [pid 6915] <... prctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6915] setpgid(0, 0 [pid 6913] munmap(0x7ff0df171000, 138412032 [pid 5032] close(3 [pid 6915] <... setpgid resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6915] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] rmdir("./312" [pid 6915] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 6915] write(3, "1000", 4) = 4 [pid 6913] <... munmap resumed>) = 0 [ 262.655719][ T6911] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 262.681952][ T6912] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6915] close(3 [pid 5032] mkdir("./313", 0777 [pid 6915] <... close resumed>) = 0 [pid 6913] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6913] ioctl(4, LOOP_SET_FD, 3 [pid 6915] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 6913] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6913] close(3 [pid 6915] memfd_create("syzkaller", 0 [pid 6913] <... close resumed>) = 0 [pid 6911] <... mount resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 6913] mkdir("./file0", 0777 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6913] <... mkdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = 0 [pid 6914] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] close(3 [pid 6911] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6913] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6915] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 6916 attached [pid 6915] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6916 [pid 6916] set_robust_list(0x55555635e660, 24 [pid 6915] <... mmap resumed>) = 0x7ff0df171000 [pid 6916] <... set_robust_list resumed>) = 0 [pid 6911] <... openat resumed>) = 3 [pid 6916] chdir("./313" [pid 6911] chdir("./file0" [pid 6916] <... chdir resumed>) = 0 [pid 6911] <... chdir resumed>) = 0 [pid 6911] ioctl(4, LOOP_CLR_FD) = 0 [pid 6911] close(4 [pid 6916] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6916] setpgid(0, 0) = 0 [pid 6916] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6916] write(3, "1000", 4) = 4 [pid 6916] close(3) = 0 [pid 6914] <... write resumed>) = 2097152 [pid 6911] <... close resumed>) = 0 [pid 6916] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6914] munmap(0x7ff0df171000, 138412032 [pid 6911] exit_group(0 [pid 6916] memfd_create("syzkaller", 0 [pid 6911] <... exit_group resumed>) = ? [pid 6916] <... memfd_create resumed>) = 3 [pid 6913] <... mount resumed>) = 0 [pid 6916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6914] <... munmap resumed>) = 0 [pid 6913] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6911] +++ exited with 0 +++ [ 262.724750][ T6913] loop5: detected capacity change from 0 to 4096 [ 262.744514][ T6913] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6916] <... mmap resumed>) = 0x7ff0df171000 [pid 6913] <... openat resumed>) = 3 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6911, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6914] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6913] chdir("./file0") = 0 [pid 6914] <... openat resumed>) = 4 [pid 6913] ioctl(4, LOOP_CLR_FD [pid 5029] umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./311/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6914] ioctl(4, LOOP_SET_FD, 3 [pid 6913] <... ioctl resumed>) = 0 [pid 5029] unlink("./311/binderfs" [pid 6914] <... ioctl resumed>) = 0 [pid 6913] close(4 [pid 6912] <... mount resumed>) = 0 [pid 6914] close(3 [pid 6913] <... close resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6914] <... close resumed>) = 0 [pid 6914] mkdir("./file0", 0777 [pid 5029] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6912] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6914] <... mkdir resumed>) = 0 [pid 6914] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6912] <... openat resumed>) = 3 [pid 6913] exit_group(0 [pid 6912] chdir("./file0") = 0 [pid 6913] <... exit_group resumed>) = ? [pid 6912] ioctl(4, LOOP_CLR_FD [pid 6913] +++ exited with 0 +++ [pid 6912] <... ioctl resumed>) = 0 [pid 6912] close(4 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6913, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6912] <... close resumed>) = 0 [pid 6912] exit_group(0) = ? [pid 6912] +++ exited with 0 +++ [pid 5034] umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6912, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./304/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] unlink("./304/binderfs" [pid 5033] <... openat resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6915] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./305/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./305/binderfs") = 0 [ 262.825716][ T6914] loop2: detected capacity change from 0 to 4096 [ 262.846345][ T6914] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6916] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6914] <... mount resumed>) = 0 [pid 6914] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6915] <... write resumed>) = 2097152 [pid 6914] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 6914] chdir("./file0") = 0 [pid 6914] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./311/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6914] close(4 [pid 5029] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6914] <... close resumed>) = 0 [pid 6914] exit_group(0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6914] <... exit_group resumed>) = ? [pid 5029] openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 6914] +++ exited with 0 +++ [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6914, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5029] getdents64(4, [pid 5031] umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 6915] munmap(0x7ff0df171000, 138412032 [pid 5031] openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6915] <... munmap resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] close(4 [pid 5031] newfstatat(3, "", [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./311/file0") = 0 [pid 5029] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./311") = 0 [pid 5029] mkdir("./312", 0777 [pid 6915] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... umount2 resumed>) = 0 [pid 5033] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5029] <... mkdir resumed>) = 0 [pid 6916] <... write resumed>) = 2097152 [pid 6915] <... openat resumed>) = 4 [pid 5034] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./305/file0", [pid 5031] umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./304/file0", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(AT_FDCWD, "./311/binderfs", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5034] umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] unlink("./311/binderfs" [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6915] ioctl(4, LOOP_SET_FD, 3 [pid 5034] openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... openat resumed>) = 4 [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] newfstatat(4, "", [pid 5034] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 5033] getdents64(4, [pid 5029] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(4, "", [pid 5033] close(4./strace-static-x86_64: Process 6917 attached ) = 0 [pid 5033] rmdir("./305/file0" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6917 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 6916] munmap(0x7ff0df171000, 138412032 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./305" [pid 6917] set_robust_list(0x55555635e660, 24 [pid 6916] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6917] <... set_robust_list resumed>) = 0 [pid 5033] mkdir("./306", 0777 [pid 6917] chdir("./312" [pid 5033] <... mkdir resumed>) = 0 [pid 6917] <... chdir resumed>) = 0 [pid 5034] getdents64(4, [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6915] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... openat resumed>) = 3 [pid 6917] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6915] close(3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6917] <... prctl resumed>) = 0 [pid 6915] <... close resumed>) = 0 [pid 5034] getdents64(4, [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 6917] setpgid(0, 0) = 0 [pid 6916] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6915] mkdir("./file0", 0777 [pid 5034] close(4 [pid 6917] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6916] <... openat resumed>) = 4 [pid 6915] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [ 263.007341][ T6915] loop1: detected capacity change from 0 to 4096 [pid 6917] <... openat resumed>) = 3 [pid 6916] ioctl(4, LOOP_SET_FD, 3 [pid 6915] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] rmdir("./304/file0" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6917] write(3, "1000", 4 [pid 5034] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6918 attached [pid 6917] <... write resumed>) = 4 [pid 5034] getdents64(3, [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6918 [pid 5031] <... umount2 resumed>) = 0 [pid 6918] set_robust_list(0x55555635e660, 24) = 0 [pid 6917] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6917] <... close resumed>) = 0 [pid 5034] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6918] chdir("./306" [pid 6917] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./311/file0", [pid 6917] <... symlink resumed>) = 0 [pid 6918] <... chdir resumed>) = 0 [pid 5034] rmdir("./304" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6918] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6916] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6918] setpgid(0, 0 [pid 6916] close(3 [pid 5034] mkdir("./305", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6918] <... setpgid resumed>) = 0 [pid 6916] <... close resumed>) = 0 [pid 6916] mkdir("./file0", 0777 [pid 5031] openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6918] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6916] <... mkdir resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6918] <... openat resumed>) = 3 [pid 6916] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6918] write(3, "1000", 4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] newfstatat(4, "", [pid 6918] <... write resumed>) = 4 [pid 6917] memfd_create("syzkaller", 0 [pid 5034] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6918] close(3 [pid 6917] <... memfd_create resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] getdents64(4, [pid 6918] <... close resumed>) = 0 [pid 6917] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6918] symlink("/dev/binderfs", "./binderfs" [pid 5034] close(3 [pid 5031] getdents64(4, [pid 6917] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6918] <... symlink resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] close(4 [pid 6918] memfd_create("syzkaller", 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./311/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6919 attached [pid 6919] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6919 [pid 5031] close(3 [pid 6919] <... set_robust_list resumed>) = 0 [pid 6918] <... memfd_create resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 6918] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6919] chdir("./305" [pid 6918] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] rmdir("./311") = 0 [pid 6919] <... chdir resumed>) = 0 [pid 5031] mkdir("./312", 0777 [pid 6919] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6919] setpgid(0, 0 [pid 5031] <... openat resumed>) = 3 [pid 6919] <... setpgid resumed>) = 0 [pid 6919] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [ 263.059860][ T6916] loop3: detected capacity change from 0 to 4096 [ 263.068065][ T6915] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 263.098592][ T6916] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6919] <... openat resumed>) = 3 [pid 6919] write(3, "1000", 4 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6919] <... write resumed>) = 4 [pid 5031] <... close resumed>) = 0 [pid 6919] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6919] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6920 ./strace-static-x86_64: Process 6920 attached [pid 6915] <... mount resumed>) = 0 [pid 6920] set_robust_list(0x55555635e660, 24 [pid 6915] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6919] memfd_create("syzkaller", 0 [pid 6915] <... openat resumed>) = 3 [pid 6920] <... set_robust_list resumed>) = 0 [pid 6919] <... memfd_create resumed>) = 3 [pid 6915] chdir("./file0" [pid 6920] chdir("./312" [pid 6919] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6915] <... chdir resumed>) = 0 [pid 6915] ioctl(4, LOOP_CLR_FD) = 0 [pid 6916] <... mount resumed>) = 0 [pid 6915] close(4) = 0 [pid 6916] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6915] exit_group(0 [pid 6916] <... openat resumed>) = 3 [pid 6916] chdir("./file0" [pid 6915] <... exit_group resumed>) = ? [pid 6916] <... chdir resumed>) = 0 [pid 6915] +++ exited with 0 +++ [pid 6916] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6915, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 6916] close(4) = 0 [pid 6916] exit_group(0) = ? [pid 6916] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6916, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6920] <... chdir resumed>) = 0 [pid 5030] umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", [pid 5032] newfstatat(3, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5032] getdents64(3, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./313/binderfs", [pid 5032] newfstatat(AT_FDCWD, "./313/binderfs", [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./313/binderfs" [pid 5032] unlink("./313/binderfs" [pid 5030] <... unlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6920] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6920] setpgid(0, 0 [pid 5032] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6920] <... setpgid resumed>) = 0 [pid 6920] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6920] write(3, "1000", 4) = 4 [pid 6920] close(3) = 0 [pid 6920] symlink("/dev/binderfs", "./binderfs" [pid 6917] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6920] <... symlink resumed>) = 0 [pid 6920] memfd_create("syzkaller", 0 [pid 6918] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6920] <... memfd_create resumed>) = 3 [pid 6920] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6919] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6920] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./313/file0", [pid 5032] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./313/file0", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 5032] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6917] <... write resumed>) = 2097152 [pid 5032] newfstatat(4, "", [pid 5030] getdents64(4, [pid 6917] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5030] getdents64(4, [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5032] close(4 [pid 5030] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6917] <... munmap resumed>) = 0 [pid 6917] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] rmdir("./313/file0" [pid 5030] rmdir("./313/file0" [pid 5032] <... rmdir resumed>) = 0 [pid 6918] <... write resumed>) = 2097152 [pid 6917] <... openat resumed>) = 4 [pid 5032] getdents64(3, [pid 5030] <... rmdir resumed>) = 0 [pid 6917] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6918] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(3, [pid 5032] close(3) = 0 [pid 5032] rmdir("./313") = 0 [pid 6919] <... write resumed>) = 2097152 [pid 6917] <... ioctl resumed>) = 0 [pid 5032] mkdir("./314", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] close(3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] rmdir("./313" [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] <... rmdir resumed>) = 0 [pid 5032] close(3 [pid 5030] mkdir("./314", 0777 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6917] close(3 [pid 5030] <... mkdir resumed>) = 0 [pid 6917] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6918] <... munmap resumed>) = 0 [pid 6917] mkdir("./file0", 0777 [pid 5030] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6921 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6917] <... mkdir resumed>) = 0 [pid 6917] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3./strace-static-x86_64: Process 6921 attached [pid 6921] set_robust_list(0x55555635e660, 24) = 0 [pid 6921] chdir("./314" [pid 5030] <... close resumed>) = 0 [pid 6919] munmap(0x7ff0df171000, 138412032 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6919] <... munmap resumed>) = 0 [pid 6921] <... chdir resumed>) = 0 [pid 6921] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6918] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6921] setpgid(0, 0) = 0 [pid 6919] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [ 263.334498][ T6917] loop0: detected capacity change from 0 to 4096 [ 263.361524][ T6917] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6921] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6919] ioctl(4, LOOP_SET_FD, 3 [pid 6921] <... openat resumed>) = 3 [pid 6918] <... openat resumed>) = 4 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6922 ./strace-static-x86_64: Process 6922 attached [pid 6920] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6918] ioctl(4, LOOP_SET_FD, 3 [pid 6922] set_robust_list(0x55555635e660, 24 [pid 6921] write(3, "1000", 4) = 4 [pid 6921] close(3) = 0 [pid 6921] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6922] <... set_robust_list resumed>) = 0 [pid 6921] memfd_create("syzkaller", 0 [pid 6922] chdir("./314" [pid 6921] <... memfd_create resumed>) = 3 [pid 6922] <... chdir resumed>) = 0 [pid 6922] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6922] setpgid(0, 0) = 0 [pid 6921] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6922] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6921] <... mmap resumed>) = 0x7ff0df171000 [pid 6922] <... openat resumed>) = 3 [ 263.389137][ T6919] loop5: detected capacity change from 0 to 4096 [ 263.397210][ T6918] loop4: detected capacity change from 0 to 4096 [pid 6922] write(3, "1000", 4) = 4 [pid 6919] <... ioctl resumed>) = 0 [pid 6918] <... ioctl resumed>) = 0 [pid 6922] close(3 [pid 6918] close(3 [pid 6919] close(3 [pid 6922] <... close resumed>) = 0 [pid 6918] <... close resumed>) = 0 [pid 6922] symlink("/dev/binderfs", "./binderfs" [pid 6918] mkdir("./file0", 0777 [pid 6919] <... close resumed>) = 0 [pid 6919] mkdir("./file0", 0777) = 0 [pid 6918] <... mkdir resumed>) = 0 [pid 6922] <... symlink resumed>) = 0 [pid 6919] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6922] memfd_create("syzkaller", 0 [pid 6920] <... write resumed>) = 2097152 [pid 6918] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6922] <... memfd_create resumed>) = 3 [pid 6920] munmap(0x7ff0df171000, 138412032 [pid 6922] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6917] <... mount resumed>) = 0 [pid 6920] <... munmap resumed>) = 0 [pid 6920] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6917] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6920] <... openat resumed>) = 4 [pid 6917] <... openat resumed>) = 3 [pid 6920] ioctl(4, LOOP_SET_FD, 3 [ 263.438979][ T6919] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 263.449889][ T6918] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6917] chdir("./file0" [pid 6919] <... mount resumed>) = 0 [pid 6919] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6917] <... chdir resumed>) = 0 [pid 6919] <... openat resumed>) = 3 [pid 6917] ioctl(4, LOOP_CLR_FD) = 0 [pid 6919] chdir("./file0" [pid 6917] close(4 [pid 6919] <... chdir resumed>) = 0 [pid 6917] <... close resumed>) = 0 [pid 6919] ioctl(4, LOOP_CLR_FD [pid 6917] exit_group(0 [pid 6919] <... ioctl resumed>) = 0 [pid 6917] <... exit_group resumed>) = ? [pid 6919] close(4 [pid 6917] +++ exited with 0 +++ [pid 6919] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6917, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 6919] exit_group(0) = ? [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6920] <... ioctl resumed>) = 0 [pid 5029] umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6919] +++ exited with 0 +++ [pid 5029] <... openat resumed>) = 3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6919, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] newfstatat(3, "", [pid 6920] close(3 [pid 5034] umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6920] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 6920] mkdir("./file0", 0777 [pid 5034] openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... openat resumed>) = 3 [pid 5029] umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6920] <... mkdir resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6920] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 5029] newfstatat(AT_FDCWD, "./312/binderfs", [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6918] <... mount resumed>) = 0 [pid 5034] umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./312/binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... unlink resumed>) = 0 [pid 6918] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(AT_FDCWD, "./305/binderfs", [pid 5029] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6918] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6918] chdir("./file0" [pid 5034] unlink("./305/binderfs" [pid 6918] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6918] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6918] close(4) = 0 [pid 6918] exit_group(0) = ? [pid 6921] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6918] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6918, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 263.492944][ T6920] loop2: detected capacity change from 0 to 4096 [ 263.532073][ T6920] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6922] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./312/file0", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(AT_FDCWD, "./306/binderfs", [pid 5029] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./306/binderfs" [pid 5029] openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5033] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./312/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./312") = 0 [pid 6921] <... write resumed>) = 2097152 [pid 6921] munmap(0x7ff0df171000, 138412032 [pid 5029] mkdir("./313", 0777) = 0 [pid 6921] <... munmap resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6923 attached , child_tidptr=0x55555635e650) = 6923 [pid 6923] set_robust_list(0x55555635e660, 24) = 0 [pid 6923] chdir("./313" [pid 5034] <... umount2 resumed>) = 0 [pid 6923] <... chdir resumed>) = 0 [pid 6921] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6921] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./305/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 6923] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./305/file0" [pid 6923] <... prctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 6923] setpgid(0, 0 [pid 5034] <... close resumed>) = 0 [pid 6923] <... setpgid resumed>) = 0 [pid 6923] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6922] <... write resumed>) = 2097152 [pid 6921] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6922] munmap(0x7ff0df171000, 138412032 [pid 5034] rmdir("./305") = 0 [pid 5034] mkdir("./306", 0777 [pid 6923] <... openat resumed>) = 3 [pid 6921] close(3 [pid 5034] <... mkdir resumed>) = 0 [pid 6923] write(3, "1000", 4 [pid 6921] <... close resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6921] mkdir("./file0", 0777 [pid 5034] <... openat resumed>) = 3 [pid 6923] <... write resumed>) = 4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6923] close(3 [pid 6921] <... mkdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6923] <... close resumed>) = 0 [pid 5034] close(3 [pid 6923] symlink("/dev/binderfs", "./binderfs" [pid 6921] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6923] <... symlink resumed>) = 0 [pid 5033] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./306/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6924 attached ) = 4 [pid 6924] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6924 [pid 5033] newfstatat(4, "", [pid 6924] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6924] chdir("./306" [pid 5033] getdents64(4, [pid 6924] <... chdir resumed>) = 0 [pid 6924] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6924] <... prctl resumed>) = 0 [pid 5033] getdents64(4, [pid 6922] <... munmap resumed>) = 0 [pid 6924] setpgid(0, 0 [pid 6923] memfd_create("syzkaller", 0 [pid 6922] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6920] <... mount resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6924] <... setpgid resumed>) = 0 [pid 6922] <... openat resumed>) = 4 [pid 6920] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] close(4 [pid 6924] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [ 263.639765][ T6921] loop3: detected capacity change from 0 to 4096 [ 263.675740][ T6921] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6922] ioctl(4, LOOP_SET_FD, 3 [pid 6920] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 6924] <... openat resumed>) = 3 [pid 6923] <... memfd_create resumed>) = 3 [pid 6920] chdir("./file0" [pid 6924] write(3, "1000", 4) = 4 [pid 6924] close(3) = 0 [pid 6924] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] rmdir("./306/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./306") = 0 [pid 6924] memfd_create("syzkaller", 0 [pid 6923] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6920] <... chdir resumed>) = 0 [pid 5033] mkdir("./307", 0777 [pid 6923] <... mmap resumed>) = 0x7ff0df171000 [pid 6922] <... ioctl resumed>) = 0 [pid 6920] ioctl(4, LOOP_CLR_FD [pid 5033] <... mkdir resumed>) = 0 [pid 6920] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6924] <... memfd_create resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 6924] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6924] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6922] close(3 [pid 6920] close(4 [pid 5033] close(3 [pid 6922] <... close resumed>) = 0 [pid 6920] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6925 attached [pid 6922] mkdir("./file0", 0777 [pid 6920] exit_group(0) = ? [pid 6925] set_robust_list(0x55555635e660, 24 [pid 6922] <... mkdir resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6925 [pid 6925] <... set_robust_list resumed>) = 0 [pid 6925] chdir("./307") = 0 [pid 6925] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6920] +++ exited with 0 +++ [pid 6925] <... prctl resumed>) = 0 [pid 6922] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6920, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 6925] setpgid(0, 0) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6925] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6925] write(3, "1000", 4) = 4 [pid 6925] close(3) = 0 [pid 6925] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 6925] memfd_create("syzkaller", 0 [pid 5031] umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6925] <... memfd_create resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 6925] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 6925] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./312/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./312/binderfs") = 0 [ 263.702115][ T6922] loop1: detected capacity change from 0 to 4096 [ 263.739876][ T6922] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5031] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6923] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6921] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6921] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6921] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./312/file0", [pid 6921] chdir("./file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6924] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6921] <... chdir resumed>) = 0 [pid 6921] ioctl(4, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6921] <... ioctl resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6921] close(4 [pid 5031] newfstatat(4, "", [pid 6921] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 6921] exit_group(0 [pid 5031] <... close resumed>) = 0 [pid 6921] <... exit_group resumed>) = ? [pid 5031] rmdir("./312/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./312") = 0 [pid 5031] mkdir("./313", 0777 [pid 6921] +++ exited with 0 +++ [pid 5031] <... mkdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6921, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5032] umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./314/binderfs", [pid 5031] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] unlink("./314/binderfs" [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... unlink resumed>) = 0 [pid 5031] close(3 [pid 5032] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6925] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6923] <... write resumed>) = 2097152 [pid 6922] <... mount resumed>) = 0 [pid 6923] munmap(0x7ff0df171000, 138412032 [pid 6922] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6926 ./strace-static-x86_64: Process 6926 attached [pid 6926] set_robust_list(0x55555635e660, 24) = 0 [pid 6926] chdir("./313" [pid 6923] <... munmap resumed>) = 0 [pid 6926] <... chdir resumed>) = 0 [pid 6922] <... openat resumed>) = 3 [pid 6926] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6922] chdir("./file0" [pid 6926] <... prctl resumed>) = 0 [pid 6926] setpgid(0, 0) = 0 [pid 6926] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6922] <... chdir resumed>) = 0 [pid 6922] ioctl(4, LOOP_CLR_FD) = 0 [pid 6922] close(4) = 0 [pid 6923] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6922] exit_group(0) = ? [pid 6926] <... openat resumed>) = 3 [pid 6924] <... write resumed>) = 2097152 [pid 6923] <... openat resumed>) = 4 [pid 6923] ioctl(4, LOOP_SET_FD, 3 [pid 6926] write(3, "1000", 4) = 4 [pid 6926] close(3) = 0 [pid 6926] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6926] memfd_create("syzkaller", 0 [pid 6922] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6922, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6926] <... memfd_create resumed>) = 3 [pid 5030] umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6926] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6924] munmap(0x7ff0df171000, 138412032 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6926] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6924] <... munmap resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6924] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] newfstatat(AT_FDCWD, "./314/binderfs", [pid 6924] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./314/binderfs") = 0 [pid 5030] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6924] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = 0 [pid 6923] <... ioctl resumed>) = 0 [pid 6923] close(3 [pid 6925] <... write resumed>) = 2097152 [pid 5030] <... umount2 resumed>) = 0 [pid 6923] <... close resumed>) = 0 [pid 6923] mkdir("./file0", 0777 [pid 5030] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./314/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6923] <... mkdir resumed>) = 0 [ 263.948571][ T6923] loop0: detected capacity change from 0 to 4096 [ 263.960907][ T6924] loop5: detected capacity change from 0 to 4096 [pid 6925] munmap(0x7ff0df171000, 138412032 [pid 6924] <... ioctl resumed>) = 0 [pid 6923] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6924] close(3) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6924] mkdir("./file0", 0777 [pid 5030] openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6924] <... mkdir resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6924] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(4, [pid 5032] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./314/file0" [pid 6925] <... munmap resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./314/file0", [pid 5030] <... rmdir resumed>) = 0 [pid 6925] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6925] <... openat resumed>) = 4 [pid 5032] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 6925] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(3) = 0 [pid 6926] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 4 [pid 5030] rmdir("./314" [pid 5032] newfstatat(4, "", [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./315", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] close(4 [pid 5030] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./314/file0" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6923] <... mount resumed>) = 0 [ 264.003326][ T6923] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 264.020653][ T6924] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 264.034244][ T6925] loop4: detected capacity change from 0 to 4096 [pid 5032] close(3 [pid 5030] close(3 [pid 6925] <... ioctl resumed>) = 0 [pid 6923] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] rmdir("./314" [pid 6925] close(3 [pid 6923] <... openat resumed>) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6927 ./strace-static-x86_64: Process 6927 attached [pid 6925] <... close resumed>) = 0 [pid 6923] chdir("./file0" [pid 5032] <... rmdir resumed>) = 0 [pid 6927] set_robust_list(0x55555635e660, 24 [pid 6925] mkdir("./file0", 0777 [pid 6923] <... chdir resumed>) = 0 [pid 5032] mkdir("./315", 0777 [pid 6927] <... set_robust_list resumed>) = 0 [pid 6925] <... mkdir resumed>) = 0 [pid 6923] ioctl(4, LOOP_CLR_FD [pid 5032] <... mkdir resumed>) = 0 [pid 6925] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6923] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6927] chdir("./315" [pid 6924] <... mount resumed>) = 0 [pid 6923] close(4 [pid 6927] <... chdir resumed>) = 0 [pid 6923] <... close resumed>) = 0 [pid 6923] exit_group(0 [pid 6927] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6924] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6923] <... exit_group resumed>) = ? [pid 5032] <... openat resumed>) = 3 [pid 6927] <... prctl resumed>) = 0 [pid 6924] <... openat resumed>) = 3 [pid 6927] setpgid(0, 0 [pid 6924] chdir("./file0") = 0 [pid 6927] <... setpgid resumed>) = 0 [pid 6924] ioctl(4, LOOP_CLR_FD [pid 6927] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6924] <... ioctl resumed>) = 0 [pid 6927] write(3, "1000", 4 [pid 6924] close(4 [pid 6927] <... write resumed>) = 4 [pid 6924] <... close resumed>) = 0 [pid 6927] close(3 [pid 6924] exit_group(0) = ? [pid 6924] +++ exited with 0 +++ [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6924, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 6927] <... close resumed>) = 0 [pid 6927] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6923] +++ exited with 0 +++ [pid 5034] umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] close(3 [pid 6926] <... write resumed>) = 2097152 [pid 5034] newfstatat(3, "", [pid 5032] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6923, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 6927] memfd_create("syzkaller", 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6927] <... memfd_create resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6927] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(3, [pid 6927] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6928 attached [pid 5034] umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6928 [pid 5029] openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6928] set_robust_list(0x55555635e660, 24 [pid 5029] <... openat resumed>) = 3 [pid 6928] <... set_robust_list resumed>) = 0 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6928] chdir("./315" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 6928] <... chdir resumed>) = 0 [pid 6926] munmap(0x7ff0df171000, 138412032 [pid 5034] newfstatat(AT_FDCWD, "./306/binderfs", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6928] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6926] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] unlink("./306/binderfs") = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6926] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] newfstatat(AT_FDCWD, "./313/binderfs", [pid 6928] <... prctl resumed>) = 0 [pid 6926] <... openat resumed>) = 4 [ 264.100254][ T6925] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6926] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6928] setpgid(0, 0 [pid 5029] unlink("./313/binderfs" [pid 6928] <... setpgid resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6928] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6928] <... openat resumed>) = 3 [pid 6928] write(3, "1000", 4) = 4 [pid 6928] close(3) = 0 [pid 6926] <... ioctl resumed>) = 0 [pid 6925] <... mount resumed>) = 0 [pid 6928] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6926] close(3 [pid 6925] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6926] <... close resumed>) = 0 [pid 6925] <... openat resumed>) = 3 [pid 6926] mkdir("./file0", 0777 [pid 6928] memfd_create("syzkaller", 0 [pid 6926] <... mkdir resumed>) = 0 [pid 6925] chdir("./file0" [pid 6928] <... memfd_create resumed>) = 3 [pid 6925] <... chdir resumed>) = 0 [pid 6925] ioctl(4, LOOP_CLR_FD [pid 6928] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6926] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6925] <... ioctl resumed>) = 0 [pid 6925] close(4) = 0 [ 264.160765][ T6926] loop2: detected capacity change from 0 to 4096 [pid 6925] exit_group(0) = ? [pid 6925] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6925, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./306/file0", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6927] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./307/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./307/binderfs" [pid 5034] <... openat resumed>) = 4 [pid 5033] <... unlink resumed>) = 0 [pid 5029] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(AT_FDCWD, "./313/file0", [pid 5034] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(4 [pid 5029] openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./306/file0" [pid 5029] <... openat resumed>) = 4 [pid 5034] <... rmdir resumed>) = 0 [ 264.215831][ T6926] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5034] close(3) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] rmdir("./306" [pid 5029] close(4 [pid 6928] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... close resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] rmdir("./313/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] mkdir("./307", 0777 [pid 5029] close(3) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5029] rmdir("./313") = 0 [pid 6927] <... write resumed>) = 2097152 [pid 6926] <... mount resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] mkdir("./314", 0777 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] <... mkdir resumed>) = 0 [pid 6926] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6926] chdir("./file0" [pid 5034] close(3 [pid 6926] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 6926] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6927] munmap(0x7ff0df171000, 138412032 [pid 6926] close(4 [pid 6927] <... munmap resumed>) = 0 [pid 6926] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 6929 attached [pid 6926] exit_group(0 [pid 6929] set_robust_list(0x55555635e660, 24) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6926] <... exit_group resumed>) = ? [pid 6929] chdir("./307") = 0 [pid 6929] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6929] setpgid(0, 0 [pid 6927] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6926] +++ exited with 0 +++ [pid 6929] <... setpgid resumed>) = 0 [pid 6927] <... openat resumed>) = 4 [pid 6929] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6926, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 6929] <... openat resumed>) = 3 [pid 6927] ioctl(4, LOOP_SET_FD, 3 [pid 5031] umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 6929] write(3, "1000", 4 [pid 5031] newfstatat(3, "", [pid 6929] <... write resumed>) = 4 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6929 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./307/file0", [pid 6929] close(3 [pid 5031] getdents64(3, [pid 6929] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 6929] symlink("/dev/binderfs", "./binderfs" [pid 5031] umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6929] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./313/binderfs", ./strace-static-x86_64: Process 6930 attached [pid 6929] memfd_create("syzkaller", 0 [pid 5033] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6930] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(4, "", [pid 5031] unlink("./313/binderfs" [pid 6930] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6930] chdir("./314" [pid 5033] getdents64(4, [pid 5031] <... unlink resumed>) = 0 [pid 6929] <... memfd_create resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6930] <... chdir resumed>) = 0 [pid 6929] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] getdents64(4, [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6930 [pid 6930] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6929] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6930] <... prctl resumed>) = 0 [pid 6928] <... write resumed>) = 2097152 [pid 6927] <... ioctl resumed>) = 0 [pid 5033] close(4 [pid 6930] setpgid(0, 0 [pid 5033] <... close resumed>) = 0 [pid 6930] <... setpgid resumed>) = 0 [pid 6928] munmap(0x7ff0df171000, 138412032 [pid 6927] close(3 [pid 5033] rmdir("./307/file0" [pid 6930] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6927] <... close resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6930] write(3, "1000", 4 [pid 6927] mkdir("./file0", 0777 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6930] <... write resumed>) = 4 [pid 6930] close(3 [pid 6927] <... mkdir resumed>) = 0 [pid 6930] <... close resumed>) = 0 [pid 5033] close(3 [pid 6930] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6930] memfd_create("syzkaller", 0 [pid 6928] <... munmap resumed>) = 0 [pid 6927] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./307") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6928] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./313/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 264.342347][ T6927] loop1: detected capacity change from 0 to 4096 [pid 5031] openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./313/file0" [pid 6930] <... memfd_create resumed>) = 3 [pid 6928] <... openat resumed>) = 4 [pid 5033] mkdir("./308", 0777 [pid 5031] <... rmdir resumed>) = 0 [pid 6930] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6929] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6928] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./313") = 0 [pid 5031] mkdir("./314", 0777 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... mkdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6928] <... ioctl resumed>) = 0 [pid 5033] close(3 [pid 6928] close(3./strace-static-x86_64: Process 6931 attached ) = 0 [pid 5033] <... close resumed>) = 0 [pid 6931] set_robust_list(0x55555635e660, 24 [pid 6928] mkdir("./file0", 0777 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6931] <... set_robust_list resumed>) = 0 [pid 6928] <... mkdir resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6931 [pid 6931] chdir("./314") = 0 [ 264.400831][ T6927] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 264.424537][ T6928] loop3: detected capacity change from 0 to 4096 [pid 6928] mount("/dev/loop3", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6932 attached [pid 6931] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6932] set_robust_list(0x55555635e660, 24 [pid 6931] setpgid(0, 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6932 [pid 6931] <... setpgid resumed>) = 0 [pid 6932] <... set_robust_list resumed>) = 0 [pid 6931] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6932] chdir("./308" [pid 6931] <... openat resumed>) = 3 [pid 6931] write(3, "1000", 4) = 4 [pid 6931] close(3) = 0 [pid 6932] <... chdir resumed>) = 0 [pid 6931] symlink("/dev/binderfs", "./binderfs" [pid 6932] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6932] setpgid(0, 0 [pid 6931] <... symlink resumed>) = 0 [pid 6930] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6929] <... write resumed>) = 2097152 [pid 6932] <... setpgid resumed>) = 0 [pid 6931] memfd_create("syzkaller", 0 [pid 6929] munmap(0x7ff0df171000, 138412032 [pid 6931] <... memfd_create resumed>) = 3 [pid 6931] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6932] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6929] <... munmap resumed>) = 0 [pid 6927] <... mount resumed>) = 0 [pid 6927] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6932] <... openat resumed>) = 3 [pid 6932] write(3, "1000", 4 [pid 6927] <... openat resumed>) = 3 [pid 6932] <... write resumed>) = 4 [pid 6932] close(3) = 0 [ 264.453234][ T6928] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6932] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6929] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6927] chdir("./file0" [pid 6929] <... openat resumed>) = 4 [pid 6927] <... chdir resumed>) = 0 [pid 6927] ioctl(4, LOOP_CLR_FD) = 0 [pid 6927] close(4) = 0 [pid 6929] ioctl(4, LOOP_SET_FD, 3 [pid 6927] exit_group(0) = ? [pid 6927] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6927, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5030] umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./315/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6932] memfd_create("syzkaller", 0 [pid 6930] <... write resumed>) = 2097152 [pid 6929] <... ioctl resumed>) = 0 [pid 5030] unlink("./315/binderfs" [pid 6932] <... memfd_create resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6932] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6929] close(3 [pid 6932] <... mmap resumed>) = 0x7ff0df171000 [pid 6929] <... close resumed>) = 0 [pid 6929] mkdir("./file0", 0777) = 0 [ 264.519404][ T6929] loop5: detected capacity change from 0 to 4096 [pid 6930] munmap(0x7ff0df171000, 138412032 [pid 6929] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6930] <... munmap resumed>) = 0 [pid 6930] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6930] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6930] close(3 [pid 6931] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6928] <... mount resumed>) = 0 [pid 6930] <... close resumed>) = 0 [pid 6928] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6930] mkdir("./file0", 0777 [pid 6928] <... openat resumed>) = 3 [ 264.559826][ T6929] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 264.575960][ T6930] loop0: detected capacity change from 0 to 4096 [pid 6930] <... mkdir resumed>) = 0 [pid 6928] chdir("./file0" [pid 6930] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6928] <... chdir resumed>) = 0 [pid 6928] ioctl(4, LOOP_CLR_FD) = 0 [pid 6928] close(4) = 0 [pid 6928] exit_group(0) = ? [pid 6928] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6928, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 5032] umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./315/file0", [pid 5032] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./315/binderfs", [pid 5030] <... openat resumed>) = 4 [pid 6932] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(4, "", [pid 6931] <... write resumed>) = 2097152 [pid 5032] unlink("./315/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6931] munmap(0x7ff0df171000, 138412032 [pid 5032] <... unlink resumed>) = 0 [pid 5030] getdents64(4, [pid 5032] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 264.614764][ T6930] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6931] <... munmap resumed>) = 0 [pid 6929] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] getdents64(4, [pid 6929] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6929] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6929] chdir("./file0" [pid 5032] newfstatat(AT_FDCWD, "./315/file0", [pid 6929] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6929] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6929] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6929] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6929] exit_group(0 [pid 5032] <... openat resumed>) = 4 [pid 6929] <... exit_group resumed>) = ? [pid 6929] +++ exited with 0 +++ [pid 5032] newfstatat(4, "", [pid 5030] close(4 [pid 6931] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6929, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 6932] <... write resumed>) = 2097152 [pid 5032] getdents64(4, [pid 5030] rmdir("./315/file0" [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... rmdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6931] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5032] close(4) = 0 [pid 5030] <... close resumed>) = 0 [pid 6932] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./315/file0" [pid 5030] rmdir("./315" [pid 6932] <... munmap resumed>) = 0 [pid 6931] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5030] mkdir("./316", 0777 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./315") = 0 [pid 5032] mkdir("./316", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... mkdir resumed>) = 0 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6932] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6932] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 3 [pid 5034] umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6932] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 6931] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6931] close(3 [pid 5034] newfstatat(AT_FDCWD, "./307/binderfs", [pid 6931] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6931] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(3 [pid 5030] close(3 [pid 6931] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] unlink("./307/binderfs" [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... unlink resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6933 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6934 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6933 [pid 6933] set_robust_list(0x55555635e660, 24) = 0 ./strace-static-x86_64: Process 6934 attached [pid 6933] chdir("./316" [pid 6934] set_robust_list(0x55555635e660, 24) = 0 [pid 6931] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6934] chdir("./316") = 0 [pid 6933] <... chdir resumed>) = 0 [pid 6934] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6933] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6934] <... prctl resumed>) = 0 [pid 6933] <... prctl resumed>) = 0 [ 264.724726][ T6931] loop2: detected capacity change from 0 to 4096 [ 264.740616][ T6932] loop4: detected capacity change from 0 to 4096 [pid 6934] setpgid(0, 0 [pid 6933] setpgid(0, 0 [pid 6934] <... setpgid resumed>) = 0 [pid 6933] <... setpgid resumed>) = 0 [pid 6933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6932] <... ioctl resumed>) = 0 [pid 6930] <... mount resumed>) = 0 [pid 6933] <... openat resumed>) = 3 [pid 6932] close(3 [pid 6933] write(3, "1000", 4) = 4 [pid 6932] <... close resumed>) = 0 [pid 6933] close(3 [pid 6930] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6933] <... close resumed>) = 0 [pid 6932] mkdir("./file0", 0777 [pid 6930] <... openat resumed>) = 3 [pid 6933] symlink("/dev/binderfs", "./binderfs" [pid 6932] <... mkdir resumed>) = 0 [pid 6933] <... symlink resumed>) = 0 [pid 6930] chdir("./file0" [pid 6934] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6934] write(3, "1000", 4) = 4 [pid 6933] memfd_create("syzkaller", 0 [pid 6932] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6930] <... chdir resumed>) = 0 [pid 6934] close(3) = 0 [pid 6930] ioctl(4, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = 0 [pid 6934] symlink("/dev/binderfs", "./binderfs" [pid 5034] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6934] <... symlink resumed>) = 0 [pid 6933] <... memfd_create resumed>) = 3 [pid 6930] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./307/file0", [pid 6933] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6930] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6933] <... mmap resumed>) = 0x7ff0df171000 [pid 6930] <... close resumed>) = 0 [pid 5034] umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6930] exit_group(0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6930] <... exit_group resumed>) = ? [pid 6930] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6930, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./314/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./314/binderfs" [pid 6934] memfd_create("syzkaller", 0 [pid 5034] openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... unlink resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5029] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6934] <... memfd_create resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 6934] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6934] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./314/file0", [pid 5034] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 264.770591][ T6931] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 264.789420][ T6932] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5034] rmdir("./307/file0" [pid 5029] newfstatat(4, "", [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 5034] close(3) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] rmdir("./307") = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] mkdir("./308", 0777 [pid 5029] close(4 [pid 5034] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./314/file0") = 0 [pid 6931] <... mount resumed>) = 0 [pid 6932] <... mount resumed>) = 0 [pid 6931] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] getdents64(3, [pid 6931] <... openat resumed>) = 3 [pid 6931] chdir("./file0" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6932] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6931] <... chdir resumed>) = 0 [pid 5029] close(3 [pid 6931] ioctl(4, LOOP_CLR_FD [pid 6932] <... openat resumed>) = 3 [pid 6931] <... ioctl resumed>) = 0 [pid 6932] chdir("./file0") = 0 [pid 6932] ioctl(4, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6931] close(4 [pid 6932] <... ioctl resumed>) = 0 [pid 6931] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6931] exit_group(0 [pid 6932] close(4 [pid 5029] rmdir("./314" [pid 6932] <... close resumed>) = 0 [pid 6933] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6932] exit_group(0 [pid 5034] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 6932] <... exit_group resumed>) = ? [pid 5029] mkdir("./315", 0777 [pid 6932] +++ exited with 0 +++ [pid 6931] <... exit_group resumed>) = ? [pid 5029] <... mkdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6932, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 6931] +++ exited with 0 +++ [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5033] umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6931, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, ./strace-static-x86_64: Process 6935 attached 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6935] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(AT_FDCWD, "./308/binderfs", [pid 6935] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6935] chdir("./315" [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6935 [pid 5033] unlink("./308/binderfs" [pid 6935] <... chdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6935] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6935] <... prctl resumed>) = 0 [pid 5034] close(3 [pid 6935] setpgid(0, 0) = 0 [pid 6935] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6935] write(3, "1000", 4) = 4 [pid 6935] close(3) = 0 [pid 6935] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6936 attached [pid 6935] memfd_create("syzkaller", 0 [pid 6934] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6936] set_robust_list(0x55555635e660, 24) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6936 [pid 5031] openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6936] chdir("./308") = 0 [pid 6936] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6936] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6936] setpgid(0, 0 [pid 5031] newfstatat(AT_FDCWD, "./314/binderfs", [pid 6936] <... setpgid resumed>) = 0 [pid 6935] <... memfd_create resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./314/binderfs" [pid 6935] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6936] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6935] <... mmap resumed>) = 0x7ff0df171000 [pid 6933] <... write resumed>) = 2097152 [pid 6936] <... openat resumed>) = 3 [pid 6936] write(3, "1000", 4 [pid 5031] <... unlink resumed>) = 0 [pid 6936] <... write resumed>) = 4 [pid 5031] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6936] close(3) = 0 [pid 6936] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6936] memfd_create("syzkaller", 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6936] <... memfd_create resumed>) = 3 [pid 6934] <... write resumed>) = 2097152 [pid 6936] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6933] munmap(0x7ff0df171000, 138412032 [pid 5033] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6933] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./308/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./314/file0", [pid 6934] munmap(0x7ff0df171000, 138412032 [pid 6933] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6933] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6933] ioctl(4, LOOP_SET_FD, 3 [pid 5033] openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6934] <... munmap resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5031] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(4, "", [pid 5031] openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6934] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6934] <... openat resumed>) = 4 [pid 5033] getdents64(4, [pid 5031] <... openat resumed>) = 4 [pid 6934] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] newfstatat(4, "", [pid 5033] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./308/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(4, [pid 5033] close(3) = 0 [pid 5033] rmdir("./308") = 0 [pid 6933] <... ioctl resumed>) = 0 [pid 6933] close(3 [pid 5033] mkdir("./309", 0777 [pid 6933] <... close resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6933] mkdir("./file0", 0777 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6935] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6933] <... mkdir resumed>) = 0 [pid 5031] getdents64(4, [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6934] <... ioctl resumed>) = 0 [pid 6933] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] close(4) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 6934] close(3 [pid 5033] <... close resumed>) = 0 [pid 5031] rmdir("./314/file0" [pid 6934] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 265.055109][ T6933] loop1: detected capacity change from 0 to 4096 [ 265.067990][ T6934] loop3: detected capacity change from 0 to 4096 [pid 6934] mkdir("./file0", 0777./strace-static-x86_64: Process 6937 attached [pid 6936] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6934] <... mkdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6937] set_robust_list(0x55555635e660, 24 [pid 6934] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6937 [pid 6937] <... set_robust_list resumed>) = 0 [pid 6937] chdir("./309") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 6937] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] rmdir("./314") = 0 [pid 6937] <... prctl resumed>) = 0 [pid 6935] <... write resumed>) = 2097152 [pid 5031] mkdir("./315", 0777 [pid 6937] setpgid(0, 0) = 0 [ 265.098915][ T6933] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 265.124379][ T6934] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6937] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6936] <... write resumed>) = 2097152 [pid 5031] <... mkdir resumed>) = 0 [pid 6935] munmap(0x7ff0df171000, 138412032) = 0 [pid 6937] <... openat resumed>) = 3 [pid 6937] write(3, "1000", 4 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6937] <... write resumed>) = 4 [pid 6936] munmap(0x7ff0df171000, 138412032 [pid 5031] <... openat resumed>) = 3 [pid 6937] close(3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6937] <... close resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6933] <... mount resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6937] symlink("/dev/binderfs", "./binderfs" [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6935] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6933] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6935] <... openat resumed>) = 4 [pid 6935] ioctl(4, LOOP_SET_FD, 3 [pid 6933] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6938 attached [pid 6937] <... symlink resumed>) = 0 [pid 6936] <... munmap resumed>) = 0 [pid 6935] <... ioctl resumed>) = 0 [pid 6933] chdir("./file0" [pid 6938] set_robust_list(0x55555635e660, 24) = 0 [pid 6933] <... chdir resumed>) = 0 [pid 6933] ioctl(4, LOOP_CLR_FD [pid 6938] chdir("./315" [pid 6933] <... ioctl resumed>) = 0 [pid 6938] <... chdir resumed>) = 0 [pid 6933] close(4 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6938 [pid 6938] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6933] <... close resumed>) = 0 [pid 6938] <... prctl resumed>) = 0 [pid 6933] exit_group(0 [pid 6938] setpgid(0, 0 [pid 6933] <... exit_group resumed>) = ? [pid 6937] memfd_create("syzkaller", 0 [pid 6933] +++ exited with 0 +++ [pid 6938] <... setpgid resumed>) = 0 [pid 6938] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6933, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6937] <... memfd_create resumed>) = 3 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6937] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 6938] <... openat resumed>) = 3 [pid 6938] write(3, "1000", 4 [pid 6936] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6938] <... write resumed>) = 4 [pid 6937] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6938] close(3 [pid 6936] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6938] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6938] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... openat resumed>) = 3 [pid 6938] <... symlink resumed>) = 0 [pid 6935] close(3 [pid 5030] newfstatat(3, "", [pid 6935] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6935] mkdir("./file0", 0777 [pid 5030] getdents64(3, [pid 6935] <... mkdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6936] ioctl(4, LOOP_SET_FD, 3 [pid 6938] memfd_create("syzkaller", 0 [pid 6936] <... ioctl resumed>) = 0 [pid 5030] umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6935] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6938] <... memfd_create resumed>) = 3 [pid 6936] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6938] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6936] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./316/binderfs", [pid 6938] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./316/binderfs") = 0 [pid 5030] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6936] mkdir("./file0", 0777) = 0 [ 265.204593][ T6935] loop0: detected capacity change from 0 to 4096 [ 265.234556][ T6936] loop5: detected capacity change from 0 to 4096 [ 265.244480][ T6935] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6936] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6935] <... mount resumed>) = 0 [pid 6935] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6935] chdir("./file0") = 0 [pid 6935] ioctl(4, LOOP_CLR_FD) = 0 [pid 6935] close(4) = 0 [pid 6935] exit_group(0 [pid 6937] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6935] <... exit_group resumed>) = ? [pid 5030] <... umount2 resumed>) = 0 [pid 6934] <... mount resumed>) = 0 [pid 5030] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6934] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6935] +++ exited with 0 +++ [pid 5030] newfstatat(AT_FDCWD, "./316/file0", [pid 6934] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6935, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- [pid 5030] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5029] umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6934] chdir("./file0" [pid 5030] getdents64(4, [pid 5029] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] newfstatat(3, "", [pid 5030] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] getdents64(3, [pid 5030] rmdir("./316/file0" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6934] <... chdir resumed>) = 0 [pid 5029] umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6934] ioctl(4, LOOP_CLR_FD [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6934] <... ioctl resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./315/binderfs", [pid 6934] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(3, [pid 6934] <... close resumed>) = 0 [pid 5029] unlink("./315/binderfs" [pid 6934] exit_group(0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6934] <... exit_group resumed>) = ? [pid 5029] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6934] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6934, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [ 265.288790][ T6936] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5032] umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6938] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5030] close(3 [pid 5029] <... umount2 resumed>) = 0 [pid 6937] <... write resumed>) = 2097152 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 6937] munmap(0x7ff0df171000, 138412032 [pid 5032] getdents64(3, [pid 5030] rmdir("./316" [pid 5029] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6937] <... munmap resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./315/file0", [pid 6937] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] newfstatat(AT_FDCWD, "./316/binderfs", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] mkdir("./317", 0777 [pid 6937] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6937] ioctl(4, LOOP_SET_FD, 3 [pid 5032] unlink("./316/binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6936] <... mount resumed>) = 0 [pid 5032] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 6936] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 6936] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6937] <... ioctl resumed>) = 0 [pid 6936] chdir("./file0" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] getdents64(4, [pid 6937] close(3 [pid 6936] <... chdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6937] <... close resumed>) = 0 [pid 6937] mkdir("./file0", 0777 [pid 6936] ioctl(4, LOOP_CLR_FD [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] close(4 [pid 6937] <... mkdir resumed>) = 0 [pid 6936] <... ioctl resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 5030] close(3 [pid 6936] close(4 [pid 5030] <... close resumed>) = 0 [pid 5029] rmdir("./315/file0" [pid 6936] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6936] exit_group(0 [pid 5032] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./316/file0", [pid 5029] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5032] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./315" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6939 [pid 5029] <... rmdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6939 attached [pid 6937] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] <... openat resumed>) = 4 [pid 6939] set_robust_list(0x55555635e660, 24 [pid 5032] newfstatat(4, "", [pid 5029] mkdir("./316", 0777 [pid 6939] <... set_robust_list resumed>) = 0 [pid 6936] <... exit_group resumed>) = ? [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6936] +++ exited with 0 +++ [pid 5032] getdents64(4, [pid 5029] <... mkdir resumed>) = 0 [pid 6939] chdir("./317" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6936, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6939] <... chdir resumed>) = 0 [pid 6939] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6939] setpgid(0, 0 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] rmdir("./316/file0" [pid 5029] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6939] <... setpgid resumed>) = 0 [pid 5032] getdents64(3, [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6939] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5029] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6939] <... openat resumed>) = 3 [pid 6938] <... write resumed>) = 2097152 [pid 5034] openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] rmdir("./316" [pid 6939] write(3, "1000", 4 [pid 6938] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 6940 attached [pid 5034] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 6940] set_robust_list(0x55555635e660, 24 [pid 5034] newfstatat(3, "", [pid 5032] mkdir("./317", 0777 [pid 6940] <... set_robust_list resumed>) = 0 [pid 6939] <... write resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6940 [pid 6939] close(3 [pid 6940] chdir("./316" [pid 6939] <... close resumed>) = 0 [pid 6938] <... munmap resumed>) = 0 [pid 5034] getdents64(3, [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6940] <... chdir resumed>) = 0 [pid 6939] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6939] <... symlink resumed>) = 0 [pid 6938] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 265.393826][ T6937] loop4: detected capacity change from 0 to 4096 [ 265.429536][ T6937] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6940] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] newfstatat(AT_FDCWD, "./308/binderfs", [pid 6940] <... prctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6940] setpgid(0, 0 [pid 6939] memfd_create("syzkaller", 0 [pid 5034] unlink("./308/binderfs" [pid 6940] <... setpgid resumed>) = 0 [pid 6939] <... memfd_create resumed>) = 3 [pid 6938] <... openat resumed>) = 4 [pid 5034] <... unlink resumed>) = 0 [pid 6940] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6938] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... openat resumed>) = 3 [pid 6940] <... openat resumed>) = 3 [pid 5034] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6940] write(3, "1000", 4 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6940] <... write resumed>) = 4 [pid 6940] close(3 [pid 6939] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] close(3 [pid 6940] <... close resumed>) = 0 [pid 6939] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... close resumed>) = 0 [pid 6940] symlink("/dev/binderfs", "./binderfs" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6940] <... symlink resumed>) = 0 ./strace-static-x86_64: Process 6941 attached [pid 6940] memfd_create("syzkaller", 0 [pid 6941] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6941 [pid 6941] <... set_robust_list resumed>) = 0 [pid 6941] chdir("./317") = 0 [pid 6941] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6941] setpgid(0, 0) = 0 [pid 6940] <... memfd_create resumed>) = 3 [pid 6941] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6940] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6941] <... openat resumed>) = 3 [pid 6940] <... mmap resumed>) = 0x7ff0df171000 [pid 6941] write(3, "1000", 4 [pid 6938] <... ioctl resumed>) = 0 [pid 6941] <... write resumed>) = 4 [pid 6941] close(3) = 0 [pid 6941] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6938] close(3) = 0 [pid 6941] memfd_create("syzkaller", 0 [pid 6938] mkdir("./file0", 0777 [pid 6941] <... memfd_create resumed>) = 3 [pid 6938] <... mkdir resumed>) = 0 [ 265.481948][ T6938] loop2: detected capacity change from 0 to 4096 [pid 6941] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6938] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6937] <... mount resumed>) = 0 [pid 6937] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6937] chdir("./file0") = 0 [pid 6937] ioctl(4, LOOP_CLR_FD) = 0 [pid 6937] close(4 [pid 6940] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6937] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6939] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6937] exit_group(0 [pid 5034] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6937] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6937] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6937, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5034] newfstatat(AT_FDCWD, "./308/file0", [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5034] umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... openat resumed>) = 4 [pid 5033] <... openat resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 5033] newfstatat(3, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 265.565663][ T6938] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] getdents64(3, [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 6941] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] rmdir("./308/file0" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6938] <... mount resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./309/binderfs", [pid 5034] rmdir("./308" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] unlink("./309/binderfs") = 0 [pid 5033] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6938] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] mkdir("./309", 0777) = 0 [pid 6940] <... write resumed>) = 2097152 [pid 6938] chdir("./file0" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6938] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6938] ioctl(4, LOOP_CLR_FD [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6938] <... ioctl resumed>) = 0 [pid 6938] close(4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6940] munmap(0x7ff0df171000, 138412032 [pid 5033] <... umount2 resumed>) = 0 [pid 6940] <... munmap resumed>) = 0 [pid 6939] <... write resumed>) = 2097152 [pid 6938] <... close resumed>) = 0 [pid 5034] close(3 [pid 5033] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6938] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./309/file0", [pid 6938] <... exit_group resumed>) = ? [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6940] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6938] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6938, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 6942 attached [pid 6939] munmap(0x7ff0df171000, 138412032 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6942] set_robust_list(0x55555635e660, 24 [pid 6940] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6942 [pid 5033] openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6942] <... set_robust_list resumed>) = 0 [pid 6939] <... munmap resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6942] chdir("./309" [pid 5033] newfstatat(4, "", [pid 5031] <... openat resumed>) = 3 [pid 6942] <... chdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6939] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] getdents64(3, [pid 6942] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] getdents64(4, [pid 6939] <... openat resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6942] <... prctl resumed>) = 0 [pid 6939] ioctl(4, LOOP_SET_FD, 3 [pid 5031] umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6942] setpgid(0, 0 [pid 5033] getdents64(4, [pid 6942] <... setpgid resumed>) = 0 [pid 6941] <... write resumed>) = 2097152 [pid 6941] munmap(0x7ff0df171000, 138412032 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6942] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(AT_FDCWD, "./315/binderfs", [pid 5033] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6942] <... openat resumed>) = 3 [pid 5031] unlink("./315/binderfs" [pid 5033] <... close resumed>) = 0 [pid 6942] write(3, "1000", 4 [pid 6940] <... ioctl resumed>) = 0 [pid 5033] rmdir("./309/file0" [pid 5031] <... unlink resumed>) = 0 [pid 6942] <... write resumed>) = 4 [pid 6940] close(3 [pid 6941] <... munmap resumed>) = 0 [pid 6940] <... close resumed>) = 0 [pid 5031] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6942] close(3 [pid 6941] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6940] mkdir("./file0", 0777 [pid 5033] <... rmdir resumed>) = 0 [pid 6942] <... close resumed>) = 0 [pid 6942] symlink("/dev/binderfs", "./binderfs" [pid 6941] <... openat resumed>) = 4 [ 265.721367][ T6940] loop0: detected capacity change from 0 to 4096 [ 265.737353][ T6939] loop1: detected capacity change from 0 to 4096 [pid 6940] <... mkdir resumed>) = 0 [pid 6939] <... ioctl resumed>) = 0 [pid 5033] getdents64(3, [pid 6942] <... symlink resumed>) = 0 [pid 6941] ioctl(4, LOOP_SET_FD, 3 [pid 6939] close(3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6942] memfd_create("syzkaller", 0 [pid 6940] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6939] <... close resumed>) = 0 [pid 5033] close(3 [pid 6939] mkdir("./file0", 0777 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./309" [pid 6942] <... memfd_create resumed>) = 3 [pid 6939] <... mkdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6942] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6939] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] mkdir("./310", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./315/file0", [pid 5033] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./315/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./315") = 0 [pid 5031] mkdir("./316", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 6941] <... ioctl resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6942] <... mmap resumed>) = 0x7ff0df171000 [pid 6941] close(3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... ioctl resumed>) = 0 [pid 6941] <... close resumed>) = 0 [pid 5031] close(3 [pid 6941] mkdir("./file0", 0777 [pid 5031] <... close resumed>) = 0 [pid 6941] <... mkdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6943 attached [pid 6941] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] close(3 [pid 6943] set_robust_list(0x55555635e660, 24 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6943] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 6944 attached [pid 6943] chdir("./316" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6944 [pid 6944] set_robust_list(0x55555635e660, 24 [pid 6943] <... chdir resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6943 [pid 6943] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6943] setpgid(0, 0) = 0 [pid 6943] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6944] <... set_robust_list resumed>) = 0 [pid 6943] <... openat resumed>) = 3 [pid 6943] write(3, "1000", 4) = 4 [pid 6943] close(3) = 0 [ 265.769767][ T6941] loop3: detected capacity change from 0 to 4096 [ 265.779061][ T6940] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 265.791485][ T6939] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 265.810180][ T6941] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6943] symlink("/dev/binderfs", "./binderfs" [pid 6944] chdir("./310" [pid 6943] <... symlink resumed>) = 0 [pid 6939] <... mount resumed>) = 0 [pid 6944] <... chdir resumed>) = 0 [pid 6944] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6939] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6944] setpgid(0, 0 [pid 6939] <... openat resumed>) = 3 [pid 6944] <... setpgid resumed>) = 0 [pid 6943] memfd_create("syzkaller", 0 [pid 6939] chdir("./file0" [pid 6944] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6939] <... chdir resumed>) = 0 [pid 6944] <... openat resumed>) = 3 [pid 6943] <... memfd_create resumed>) = 3 [pid 6939] ioctl(4, LOOP_CLR_FD [pid 6944] write(3, "1000", 4 [pid 6943] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6939] <... ioctl resumed>) = 0 [pid 6944] <... write resumed>) = 4 [pid 6943] <... mmap resumed>) = 0x7ff0df171000 [pid 6939] close(4) = 0 [pid 6939] exit_group(0) = ? [pid 6944] close(3) = 0 [pid 6944] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6942] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6939] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6939, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6944] memfd_create("syzkaller", 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6944] <... memfd_create resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6944] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6940] <... mount resumed>) = 0 [pid 5030] umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6944] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./317/binderfs", [pid 6940] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6940] <... openat resumed>) = 3 [pid 5030] unlink("./317/binderfs" [pid 6940] chdir("./file0" [pid 5030] <... unlink resumed>) = 0 [pid 6940] <... chdir resumed>) = 0 [pid 6940] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6940] close(4) = 0 [pid 6940] exit_group(0) = ? [pid 6940] +++ exited with 0 +++ [pid 6941] <... mount resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6940, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 6941] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6941] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6941] chdir("./file0" [pid 5029] openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6941] <... chdir resumed>) = 0 [pid 6941] ioctl(4, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 3 [pid 6941] <... ioctl resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6941] close(4 [pid 5030] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6941] <... close resumed>) = 0 [pid 5029] umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6941] exit_group(0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6941] <... exit_group resumed>) = ? [pid 5029] newfstatat(AT_FDCWD, "./316/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./316/binderfs") = 0 [pid 5029] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6941] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6941, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=9 /* 0.09 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./317/file0", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./317/binderfs", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./317/binderfs") = 0 [pid 5030] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 6942] <... write resumed>) = 2097152 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6942] munmap(0x7ff0df171000, 138412032 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./316/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 5030] newfstatat(4, "", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 6942] <... munmap resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6942] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] getdents64(4, [pid 6944] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 6942] <... openat resumed>) = 4 [pid 5030] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6942] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6943] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] close(4 [pid 5029] close(4 [pid 5030] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./316/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./316") = 0 [pid 5030] rmdir("./317/file0" [pid 5029] mkdir("./317", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = 0 [pid 5029] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./317/file0", [pid 5030] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] rmdir("./317" [pid 5032] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] mkdir("./318", 0777 [pid 6942] <... ioctl resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] <... mkdir resumed>) = 0 [pid 6942] close(3 [pid 5032] newfstatat(4, "", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6942] <... close resumed>) = 0 [pid 6942] mkdir("./file0", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5032] getdents64(4, [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6942] <... mkdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./317/file0"./strace-static-x86_64: Process 6945 attached ) = 0 [pid 6945] set_robust_list(0x55555635e660, 24 [pid 5032] getdents64(3, [pid 6945] <... set_robust_list resumed>) = 0 [pid 6945] chdir("./318" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6945] <... chdir resumed>) = 0 [pid 6945] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] close(3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6945 [pid 6945] <... prctl resumed>) = 0 [pid 6942] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6945] setpgid(0, 0 [pid 5032] <... close resumed>) = 0 [ 266.021111][ T6942] loop5: detected capacity change from 0 to 4096 [pid 6945] <... setpgid resumed>) = 0 [pid 5032] rmdir("./317") = 0 [pid 5032] mkdir("./318", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 6944] <... write resumed>) = 2097152 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6945] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6945] write(3, "1000", 4) = 4 [pid 5029] <... close resumed>) = 0 [pid 5032] <... ioctl resumed>) = 0 [pid 5032] close(3 [pid 6945] close(3 [pid 5032] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6943] <... write resumed>) = 2097152 [pid 6944] munmap(0x7ff0df171000, 138412032 [pid 6945] <... close resumed>) = 0 [pid 6943] munmap(0x7ff0df171000, 138412032 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6946 ./strace-static-x86_64: Process 6946 attached [pid 6945] symlink("/dev/binderfs", "./binderfs" [pid 6944] <... munmap resumed>) = 0 [pid 6946] set_robust_list(0x55555635e660, 24 [pid 6945] <... symlink resumed>) = 0 [pid 6946] <... set_robust_list resumed>) = 0 [pid 6946] chdir("./317" [pid 6945] memfd_create("syzkaller", 0 [pid 6944] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6947 [pid 6946] <... chdir resumed>) = 0 [pid 6944] <... openat resumed>) = 4 ./strace-static-x86_64: Process 6947 attached [pid 6946] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6945] <... memfd_create resumed>) = 3 [pid 6944] ioctl(4, LOOP_SET_FD, 3 [pid 6946] <... prctl resumed>) = 0 [pid 6947] set_robust_list(0x55555635e660, 24 [pid 6943] <... munmap resumed>) = 0 [ 266.082876][ T6942] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6947] <... set_robust_list resumed>) = 0 [pid 6947] chdir("./318") = 0 [pid 6947] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6947] setpgid(0, 0) = 0 [pid 6943] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6947] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6943] <... openat resumed>) = 4 [pid 6947] <... openat resumed>) = 3 [pid 6943] ioctl(4, LOOP_SET_FD, 3 [pid 6946] setpgid(0, 0 [pid 6944] <... ioctl resumed>) = 0 [pid 6947] write(3, "1000", 4 [pid 6946] <... setpgid resumed>) = 0 [pid 6945] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6944] close(3 [pid 6947] <... write resumed>) = 4 [pid 6946] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6945] <... mmap resumed>) = 0x7ff0df171000 [pid 6944] <... close resumed>) = 0 [pid 6947] close(3 [pid 6946] <... openat resumed>) = 3 [pid 6944] mkdir("./file0", 0777 [pid 6947] <... close resumed>) = 0 [pid 6947] symlink("/dev/binderfs", "./binderfs" [pid 6944] <... mkdir resumed>) = 0 [pid 6947] <... symlink resumed>) = 0 [pid 6946] write(3, "1000", 4 [pid 6944] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6946] <... write resumed>) = 4 [pid 6946] close(3) = 0 [pid 6946] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6946] memfd_create("syzkaller", 0 [pid 6947] memfd_create("syzkaller", 0 [pid 6946] <... memfd_create resumed>) = 3 [ 266.125931][ T6944] loop4: detected capacity change from 0 to 4096 [ 266.134829][ T6943] loop2: detected capacity change from 0 to 4096 [pid 6947] <... memfd_create resumed>) = 3 [pid 6947] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6946] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6943] <... ioctl resumed>) = 0 [pid 6943] close(3) = 0 [pid 6943] mkdir("./file0", 0777) = 0 [ 266.171761][ T6944] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6943] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6947] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6945] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6942] <... mount resumed>) = 0 [pid 6942] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6942] chdir("./file0") = 0 [pid 6942] ioctl(4, LOOP_CLR_FD) = 0 [ 266.214141][ T6943] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6942] close(4) = 0 [pid 6942] exit_group(0 [pid 6946] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6942] <... exit_group resumed>) = ? [pid 6942] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6942, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./309/binderfs", [pid 6944] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./309/binderfs") = 0 [pid 5034] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6944] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6944] chdir("./file0") = 0 [pid 6944] ioctl(4, LOOP_CLR_FD) = 0 [pid 6944] close(4) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6944] exit_group(0 [pid 5034] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6944] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./309/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 6944] +++ exited with 0 +++ [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6944, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./309/file0" [pid 5033] openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6943] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5033] umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./309" [pid 5033] newfstatat(AT_FDCWD, "./310/binderfs", [pid 6945] <... write resumed>) = 2097152 [pid 6943] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 6945] munmap(0x7ff0df171000, 138412032 [pid 6943] <... openat resumed>) = 3 [pid 5034] mkdir("./310", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] unlink("./310/binderfs" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... unlink resumed>) = 0 [pid 6947] <... write resumed>) = 2097152 [pid 5034] <... openat resumed>) = 3 [pid 5033] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6943] chdir("./file0") = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6943] ioctl(4, LOOP_CLR_FD [pid 5034] <... ioctl resumed>) = 0 [pid 6943] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 6943] close(4 [pid 5034] <... close resumed>) = 0 [pid 6945] <... munmap resumed>) = 0 [pid 6943] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6946] <... write resumed>) = 2097152 [pid 6945] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6943] exit_group(0./strace-static-x86_64: Process 6948 attached [pid 6946] munmap(0x7ff0df171000, 138412032 [pid 6945] <... openat resumed>) = 4 [pid 6943] <... exit_group resumed>) = ? [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6948 [pid 6948] set_robust_list(0x55555635e660, 24) = 0 [pid 6947] munmap(0x7ff0df171000, 138412032 [pid 6948] chdir("./310" [pid 6947] <... munmap resumed>) = 0 [pid 6946] <... munmap resumed>) = 0 [pid 6945] ioctl(4, LOOP_SET_FD, 3 [pid 6943] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = 0 [pid 6948] <... chdir resumed>) = 0 [pid 5033] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6943, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=8 /* 0.08 s */} --- [pid 6948] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6948] setpgid(0, 0 [pid 5031] umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6948] <... setpgid resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6948] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6948] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6948] write(3, "1000", 4 [pid 6946] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6945] <... ioctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./310/file0", [pid 5031] getdents64(3, [pid 6948] <... write resumed>) = 4 [pid 6947] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6946] <... openat resumed>) = 4 [pid 6945] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6948] close(3 [pid 6947] <... openat resumed>) = 4 [pid 6946] ioctl(4, LOOP_SET_FD, 3 [pid 6945] <... close resumed>) = 0 [pid 5033] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6945] mkdir("./file0", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6948] <... close resumed>) = 0 [pid 6947] ioctl(4, LOOP_SET_FD, 3 [pid 5033] openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6945] <... mkdir resumed>) = 0 [pid 6948] symlink("/dev/binderfs", "./binderfs" [pid 6946] <... ioctl resumed>) = 0 [pid 6945] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 4 [pid 5031] newfstatat(AT_FDCWD, "./316/binderfs", [pid 6948] <... symlink resumed>) = 0 [pid 6946] close(3 [pid 5033] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./316/binderfs") = 0 [pid 6948] memfd_create("syzkaller", 0 [pid 5031] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6948] <... memfd_create resumed>) = 3 [pid 6948] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6946] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6946] mkdir("./file0", 0777 [pid 5033] getdents64(4, [pid 6946] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 6946] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 6947] <... ioctl resumed>) = 0 [pid 5033] rmdir("./310/file0" [pid 6947] close(3) = 0 [pid 6947] mkdir("./file0", 0777 [pid 5033] <... rmdir resumed>) = 0 [pid 6947] <... mkdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [ 266.397279][ T6945] loop1: detected capacity change from 0 to 4096 [ 266.418383][ T6946] loop0: detected capacity change from 0 to 4096 [ 266.419388][ T6947] loop3: detected capacity change from 0 to 4096 [ 266.432983][ T6945] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6947] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./310") = 0 [pid 6945] <... mount resumed>) = 0 [pid 5033] mkdir("./311", 0777 [pid 6945] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6945] <... openat resumed>) = 3 [pid 6945] chdir("./file0") = 0 [pid 6945] ioctl(4, LOOP_CLR_FD) = 0 [pid 6945] close(4) = 0 [pid 6948] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = 0 [pid 6945] exit_group(0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6945] <... exit_group resumed>) = ? [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 6945] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6945, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- ./strace-static-x86_64: Process 6949 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6949 [pid 5030] umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6949] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6949] chdir("./311" [pid 5030] openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6949] <... chdir resumed>) = 0 [ 266.472446][ T6946] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 266.496188][ T6947] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 6949] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] newfstatat(3, "", [pid 6949] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6949] setpgid(0, 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6949] <... setpgid resumed>) = 0 [pid 6949] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] getdents64(3, [pid 6949] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6949] write(3, "1000", 4 [pid 5030] umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6949] <... write resumed>) = 4 [pid 6946] <... mount resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./316/file0", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6949] close(3 [pid 6946] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(AT_FDCWD, "./318/binderfs", [pid 6949] <... close resumed>) = 0 [pid 6946] <... openat resumed>) = 3 [pid 6949] symlink("/dev/binderfs", "./binderfs" [pid 6946] chdir("./file0" [pid 5031] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6949] <... symlink resumed>) = 0 [pid 6946] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./318/binderfs" [pid 6946] ioctl(4, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 6946] <... ioctl resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6946] close(4 [pid 5031] newfstatat(4, "", [pid 6946] <... close resumed>) = 0 [pid 6947] <... mount resumed>) = 0 [pid 6949] memfd_create("syzkaller", 0 [pid 6946] exit_group(0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6946] <... exit_group resumed>) = ? [pid 5031] getdents64(4, [pid 6947] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6947] <... openat resumed>) = 3 [pid 6946] +++ exited with 0 +++ [pid 6947] chdir("./file0" [pid 5031] getdents64(4, [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6946, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 6949] <... memfd_create resumed>) = 3 [pid 6947] <... chdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6949] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./316/file0" [pid 6947] ioctl(4, LOOP_CLR_FD [pid 5029] umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6947] <... ioctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6947] close(4 [pid 5029] openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... rmdir resumed>) = 0 [pid 6947] <... close resumed>) = 0 [pid 6949] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] getdents64(3, [pid 5029] <... openat resumed>) = 3 [pid 6947] exit_group(0) = ? [pid 5029] newfstatat(3, "", [pid 6947] +++ exited with 0 +++ [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6947, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] <... umount2 resumed>) = 0 [pid 5029] getdents64(3, [pid 5031] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./317/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./317/binderfs" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./316" [pid 5029] <... unlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./318/file0", [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6948] <... write resumed>) = 2097152 [pid 5031] mkdir("./317", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(3, [pid 5031] <... mkdir resumed>) = 0 [pid 5030] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./318/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = 0 [pid 5032] unlink("./318/binderfs") = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6949] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6948] munmap(0x7ff0df171000, 138412032 [pid 5031] close(3 [pid 5030] newfstatat(4, "", [pid 5031] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./317/file0", [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6950 attached [pid 5032] <... umount2 resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6948] <... munmap resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 6950] set_robust_list(0x55555635e660, 24 [pid 5032] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 6950] <... set_robust_list resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(4, "", [pid 5032] newfstatat(AT_FDCWD, "./318/file0", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(4, [pid 5032] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6950] chdir("./317" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 6950] <... chdir resumed>) = 0 [pid 5030] close(4 [pid 6950] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6950] <... prctl resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] <... close resumed>) = 0 [pid 5029] close(4 [pid 6950] setpgid(0, 0 [pid 5032] newfstatat(4, "", [pid 5030] rmdir("./318/file0" [pid 5029] <... close resumed>) = 0 [pid 6950] <... setpgid resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6950 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] rmdir("./317/file0" [pid 6950] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(4, [pid 5030] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 6950] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... close resumed>) = 0 [pid 6948] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] getdents64(3, [pid 5030] rmdir("./318" [pid 6950] write(3, "1000", 4 [pid 6948] <... openat resumed>) = 4 [pid 5032] getdents64(4, [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6950] <... write resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6950] close(3 [pid 5032] close(4 [pid 5030] mkdir("./319", 0777 [pid 5029] close(3 [pid 6950] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6950] symlink("/dev/binderfs", "./binderfs" [pid 5032] rmdir("./318/file0" [pid 6950] <... symlink resumed>) = 0 [pid 6948] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] rmdir("./317" [pid 6950] memfd_create("syzkaller", 0 [pid 5032] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] mkdir("./318", 0777 [pid 5032] close(3 [pid 5029] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] rmdir("./318") = 0 [pid 5029] <... openat resumed>) = 3 [pid 6950] <... memfd_create resumed>) = 3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6950] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = 0 [pid 6950] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] mkdir("./319", 0777 [pid 5030] close(3 [pid 5029] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6951 attached [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6951] set_robust_list(0x55555635e660, 24 [pid 5032] <... openat resumed>) = 3 [pid 6951] <... set_robust_list resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6951 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6952 [pid 6951] chdir("./318" [pid 5032] <... ioctl resumed>) = 0 [pid 6951] <... chdir resumed>) = 0 [pid 5032] close(3 [pid 6951] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... close resumed>) = 0 [pid 6951] <... prctl resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6951] setpgid(0, 0./strace-static-x86_64: Process 6953 attached ) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6953 [pid 6953] set_robust_list(0x55555635e660, 24 [pid 6951] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6953] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 6952 attached [pid 6953] chdir("./319" [pid 6948] <... ioctl resumed>) = 0 [pid 6953] <... chdir resumed>) = 0 [pid 6952] set_robust_list(0x55555635e660, 24 [pid 6948] close(3 [pid 6953] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6952] <... set_robust_list resumed>) = 0 [pid 6948] <... close resumed>) = 0 [pid 6953] <... prctl resumed>) = 0 [pid 6952] chdir("./319" [pid 6951] <... openat resumed>) = 3 [pid 6949] <... write resumed>) = 2097152 [pid 6948] mkdir("./file0", 0777 [pid 6953] setpgid(0, 0 [pid 6952] <... chdir resumed>) = 0 [pid 6951] write(3, "1000", 4 [pid 6949] munmap(0x7ff0df171000, 138412032 [pid 6948] <... mkdir resumed>) = 0 [ 266.726754][ T6948] loop5: detected capacity change from 0 to 4096 [pid 6953] <... setpgid resumed>) = 0 [pid 6951] <... write resumed>) = 4 [pid 6953] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6951] close(3 [pid 6953] <... openat resumed>) = 3 [pid 6952] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6951] <... close resumed>) = 0 [pid 6948] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6953] write(3, "1000", 4 [pid 6951] symlink("/dev/binderfs", "./binderfs" [pid 6953] <... write resumed>) = 4 [pid 6952] <... prctl resumed>) = 0 [pid 6951] <... symlink resumed>) = 0 [pid 6949] <... munmap resumed>) = 0 [pid 6953] close(3) = 0 [pid 6953] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6951] memfd_create("syzkaller", 0 [pid 6953] memfd_create("syzkaller", 0) = 3 [pid 6953] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6952] setpgid(0, 0 [pid 6949] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6952] <... setpgid resumed>) = 0 [pid 6951] <... memfd_create resumed>) = 3 [pid 6949] <... openat resumed>) = 4 [pid 6949] ioctl(4, LOOP_SET_FD, 3 [pid 6952] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6951] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6952] <... openat resumed>) = 3 [pid 6951] <... mmap resumed>) = 0x7ff0df171000 [pid 6949] <... ioctl resumed>) = 0 [pid 6952] write(3, "1000", 4) = 4 [pid 6949] close(3 [pid 6952] close(3) = 0 [pid 6952] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6949] <... close resumed>) = 0 [pid 6949] mkdir("./file0", 0777 [pid 6952] memfd_create("syzkaller", 0 [pid 6949] <... mkdir resumed>) = 0 [ 266.792686][ T6948] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 266.824454][ T6949] loop4: detected capacity change from 0 to 4096 [pid 6949] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6950] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6952] <... memfd_create resumed>) = 3 [pid 6952] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 266.861813][ T6949] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6948] <... mount resumed>) = 0 [pid 6948] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6948] chdir("./file0") = 0 [pid 6948] ioctl(4, LOOP_CLR_FD [pid 6953] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6948] <... ioctl resumed>) = 0 [pid 6948] close(4) = 0 [pid 6948] exit_group(0) = ? [pid 6951] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6948] +++ exited with 0 +++ [pid 6949] <... mount resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6948, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 6949] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6952] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6949] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6950] <... write resumed>) = 2097152 [pid 5034] openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6949] chdir("./file0" [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6950] munmap(0x7ff0df171000, 138412032 [pid 5034] newfstatat(AT_FDCWD, "./310/binderfs", [pid 6950] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./310/binderfs" [pid 6949] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6949] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6949] <... ioctl resumed>) = 0 [pid 6949] close(4) = 0 [pid 6950] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6949] exit_group(0 [pid 5034] <... umount2 resumed>) = 0 [pid 6949] <... exit_group resumed>) = ? [pid 5034] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6950] ioctl(4, LOOP_SET_FD, 3 [pid 6949] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./310/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6953] <... write resumed>) = 2097152 [pid 5034] umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6949, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6951] <... write resumed>) = 2097152 [pid 6950] <... ioctl resumed>) = 0 [pid 5034] getdents64(4, [pid 5033] umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(4 [pid 5033] openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./310/file0") = 0 [pid 5033] <... openat resumed>) = 3 [pid 6950] close(3 [pid 5034] getdents64(3, [pid 5033] newfstatat(3, "", [pid 6950] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6950] mkdir("./file0", 0777 [pid 5034] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6950] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 6950] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] rmdir("./310") = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] mkdir("./311", 0777 [pid 5033] umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 6951] munmap(0x7ff0df171000, 138412032 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./311/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6952] <... write resumed>) = 2097152 [pid 6952] munmap(0x7ff0df171000, 138412032 [pid 5033] unlink("./311/binderfs" [pid 6953] munmap(0x7ff0df171000, 138412032 [pid 6952] <... munmap resumed>) = 0 [pid 6951] <... munmap resumed>) = 0 [pid 6952] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... openat resumed>) = 3 [pid 5033] <... unlink resumed>) = 0 [pid 6952] <... openat resumed>) = 4 [pid 5033] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6952] ioctl(4, LOOP_SET_FD, 3 [pid 6951] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6953] <... munmap resumed>) = 0 [pid 6951] <... openat resumed>) = 4 [ 267.020637][ T6950] loop2: detected capacity change from 0 to 4096 [ 267.043274][ T6950] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6951] ioctl(4, LOOP_SET_FD, 3 [pid 6952] <... ioctl resumed>) = 0 [pid 6953] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6953] ioctl(4, LOOP_SET_FD, 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6953] <... ioctl resumed>) = 0 [pid 6953] close(3 [pid 6952] close(3) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6952] mkdir("./file0", 0777) = 0 [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6954 attached [pid 6952] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6954 [pid 6954] set_robust_list(0x55555635e660, 24 [pid 6953] <... close resumed>) = 0 [pid 6953] mkdir("./file0", 0777 [pid 6951] <... ioctl resumed>) = 0 [pid 6951] close(3) = 0 [pid 6951] mkdir("./file0", 0777) = 0 [pid 6954] <... set_robust_list resumed>) = 0 [pid 6954] chdir("./311" [pid 6950] <... mount resumed>) = 0 [pid 6951] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6953] <... mkdir resumed>) = 0 [pid 6953] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 267.066012][ T6952] loop1: detected capacity change from 0 to 4096 [ 267.069690][ T6951] loop0: detected capacity change from 0 to 4096 [ 267.084470][ T6953] loop3: detected capacity change from 0 to 4096 [ 267.108811][ T6952] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6950] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6954] <... chdir resumed>) = 0 [pid 6950] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = 0 [pid 6954] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5033] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6954] setpgid(0, 0) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6954] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] newfstatat(AT_FDCWD, "./311/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6954] <... openat resumed>) = 3 [pid 5033] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6954] write(3, "1000", 4 [pid 6950] chdir("./file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6954] <... write resumed>) = 4 [pid 5033] openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6954] close(3) = 0 [pid 5033] <... openat resumed>) = 4 [pid 6954] symlink("/dev/binderfs", "./binderfs" [pid 6950] <... chdir resumed>) = 0 [pid 6950] ioctl(4, LOOP_CLR_FD [pid 6954] <... symlink resumed>) = 0 [pid 6950] <... ioctl resumed>) = 0 [pid 6950] close(4 [pid 6954] memfd_create("syzkaller", 0 [pid 6950] <... close resumed>) = 0 [pid 6950] exit_group(0) = ? [pid 6954] <... memfd_create resumed>) = 3 [pid 6950] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6950, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5031] umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(4, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(3, [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6954] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] close(4 [pid 5031] umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./311/file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6954] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./317/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./317/binderfs") = 0 [pid 5031] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 267.141780][ T6951] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 267.152051][ T6953] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] close(3) = 0 [pid 5033] rmdir("./311") = 0 [pid 5033] mkdir("./312", 0777) = 0 [pid 6951] <... mount resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 6951] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6951] <... openat resumed>) = 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6951] chdir("./file0") = 0 [pid 6951] ioctl(4, LOOP_CLR_FD) = 0 [pid 6951] close(4 [pid 5033] close(3 [pid 6951] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6951] exit_group(0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6955 [pid 6951] <... exit_group resumed>) = ? [pid 6953] <... mount resumed>) = 0 [pid 6952] <... mount resumed>) = 0 [pid 6951] +++ exited with 0 +++ [pid 5031] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6955 attached [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6951, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5029] umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 6953] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6953] <... openat resumed>) = 3 [pid 5029] umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6953] chdir("./file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6953] <... chdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./318/binderfs", [pid 6953] ioctl(4, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6953] <... ioctl resumed>) = 0 [pid 5029] unlink("./318/binderfs" [pid 6955] set_robust_list(0x55555635e660, 24 [pid 6953] close(4 [pid 6952] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... unlink resumed>) = 0 [pid 6955] <... set_robust_list resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./317/file0", [pid 6955] chdir("./312" [pid 6952] <... openat resumed>) = 3 [pid 5029] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6955] <... chdir resumed>) = 0 [pid 6955] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6952] chdir("./file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6955] <... prctl resumed>) = 0 [pid 6952] <... chdir resumed>) = 0 [pid 5031] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6955] setpgid(0, 0 [pid 6953] <... close resumed>) = 0 [pid 6952] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6955] <... setpgid resumed>) = 0 [pid 6953] exit_group(0 [pid 6952] <... ioctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6955] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... openat resumed>) = 4 [pid 6953] <... exit_group resumed>) = ? [pid 6952] close(4 [pid 6955] <... openat resumed>) = 3 [pid 6952] <... close resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 6955] write(3, "1000", 4 [pid 6953] +++ exited with 0 +++ [pid 6952] exit_group(0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6955] <... write resumed>) = 4 [pid 6954] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6952] <... exit_group resumed>) = ? [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./317/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./317") = 0 [pid 5031] mkdir("./318", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6953, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 6955] close(3 [pid 6952] +++ exited with 0 +++ [pid 5032] umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6956 ./strace-static-x86_64: Process 6956 attached [pid 6956] set_robust_list(0x55555635e660, 24 [pid 6955] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6956] <... set_robust_list resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6952, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5032] <... openat resumed>) = 3 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 6956] chdir("./318" [pid 6955] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... restart_syscall resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 6956] <... chdir resumed>) = 0 [pid 6955] <... symlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6956] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6955] memfd_create("syzkaller", 0 [pid 5032] getdents64(3, [pid 6956] <... prctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6956] setpgid(0, 0 [pid 5030] umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6956] <... setpgid resumed>) = 0 [pid 5032] umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6956] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6956] <... openat resumed>) = 3 [pid 6955] <... memfd_create resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./319/binderfs", [pid 5030] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 6956] write(3, "1000", 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 6956] <... write resumed>) = 4 [pid 5032] unlink("./319/binderfs" [pid 5029] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6956] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6956] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 6955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6956] symlink("/dev/binderfs", "./binderfs" [pid 6955] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6956] <... symlink resumed>) = 0 [pid 5030] umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./318/file0", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./319/binderfs", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./319/binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./318/file0" [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6956] memfd_create("syzkaller", 0 [pid 5029] getdents64(3, [pid 5032] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6956] <... memfd_create resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 6956] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] rmdir("./318") = 0 [pid 6956] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] mkdir("./319", 0777 [pid 6954] <... write resumed>) = 2097152 [pid 5029] <... mkdir resumed>) = 0 [pid 6954] munmap(0x7ff0df171000, 138412032) = 0 [pid 6954] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6954] ioctl(4, LOOP_SET_FD, 3 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6955] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6954] <... ioctl resumed>) = 0 [ 267.379228][ T6954] loop5: detected capacity change from 0 to 4096 [pid 6954] close(3) = 0 [pid 6954] mkdir("./file0", 0777) = 0 [pid 6954] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./319/file0", [pid 5030] newfstatat(AT_FDCWD, "./319/file0", [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6957 attached [pid 6956] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6957] set_robust_list(0x55555635e660, 24 [pid 5032] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6957] <... set_robust_list resumed>) = 0 [pid 5030] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6957 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6957] chdir("./319" [pid 5032] openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6957] <... chdir resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(4, "", [pid 6957] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6957] setpgid(0, 0 [pid 5032] getdents64(4, [pid 5030] newfstatat(4, "", [pid 6957] <... setpgid resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6957] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(4, [pid 5030] getdents64(4, [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6957] <... openat resumed>) = 3 [pid 5032] close(4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6957] write(3, "1000", 4 [pid 5032] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 6957] <... write resumed>) = 4 [pid 5032] rmdir("./319/file0" [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6957] close(3) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] close(4 [ 267.424496][ T6954] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6957] symlink("/dev/binderfs", "./binderfs" [pid 5032] getdents64(3, [pid 5030] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] rmdir("./319/file0" [pid 6957] <... symlink resumed>) = 0 [pid 5032] close(3) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5032] rmdir("./319") = 0 [pid 5030] getdents64(3, [pid 5032] mkdir("./320", 0777 [pid 6957] memfd_create("syzkaller", 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] close(3 [pid 6957] <... memfd_create resumed>) = 3 [pid 6954] <... mount resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 6955] <... write resumed>) = 2097152 [pid 6954] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6954] chdir("./file0") = 0 [pid 6954] ioctl(4, LOOP_CLR_FD) = 0 [pid 6954] close(4) = 0 [pid 6954] exit_group(0) = ? [pid 6957] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6956] <... write resumed>) = 2097152 [pid 6955] munmap(0x7ff0df171000, 138412032 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] rmdir("./319" [pid 6957] <... mmap resumed>) = 0x7ff0df171000 [pid 6956] munmap(0x7ff0df171000, 138412032 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6956] <... munmap resumed>) = 0 [pid 6955] <... munmap resumed>) = 0 [pid 5032] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 6956] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6955] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 5030] mkdir("./320", 0777 [pid 6954] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6954, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] <... mkdir resumed>) = 0 [pid 6955] <... openat resumed>) = 4 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6955] ioctl(4, LOOP_SET_FD, 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... restart_syscall resumed>) = 0 [pid 5034] umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./311/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./311/binderfs") = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6958 attached [pid 6956] <... openat resumed>) = 4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6958] set_robust_list(0x55555635e660, 24) = 0 [pid 6958] chdir("./320") = 0 [pid 6956] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6958] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6958] setpgid(0, 0 [pid 6956] <... ioctl resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6958 [pid 5030] close(3 [pid 6958] <... setpgid resumed>) = 0 [pid 6958] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6958] write(3, "1000", 4) = 4 [pid 6958] close(3) = 0 [pid 6958] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6958] memfd_create("syzkaller", 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6956] close(3 [pid 6955] <... ioctl resumed>) = 0 [pid 6958] <... memfd_create resumed>) = 3 [pid 6955] close(3) = 0 [pid 6956] <... close resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6959 [pid 6955] mkdir("./file0", 0777 [pid 6957] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6956] mkdir("./file0", 0777./strace-static-x86_64: Process 6959 attached [pid 6958] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6959] set_robust_list(0x55555635e660, 24 [pid 6955] <... mkdir resumed>) = 0 [pid 6959] <... set_robust_list resumed>) = 0 [pid 6958] <... mmap resumed>) = 0x7ff0df171000 [pid 6956] <... mkdir resumed>) = 0 [pid 6959] chdir("./320" [ 267.542354][ T6955] loop4: detected capacity change from 0 to 4096 [ 267.555819][ T6956] loop2: detected capacity change from 0 to 4096 [pid 6955] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6959] <... chdir resumed>) = 0 [pid 6956] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6959] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6959] setpgid(0, 0) = 0 [pid 6959] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... umount2 resumed>) = 0 [pid 6959] write(3, "1000", 4 [pid 5034] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6959] <... write resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6959] close(3 [pid 5034] newfstatat(AT_FDCWD, "./311/file0", [pid 6959] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6959] symlink("/dev/binderfs", "./binderfs" [pid 5034] umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6959] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6959] memfd_create("syzkaller", 0 [pid 5034] getdents64(4, [pid 6959] <... memfd_create resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6959] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(4, [pid 6959] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./311/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 6957] <... write resumed>) = 2097152 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./311") = 0 [pid 5034] mkdir("./312", 0777 [pid 6957] munmap(0x7ff0df171000, 138412032 [pid 5034] <... mkdir resumed>) = 0 [ 267.596368][ T6955] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 267.606856][ T6956] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6958] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6957] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6957] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6957] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6955] <... mount resumed>) = 0 [pid 6959] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152./strace-static-x86_64: Process 6960 attached [pid 6955] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6960 [pid 6960] set_robust_list(0x55555635e660, 24 [pid 6955] <... openat resumed>) = 3 [pid 6955] chdir("./file0") = 0 [pid 6955] ioctl(4, LOOP_CLR_FD) = 0 [pid 6960] <... set_robust_list resumed>) = 0 [pid 6955] close(4 [pid 6960] chdir("./312" [pid 6955] <... close resumed>) = 0 [pid 6955] exit_group(0) = ? [pid 6955] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6955, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6960] <... chdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6960] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] newfstatat(3, "", [pid 6960] <... prctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 6960] setpgid(0, 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6960] <... setpgid resumed>) = 0 [pid 6960] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6960] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6960] write(3, "1000", 4 [pid 5033] newfstatat(AT_FDCWD, "./312/binderfs", [pid 6957] <... ioctl resumed>) = 0 [pid 6960] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6960] close(3 [pid 5033] unlink("./312/binderfs" [pid 6960] <... close resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6960] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6960] memfd_create("syzkaller", 0 [pid 6957] close(3) = 0 [pid 6957] mkdir("./file0", 0777) = 0 [pid 6960] <... memfd_create resumed>) = 3 [pid 6960] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 267.677519][ T6957] loop0: detected capacity change from 0 to 4096 [pid 6957] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = 0 [pid 6958] <... write resumed>) = 2097152 [pid 6959] <... write resumed>) = 2097152 [pid 6958] munmap(0x7ff0df171000, 138412032 [pid 6959] munmap(0x7ff0df171000, 138412032 [pid 5033] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./312/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 6958] <... munmap resumed>) = 0 [pid 6956] <... mount resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 6956] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6956] <... openat resumed>) = 3 [pid 5033] close(4) = 0 [pid 5033] rmdir("./312/file0" [pid 6956] chdir("./file0" [pid 5033] <... rmdir resumed>) = 0 [pid 6956] <... chdir resumed>) = 0 [pid 6956] ioctl(4, LOOP_CLR_FD) = 0 [pid 6956] close(4) = 0 [pid 6956] exit_group(0 [pid 6958] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6956] <... exit_group resumed>) = ? [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./312") = 0 [pid 6958] <... openat resumed>) = 4 [pid 5033] mkdir("./313", 0777 [pid 6958] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... mkdir resumed>) = 0 [ 267.756659][ T6957] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6959] <... munmap resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6956] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6956, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5031] umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6959] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] close(3 [pid 5031] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6959] <... openat resumed>) = 4 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6959] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(3, ./strace-static-x86_64: Process 6961 attached 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6960] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./318/binderfs", [pid 6961] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6961 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6961] <... set_robust_list resumed>) = 0 [pid 5031] unlink("./318/binderfs" [pid 6961] chdir("./313" [pid 5031] <... unlink resumed>) = 0 [pid 6961] <... chdir resumed>) = 0 [pid 5031] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6961] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6958] <... ioctl resumed>) = 0 [pid 6961] setpgid(0, 0 [pid 6958] close(3 [pid 6961] <... setpgid resumed>) = 0 [pid 6958] <... close resumed>) = 0 [pid 6958] mkdir("./file0", 0777 [pid 6959] <... ioctl resumed>) = 0 [pid 6961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6959] close(3 [pid 6958] <... mkdir resumed>) = 0 [pid 6961] <... openat resumed>) = 3 [pid 6961] write(3, "1000", 4) = 4 [pid 6961] close(3) = 0 [pid 6961] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6958] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6961] memfd_create("syzkaller", 0 [ 267.808484][ T6958] loop3: detected capacity change from 0 to 4096 [ 267.827341][ T6959] loop1: detected capacity change from 0 to 4096 [pid 5031] newfstatat(AT_FDCWD, "./318/file0", [pid 6961] <... memfd_create resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6961] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6959] <... close resumed>) = 0 [pid 5031] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6957] <... mount resumed>) = 0 [pid 6960] <... write resumed>) = 2097152 [pid 6959] mkdir("./file0", 0777 [pid 6957] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6957] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 4 [pid 6959] <... mkdir resumed>) = 0 [pid 6957] chdir("./file0" [pid 5031] newfstatat(4, "", [pid 6957] <... chdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6957] ioctl(4, LOOP_CLR_FD [pid 5031] getdents64(4, [pid 6957] <... ioctl resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6959] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6957] close(4 [pid 5031] getdents64(4, [pid 6960] munmap(0x7ff0df171000, 138412032 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [ 267.872492][ T6958] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6960] <... munmap resumed>) = 0 [pid 6960] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6960] ioctl(4, LOOP_SET_FD, 3 [pid 6957] <... close resumed>) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./318/file0" [pid 6957] exit_group(0) = ? [pid 5031] <... rmdir resumed>) = 0 [pid 6957] +++ exited with 0 +++ [pid 5031] getdents64(3, [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6957, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 6958] <... mount resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6958] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5031] rmdir("./318" [pid 5029] umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6958] chdir("./file0") = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6958] ioctl(4, LOOP_CLR_FD [pid 5031] <... rmdir resumed>) = 0 [pid 6958] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6958] close(4 [pid 5031] mkdir("./319", 0777 [pid 6958] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6958] exit_group(0 [pid 5031] <... mkdir resumed>) = 0 [pid 6960] <... ioctl resumed>) = 0 [pid 6958] <... exit_group resumed>) = ? [pid 5029] newfstatat(3, "", [pid 6960] close(3 [pid 6958] +++ exited with 0 +++ [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6960] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6958, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6960] mkdir("./file0", 0777 [pid 6961] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6960] <... mkdir resumed>) = 0 [pid 5029] getdents64(3, [pid 6960] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [ 267.912787][ T6959] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 267.920972][ T6960] loop5: detected capacity change from 0 to 4096 [pid 5032] umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5029] umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] newfstatat(AT_FDCWD, "./319/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./319/binderfs") = 0 [pid 5031] close(3 [pid 5029] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6962 attached , child_tidptr=0x55555635e650) = 6962 [pid 6962] set_robust_list(0x55555635e660, 24 [pid 5032] newfstatat(3, "", [pid 6962] <... set_robust_list resumed>) = 0 [pid 6962] chdir("./319" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6962] <... chdir resumed>) = 0 [pid 6962] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] getdents64(3, [pid 6962] <... prctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6962] setpgid(0, 0 [pid 6959] <... mount resumed>) = 0 [pid 5032] umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6962] <... setpgid resumed>) = 0 [pid 6962] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = 0 [pid 6962] <... openat resumed>) = 3 [pid 6959] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./320/binderfs", [ 267.974953][ T6960] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6959] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./319/file0", [pid 6962] write(3, "1000", 4 [pid 6959] chdir("./file0" [pid 5032] unlink("./320/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6959] <... chdir resumed>) = 0 [pid 6962] <... write resumed>) = 4 [pid 6961] <... write resumed>) = 2097152 [pid 6960] <... mount resumed>) = 0 [pid 6959] ioctl(4, LOOP_CLR_FD [pid 5032] <... unlink resumed>) = 0 [pid 5029] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6962] close(3 [pid 6960] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6959] <... ioctl resumed>) = 0 [pid 5032] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6959] close(4 [pid 5029] openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6959] <... close resumed>) = 0 [pid 6962] <... close resumed>) = 0 [pid 6960] <... openat resumed>) = 3 [pid 6959] exit_group(0 [pid 5029] <... openat resumed>) = 4 [pid 6962] symlink("/dev/binderfs", "./binderfs" [pid 6960] chdir("./file0" [pid 6959] <... exit_group resumed>) = ? [pid 6962] <... symlink resumed>) = 0 [pid 6960] <... chdir resumed>) = 0 [pid 6962] memfd_create("syzkaller", 0 [pid 6960] ioctl(4, LOOP_CLR_FD [pid 6959] +++ exited with 0 +++ [pid 5029] newfstatat(4, "", [pid 6960] <... ioctl resumed>) = 0 [pid 6960] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6961] munmap(0x7ff0df171000, 138412032 [pid 6960] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6959, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 6962] <... memfd_create resumed>) = 3 [pid 6961] <... munmap resumed>) = 0 [pid 6960] exit_group(0 [pid 5029] getdents64(4, [pid 5032] <... umount2 resumed>) = 0 [pid 5030] umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5030] openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6962] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6960] <... exit_group resumed>) = ? [pid 5030] <... openat resumed>) = 3 [pid 5029] close(4 [pid 6962] <... mmap resumed>) = 0x7ff0df171000 [pid 6960] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6960, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5030] newfstatat(3, "", [pid 5029] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./320/file0", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] rmdir("./319/file0" [pid 5034] umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(3, [pid 5034] openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] getdents64(3, [pid 5034] newfstatat(3, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6961] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6961] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... openat resumed>) = 4 [pid 5030] newfstatat(AT_FDCWD, "./320/binderfs", [pid 5029] close(3 [pid 6961] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5029] rmdir("./319" [pid 5030] unlink("./320/binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] mkdir("./320", 0777 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] newfstatat(AT_FDCWD, "./312/binderfs", [pid 5032] getdents64(4, [pid 5029] <... mkdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./312/binderfs") = 0 [pid 5034] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] close(4 [pid 5029] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5032] rmdir("./320/file0" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6961] <... ioctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 6961] close(3 [pid 5032] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 6961] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6961] mkdir("./file0", 0777./strace-static-x86_64: Process 6963 attached ) = 0 [pid 5032] close(3) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6963 [pid 6963] set_robust_list(0x55555635e660, 24 [pid 5032] rmdir("./320" [pid 6963] <... set_robust_list resumed>) = 0 [pid 6961] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6963] chdir("./320" [pid 5032] <... rmdir resumed>) = 0 [pid 6963] <... chdir resumed>) = 0 [pid 6962] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6963] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 268.087450][ T6961] loop4: detected capacity change from 0 to 4096 [pid 6963] setpgid(0, 0 [pid 5032] mkdir("./321", 0777 [pid 6963] <... setpgid resumed>) = 0 [pid 6963] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6963] write(3, "1000", 4 [pid 5032] <... mkdir resumed>) = 0 [pid 6963] <... write resumed>) = 4 [pid 6963] close(3) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6963] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 6963] <... symlink resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6963] memfd_create("syzkaller", 0 [pid 5032] <... close resumed>) = 0 [pid 5030] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6964 attached [pid 5030] newfstatat(AT_FDCWD, "./320/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 268.144810][ T6961] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6964] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6964 [pid 5030] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6964] <... set_robust_list resumed>) = 0 [pid 6963] <... memfd_create resumed>) = 3 [pid 6964] chdir("./321" [pid 6963] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6964] <... chdir resumed>) = 0 [pid 6963] <... mmap resumed>) = 0x7ff0df171000 [pid 6964] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6964] <... prctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6964] setpgid(0, 0 [pid 6961] <... mount resumed>) = 0 [pid 5034] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./312/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6964] <... setpgid resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, [pid 6964] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] newfstatat(4, "", [pid 5030] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6961] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] getdents64(4, [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6964] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] close(4 [pid 6961] <... openat resumed>) = 3 [pid 5034] getdents64(4, [pid 6961] chdir("./file0" [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6964] write(3, "1000", 4 [pid 6962] <... write resumed>) = 2097152 [pid 6961] <... chdir resumed>) = 0 [pid 5034] close(4 [pid 5030] <... close resumed>) = 0 [pid 6964] <... write resumed>) = 4 [pid 6962] munmap(0x7ff0df171000, 138412032 [pid 6961] ioctl(4, LOOP_CLR_FD [pid 5034] <... close resumed>) = 0 [pid 6964] close(3 [pid 6962] <... munmap resumed>) = 0 [pid 5030] rmdir("./320/file0" [pid 5034] rmdir("./312/file0") = 0 [pid 6961] <... ioctl resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 6961] close(4 [pid 5034] <... close resumed>) = 0 [pid 6964] <... close resumed>) = 0 [pid 6961] <... close resumed>) = 0 [pid 5034] rmdir("./312" [pid 5030] <... rmdir resumed>) = 0 [pid 6964] symlink("/dev/binderfs", "./binderfs" [pid 6961] exit_group(0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 6964] <... symlink resumed>) = 0 [pid 6962] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6961] <... exit_group resumed>) = ? [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 6962] <... openat resumed>) = 4 [pid 6962] ioctl(4, LOOP_SET_FD, 3 [pid 6964] memfd_create("syzkaller", 0 [pid 6961] +++ exited with 0 +++ [pid 5034] mkdir("./313", 0777 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./320" [pid 5034] <... mkdir resumed>) = 0 [pid 6964] <... memfd_create resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6961, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5030] <... rmdir resumed>) = 0 [pid 6964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] mkdir("./321", 0777 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6964] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... openat resumed>) = 3 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6963] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6962] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 5033] openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6964] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6962] close(3 [pid 5034] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(3./strace-static-x86_64: Process 6965 attached [pid 5033] getdents64(3, [pid 6965] set_robust_list(0x55555635e660, 24 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 6965] <... set_robust_list resumed>) = 0 [pid 6962] <... close resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6965 [pid 5033] umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6965] chdir("./313" [pid 6962] mkdir("./file0", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6965] <... chdir resumed>) = 0 [pid 6962] <... mkdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./313/binderfs", [pid 6965] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6962] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./313/binderfs" [pid 6965] <... prctl resumed>) = 0 [ 268.276481][ T6962] loop2: detected capacity change from 0 to 4096 [pid 5033] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 6966 attached [pid 6965] setpgid(0, 0 [pid 5033] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6966 [pid 6966] set_robust_list(0x55555635e660, 24 [pid 6965] <... setpgid resumed>) = 0 [pid 6963] <... write resumed>) = 2097152 [pid 6966] <... set_robust_list resumed>) = 0 [pid 6965] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6965] write(3, "1000", 4) = 4 [pid 6965] close(3 [pid 6966] chdir("./321" [pid 6965] <... close resumed>) = 0 [pid 6963] munmap(0x7ff0df171000, 138412032 [pid 6965] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6963] <... munmap resumed>) = 0 [pid 6965] memfd_create("syzkaller", 0 [pid 6966] <... chdir resumed>) = 0 [pid 6966] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6965] <... memfd_create resumed>) = 3 [pid 6963] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6966] setpgid(0, 0 [pid 6965] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6963] <... openat resumed>) = 4 [pid 6966] <... setpgid resumed>) = 0 [pid 6965] <... mmap resumed>) = 0x7ff0df171000 [ 268.333656][ T6962] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 6963] ioctl(4, LOOP_SET_FD, 3 [pid 6966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6966] write(3, "1000", 4) = 4 [pid 6966] close(3) = 0 [pid 6966] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6964] <... write resumed>) = 2097152 [pid 6963] <... ioctl resumed>) = 0 [pid 6963] close(3 [pid 6962] <... mount resumed>) = 0 [pid 6963] <... close resumed>) = 0 [pid 6964] munmap(0x7ff0df171000, 138412032 [pid 6963] mkdir("./file0", 0777 [pid 6962] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = 0 [pid 6966] memfd_create("syzkaller", 0 [pid 6962] <... openat resumed>) = 3 [pid 6966] <... memfd_create resumed>) = 3 [pid 6963] <... mkdir resumed>) = 0 [pid 6962] chdir("./file0") = 0 [pid 6966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6963] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6962] ioctl(4, LOOP_CLR_FD) = 0 [pid 6966] <... mmap resumed>) = 0x7ff0df171000 [pid 6964] <... munmap resumed>) = 0 [pid 6962] close(4) = 0 [pid 6962] exit_group(0) = ? [pid 6962] +++ exited with 0 +++ [pid 6964] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 268.374044][ T6963] loop0: detected capacity change from 0 to 4096 [pid 6964] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./313/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./313/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./313") = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6962, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5033] mkdir("./314", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6964] <... ioctl resumed>) = 0 [pid 6964] close(3 [pid 5031] umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6964] <... close resumed>) = 0 [pid 6964] mkdir("./file0", 0777) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 6964] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", ./strace-static-x86_64: Process 6967 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6967] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6967 [pid 5031] getdents64(3, [pid 6967] <... set_robust_list resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6967] chdir("./314" [pid 5031] umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6967] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./319/binderfs", [pid 6967] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6967] setpgid(0, 0) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./319/binderfs" [pid 6967] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6965] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6967] write(3, "1000", 4) = 4 [pid 6967] close(3) = 0 [pid 6967] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6967] memfd_create("syzkaller", 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6967] <... memfd_create resumed>) = 3 [pid 6967] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 268.432338][ T6964] loop3: detected capacity change from 0 to 4096 [ 268.439078][ T6963] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 268.461586][ T6964] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] <... umount2 resumed>) = 0 [pid 6963] <... mount resumed>) = 0 [pid 5031] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6963] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6963] chdir("./file0" [pid 5031] newfstatat(AT_FDCWD, "./319/file0", [pid 6963] <... chdir resumed>) = 0 [pid 6963] ioctl(4, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6963] <... ioctl resumed>) = 0 [pid 6963] close(4 [pid 6966] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6963] <... close resumed>) = 0 [pid 5031] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6963] exit_group(0) = ? [pid 6964] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6964] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6963] +++ exited with 0 +++ [pid 5031] openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6963, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5031] newfstatat(4, "", [pid 6964] <... openat resumed>) = 3 [pid 6964] chdir("./file0") = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6964] ioctl(4, LOOP_CLR_FD [pid 5031] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6965] <... write resumed>) = 2097152 [pid 6964] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6964] close(4) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6965] munmap(0x7ff0df171000, 138412032 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] newfstatat(3, "", [pid 6965] <... munmap resumed>) = 0 [pid 6964] exit_group(0 [pid 5031] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6965] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 6965] <... openat resumed>) = 4 [pid 5031] close(4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6965] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... close resumed>) = 0 [pid 5029] umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./319/file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6964] <... exit_group resumed>) = ? [pid 5031] <... rmdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./320/binderfs", [pid 5031] getdents64(3, [pid 6964] +++ exited with 0 +++ [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6964, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5032] umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./320/binderfs" [pid 5032] newfstatat(AT_FDCWD, "./321/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5032] unlink("./321/binderfs" [pid 5029] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6967] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] close(3 [pid 6965] <... ioctl resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./319" [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6966] <... write resumed>) = 2097152 [pid 6965] close(3 [pid 5031] mkdir("./320", 0777 [pid 6965] <... close resumed>) = 0 [ 268.586417][ T6965] loop5: detected capacity change from 0 to 4096 [pid 6965] mkdir("./file0", 0777 [pid 5031] <... mkdir resumed>) = 0 [pid 6966] munmap(0x7ff0df171000, 138412032) = 0 [pid 6965] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6966] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6965] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6966] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./321/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(4 [pid 5029] newfstatat(AT_FDCWD, "./320/file0", [pid 5032] <... close resumed>) = 0 [pid 5031] close(3 [pid 5032] rmdir("./321/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6966] <... ioctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6966] close(3 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6966] <... close resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5032] close(3 [pid 5029] newfstatat(4, "", [pid 5032] <... close resumed>) = 0 [pid 6966] mkdir("./file0", 0777 [pid 5032] rmdir("./321" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6966] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6967] <... write resumed>) = 2097152 [pid 6966] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] getdents64(4, ./strace-static-x86_64: Process 6968 attached [pid 6967] munmap(0x7ff0df171000, 138412032 [pid 5032] mkdir("./322", 0777 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6968 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6968] set_robust_list(0x55555635e660, 24 [pid 6967] <... munmap resumed>) = 0 [pid 5029] getdents64(4, [pid 6965] <... mount resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6968] <... set_robust_list resumed>) = 0 [pid 6965] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] close(4 [pid 6968] chdir("./320" [pid 6965] <... openat resumed>) = 3 [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6968] <... chdir resumed>) = 0 [pid 6965] chdir("./file0" [pid 5029] rmdir("./320/file0" [pid 6965] <... chdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6968] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6965] ioctl(4, LOOP_CLR_FD [pid 5032] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 6968] <... prctl resumed>) = 0 [pid 6965] <... ioctl resumed>) = 0 [pid 5029] getdents64(3, [pid 6968] setpgid(0, 0 [pid 6965] close(4 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6968] <... setpgid resumed>) = 0 [pid 6965] <... close resumed>) = 0 [pid 6965] exit_group(0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6968] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6965] <... exit_group resumed>) = ? [pid 5032] close(3 [pid 5029] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] rmdir("./320" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6967] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... rmdir resumed>) = 0 [pid 6967] <... openat resumed>) = 4 ./strace-static-x86_64: Process 6969 attached [ 268.661004][ T6966] loop1: detected capacity change from 0 to 4096 [ 268.668211][ T6965] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 268.701022][ T6966] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5029] mkdir("./321", 0777 [pid 6967] ioctl(4, LOOP_SET_FD, 3 [pid 6969] set_robust_list(0x55555635e660, 24 [pid 6968] <... openat resumed>) = 3 [pid 6965] +++ exited with 0 +++ [pid 5029] <... mkdir resumed>) = 0 [pid 6969] <... set_robust_list resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6969] chdir("./322" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6969 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6965, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 6969] <... chdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6969] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6968] write(3, "1000", 4 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6969] <... prctl resumed>) = 0 [pid 6968] <... write resumed>) = 4 [pid 6969] setpgid(0, 0 [pid 6968] close(3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6969] <... setpgid resumed>) = 0 [pid 6968] <... close resumed>) = 0 [pid 5034] umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6969] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6968] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 6968] <... symlink resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6969] <... openat resumed>) = 3 [pid 6968] memfd_create("syzkaller", 0 [pid 5034] newfstatat(3, "", ./strace-static-x86_64: Process 6970 attached [pid 6969] write(3, "1000", 4 [pid 6968] <... memfd_create resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6970] set_robust_list(0x55555635e660, 24 [pid 6969] <... write resumed>) = 4 [pid 6968] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(3, [pid 6969] close(3 [pid 6968] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6970 [pid 6969] <... close resumed>) = 0 [pid 5034] umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6970] <... set_robust_list resumed>) = 0 [pid 6969] symlink("/dev/binderfs", "./binderfs" [pid 6967] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6969] <... symlink resumed>) = 0 [pid 6967] close(3 [pid 5034] newfstatat(AT_FDCWD, "./313/binderfs", [pid 6970] chdir("./321" [pid 6969] memfd_create("syzkaller", 0 [pid 6967] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6967] mkdir("./file0", 0777 [pid 6966] <... mount resumed>) = 0 [pid 5034] unlink("./313/binderfs" [pid 6967] <... mkdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6970] <... chdir resumed>) = 0 [pid 6969] <... memfd_create resumed>) = 3 [pid 6966] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [ 268.727703][ T6967] loop4: detected capacity change from 0 to 4096 [pid 5034] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6970] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6969] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6966] <... openat resumed>) = 3 [pid 6970] <... prctl resumed>) = 0 [pid 6969] <... mmap resumed>) = 0x7ff0df171000 [pid 6970] setpgid(0, 0 [pid 6967] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6970] <... setpgid resumed>) = 0 [pid 6970] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6966] chdir("./file0") = 0 [pid 6966] ioctl(4, LOOP_CLR_FD) = 0 [pid 6966] close(4) = 0 [pid 6966] exit_group(0) = ? [pid 6966] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6966, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 6970] <... openat resumed>) = 3 [pid 6970] write(3, "1000", 4) = 4 [pid 6970] close(3) = 0 [pid 6970] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./313/file0", [pid 5030] umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6970] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] <... openat resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 5030] newfstatat(3, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6970] <... memfd_create resumed>) = 3 [pid 5034] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6970] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(3, [pid 6970] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] close(4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... close resumed>) = 0 [pid 5030] umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] rmdir("./313/file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [ 268.784281][ T6967] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5030] newfstatat(AT_FDCWD, "./321/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./321/binderfs" [pid 6967] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./313") = 0 [pid 5034] mkdir("./314", 0777 [pid 6967] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] <... mkdir resumed>) = 0 [pid 6967] chdir("./file0") = 0 [pid 6967] ioctl(4, LOOP_CLR_FD) = 0 [pid 6967] close(4) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6967] exit_group(0 [pid 6968] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6967] <... exit_group resumed>) = ? [pid 5034] <... openat resumed>) = 3 [pid 5030] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6967] +++ exited with 0 +++ [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6967, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5034] <... ioctl resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5034] close(3 [pid 5033] umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, ./strace-static-x86_64: Process 6971 attached 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6971] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6971 [pid 6971] <... set_robust_list resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6971] chdir("./314" [pid 5033] newfstatat(AT_FDCWD, "./314/binderfs", [pid 6971] <... chdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6971] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] unlink("./314/binderfs" [pid 6971] <... prctl resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6971] setpgid(0, 0 [pid 5033] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6971] <... setpgid resumed>) = 0 [pid 6971] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6971] write(3, "1000", 4) = 4 [pid 6971] close(3) = 0 [pid 6971] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6971] memfd_create("syzkaller", 0) = 3 [pid 6971] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6969] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6968] <... write resumed>) = 2097152 [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./321/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6970] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6968] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 6968] <... munmap resumed>) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./321/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./321") = 0 [pid 5030] mkdir("./322", 0777) = 0 [pid 6969] <... write resumed>) = 2097152 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6968] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... umount2 resumed>) = 0 [pid 6968] <... openat resumed>) = 4 [pid 6968] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 6972 attached [pid 6972] set_robust_list(0x55555635e660, 24 [pid 6971] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6972 [pid 6972] <... set_robust_list resumed>) = 0 [pid 6972] chdir("./322") = 0 [pid 6972] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6972] setpgid(0, 0) = 0 [pid 6972] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6969] munmap(0x7ff0df171000, 138412032 [pid 6972] <... openat resumed>) = 3 [pid 6972] write(3, "1000", 4) = 4 [pid 6972] close(3 [pid 6970] <... write resumed>) = 2097152 [pid 6969] <... munmap resumed>) = 0 [pid 6968] <... ioctl resumed>) = 0 [pid 5033] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6970] munmap(0x7ff0df171000, 138412032 [pid 6969] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6968] close(3) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6969] <... openat resumed>) = 4 [pid 6968] mkdir("./file0", 0777 [pid 5033] newfstatat(AT_FDCWD, "./314/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 269.015226][ T6968] loop2: detected capacity change from 0 to 4096 [pid 6969] ioctl(4, LOOP_SET_FD, 3 [pid 5033] openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6972] <... close resumed>) = 0 [pid 6971] <... write resumed>) = 2097152 [pid 6970] <... munmap resumed>) = 0 [pid 6968] <... mkdir resumed>) = 0 [pid 6972] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6972] memfd_create("syzkaller", 0 [pid 5033] <... openat resumed>) = 4 [pid 6972] <... memfd_create resumed>) = 3 [pid 6968] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] newfstatat(4, "", [pid 6972] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6970] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6969] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6970] <... openat resumed>) = 4 [pid 6969] close(3 [pid 5033] getdents64(4, [pid 6969] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6969] mkdir("./file0", 0777 [pid 5033] getdents64(4, [pid 6970] ioctl(4, LOOP_SET_FD, 3 [pid 6971] munmap(0x7ff0df171000, 138412032) = 0 [pid 6970] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6971] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6969] <... mkdir resumed>) = 0 [pid 5033] close(4 [pid 6971] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... close resumed>) = 0 [pid 6971] <... ioctl resumed>) = 0 [pid 5033] rmdir("./314/file0") = 0 [pid 5033] getdents64(3, [pid 6970] close(3 [pid 6969] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [ 269.057570][ T6969] loop3: detected capacity change from 0 to 4096 [ 269.071739][ T6968] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 269.085920][ T6970] loop0: detected capacity change from 0 to 4096 [ 269.095663][ T6971] loop5: detected capacity change from 0 to 4096 [pid 5033] rmdir("./314" [pid 6971] close(3) = 0 [pid 6971] mkdir("./file0", 0777) = 0 [pid 6971] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... rmdir resumed>) = 0 [pid 6970] <... close resumed>) = 0 [pid 5033] mkdir("./315", 0777 [pid 6970] mkdir("./file0", 0777 [pid 6968] <... mount resumed>) = 0 [pid 6970] <... mkdir resumed>) = 0 [pid 6968] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 6970] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6968] <... openat resumed>) = 3 [pid 6972] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6968] chdir("./file0") = 0 [pid 6968] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6968] close(4) = 0 [pid 6968] exit_group(0) = ? [pid 6968] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6968, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5031] openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 6973 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6973 [pid 6973] set_robust_list(0x55555635e660, 24 [pid 5031] getdents64(3, [pid 6973] <... set_robust_list resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6973] chdir("./315") = 0 [pid 5031] umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6973] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6973] <... prctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./320/binderfs", [pid 6973] setpgid(0, 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6973] <... setpgid resumed>) = 0 [pid 6973] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] unlink("./320/binderfs" [pid 6973] <... openat resumed>) = 3 [pid 6973] write(3, "1000", 4 [pid 5031] <... unlink resumed>) = 0 [pid 6973] <... write resumed>) = 4 [pid 5031] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6973] close(3) = 0 [ 269.115115][ T6969] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 269.126617][ T6971] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 269.138830][ T6970] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6973] symlink("/dev/binderfs", "./binderfs" [pid 6970] <... mount resumed>) = 0 [pid 6969] <... mount resumed>) = 0 [pid 6973] <... symlink resumed>) = 0 [pid 6971] <... mount resumed>) = 0 [pid 6969] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6969] chdir("./file0") = 0 [pid 6971] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6969] ioctl(4, LOOP_CLR_FD) = 0 [pid 6969] close(4) = 0 [pid 6970] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6969] exit_group(0 [pid 5031] <... umount2 resumed>) = 0 [pid 6973] memfd_create("syzkaller", 0 [pid 6970] <... openat resumed>) = 3 [pid 6970] chdir("./file0" [pid 6969] <... exit_group resumed>) = ? [pid 6970] <... chdir resumed>) = 0 [pid 6973] <... memfd_create resumed>) = 3 [pid 6971] <... openat resumed>) = 3 [pid 6970] ioctl(4, LOOP_CLR_FD [pid 6969] +++ exited with 0 +++ [pid 5031] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6973] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6971] chdir("./file0" [pid 6970] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6973] <... mmap resumed>) = 0x7ff0df171000 [pid 6971] <... chdir resumed>) = 0 [pid 6970] close(4 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6969, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6971] ioctl(4, LOOP_CLR_FD [pid 5032] umount2("./322", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6971] <... ioctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./320/file0", [pid 6971] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6971] <... close resumed>) = 0 [pid 6970] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./322", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6971] exit_group(0 [pid 5032] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(3, "", [pid 5031] openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5031] <... openat resumed>) = 4 [pid 6970] exit_group(0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6971] <... exit_group resumed>) = ? [pid 5032] umount2("./322/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6971] +++ exited with 0 +++ [pid 6970] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6971, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5032] newfstatat(AT_FDCWD, "./322/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(4, "", [pid 5032] unlink("./322/binderfs" [pid 6972] <... write resumed>) = 2097152 [pid 6970] +++ exited with 0 +++ [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6970, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(3, [pid 5029] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] newfstatat(3, "", [pid 6972] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6972] <... munmap resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./321/binderfs", [pid 5034] newfstatat(AT_FDCWD, "./314/binderfs", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./321/binderfs" [pid 5034] unlink("./314/binderfs" [pid 5029] <... unlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5031] getdents64(4, [pid 5029] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6972] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6972] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5034] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 6973] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] rmdir("./320/file0" [pid 6972] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 6972] <... close resumed>) = 0 [pid 6972] mkdir("./file0", 0777) = 0 [pid 6972] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./320") = 0 [pid 5031] mkdir("./321", 0777 [pid 5032] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./322/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./322/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] getdents64(4, [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6974 attached [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6974] set_robust_list(0x55555635e660, 24 [pid 5032] getdents64(4, [pid 6974] <... set_robust_list resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 6974] chdir("./321" [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./322/file0") = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6974 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6974] <... chdir resumed>) = 0 [pid 5032] close(3) = 0 [pid 6974] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] rmdir("./322" [pid 6974] <... prctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6974] setpgid(0, 0 [pid 5032] mkdir("./323", 0777 [pid 6974] <... setpgid resumed>) = 0 [pid 6973] <... write resumed>) = 2097152 [pid 5032] <... mkdir resumed>) = 0 [ 269.264384][ T6972] loop1: detected capacity change from 0 to 4096 [ 269.294367][ T6972] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6974] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6974] write(3, "1000", 4 [pid 6973] munmap(0x7ff0df171000, 138412032 [pid 5032] <... openat resumed>) = 3 [pid 6974] <... write resumed>) = 4 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6974] close(3 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6974] <... close resumed>) = 0 [pid 5032] close(3 [pid 6974] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6974] <... symlink resumed>) = 0 [pid 5029] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6975 attached [pid 6973] <... munmap resumed>) = 0 [pid 6975] set_robust_list(0x55555635e660, 24 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6973] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6975 [pid 5029] newfstatat(AT_FDCWD, "./321/file0", [pid 6975] <... set_robust_list resumed>) = 0 [pid 6973] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6975] chdir("./323" [pid 6973] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6975] <... chdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./314/file0", [pid 6975] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6972] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6975] <... prctl resumed>) = 0 [pid 6975] setpgid(0, 0) = 0 [pid 6975] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6972] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6972] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6975] write(3, "1000", 4 [pid 6972] chdir("./file0" [pid 5034] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(4, "", [pid 5029] openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6975] <... write resumed>) = 4 [pid 6972] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... openat resumed>) = 4 [pid 6975] close(3 [pid 6974] memfd_create("syzkaller", 0 [pid 5029] newfstatat(4, "", [pid 6975] <... close resumed>) = 0 [pid 6972] ioctl(4, LOOP_CLR_FD [pid 5034] getdents64(4, [pid 6975] symlink("/dev/binderfs", "./binderfs" [pid 6972] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6975] <... symlink resumed>) = 0 [pid 6972] close(4 [pid 5029] getdents64(4, [pid 6974] <... memfd_create resumed>) = 3 [pid 6972] <... close resumed>) = 0 [pid 5034] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6975] memfd_create("syzkaller", 0 [pid 6972] exit_group(0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5034] close(4 [pid 5029] <... close resumed>) = 0 [pid 6972] <... exit_group resumed>) = ? [pid 5034] <... close resumed>) = 0 [pid 6972] +++ exited with 0 +++ [pid 5034] rmdir("./314/file0" [pid 5029] rmdir("./321/file0" [pid 6974] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6975] <... memfd_create resumed>) = 3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6972, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5029] <... rmdir resumed>) = 0 [pid 6975] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6974] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] getdents64(3, [pid 5030] umount2("./322", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6975] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./322", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] close(3 [pid 5030] <... openat resumed>) = 3 [pid 6973] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 5029] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5030] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] rmdir("./314" [pid 5030] umount2("./322/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./321" [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] mkdir("./315", 0777 [pid 5030] newfstatat(AT_FDCWD, "./322/binderfs", [pid 5034] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] unlink("./322/binderfs" [pid 5034] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6973] close(3) = 0 [pid 5029] mkdir("./322", 0777 [pid 6973] mkdir("./file0", 0777./strace-static-x86_64: Process 6976 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6976 [pid 6976] set_robust_list(0x55555635e660, 24 [pid 5029] <... mkdir resumed>) = 0 [pid 6976] <... set_robust_list resumed>) = 0 [pid 6976] chdir("./315" [pid 6973] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6973] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6976] <... chdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [ 269.366734][ T6973] loop4: detected capacity change from 0 to 4096 [pid 6976] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6976] <... prctl resumed>) = 0 [pid 6976] setpgid(0, 0) = 0 [pid 6976] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6976] write(3, "1000", 4 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6976] <... write resumed>) = 4 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6976] close(3) = 0 [pid 6976] symlink("/dev/binderfs", "./binderfs") = 0 ./strace-static-x86_64: Process 6977 attached [pid 6976] memfd_create("syzkaller", 0 [pid 6977] set_robust_list(0x55555635e660, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6977 [pid 6977] <... set_robust_list resumed>) = 0 [pid 6977] chdir("./322") = 0 [pid 6977] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6977] setpgid(0, 0 [pid 6976] <... memfd_create resumed>) = 3 [pid 6977] <... setpgid resumed>) = 0 [pid 6976] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6977] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6976] <... mmap resumed>) = 0x7ff0df171000 [pid 6977] <... openat resumed>) = 3 [pid 6977] write(3, "1000", 4) = 4 [ 269.422373][ T6973] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6977] close(3) = 0 [pid 6975] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6974] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6977] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6973] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6973] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6977] memfd_create("syzkaller", 0 [pid 6973] <... openat resumed>) = 3 [pid 6977] <... memfd_create resumed>) = 3 [pid 6973] chdir("./file0" [pid 6977] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6973] <... chdir resumed>) = 0 [pid 6977] <... mmap resumed>) = 0x7ff0df171000 [pid 6973] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6973] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6973] close(4 [pid 5030] newfstatat(AT_FDCWD, "./322/file0", [pid 6973] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6973] exit_group(0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./322/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./322/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./322") = 0 [pid 5030] mkdir("./323", 0777 [pid 6973] <... exit_group resumed>) = ? [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6973] +++ exited with 0 +++ [pid 5030] <... openat resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6973, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6978 attached [pid 6976] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6978] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6978 [pid 6978] chdir("./323" [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 6978] <... chdir resumed>) = 0 [pid 6975] <... write resumed>) = 2097152 [pid 6974] <... write resumed>) = 2097152 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6978] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6974] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(3, [pid 6978] <... prctl resumed>) = 0 [pid 6978] setpgid(0, 0) = 0 [pid 6978] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./315/binderfs", [pid 6978] write(3, "1000", 4 [pid 6975] munmap(0x7ff0df171000, 138412032 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./315/binderfs" [pid 6978] <... write resumed>) = 4 [pid 6975] <... munmap resumed>) = 0 [pid 6978] close(3) = 0 [pid 6978] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6978] memfd_create("syzkaller", 0 [pid 6974] <... munmap resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6974] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6974] <... openat resumed>) = 4 [pid 6975] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6974] ioctl(4, LOOP_SET_FD, 3 [pid 6978] <... memfd_create resumed>) = 3 [pid 6978] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6975] <... openat resumed>) = 4 [pid 6974] <... ioctl resumed>) = 0 [pid 6975] ioctl(4, LOOP_SET_FD, 3 [pid 6974] close(3 [pid 6977] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6976] <... write resumed>) = 2097152 [pid 6974] <... close resumed>) = 0 [pid 6974] mkdir("./file0", 0777) = 0 [pid 6975] <... ioctl resumed>) = 0 [pid 6974] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 269.596024][ T6974] loop2: detected capacity change from 0 to 4096 [ 269.604451][ T6975] loop3: detected capacity change from 0 to 4096 [pid 6975] close(3) = 0 [pid 6975] mkdir("./file0", 0777) = 0 [pid 6975] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6976] munmap(0x7ff0df171000, 138412032 [pid 5033] <... umount2 resumed>) = 0 [pid 6976] <... munmap resumed>) = 0 [pid 6976] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [ 269.646877][ T6974] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 269.659100][ T6975] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6976] ioctl(4, LOOP_SET_FD, 3 [pid 6978] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6977] <... write resumed>) = 2097152 [pid 5033] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6977] munmap(0x7ff0df171000, 138412032 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./315/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6976] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 6976] close(3 [pid 5033] newfstatat(4, "", [pid 6976] <... close resumed>) = 0 [pid 6974] <... mount resumed>) = 0 [pid 6976] mkdir("./file0", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6977] <... munmap resumed>) = 0 [pid 6976] <... mkdir resumed>) = 0 [pid 6974] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] getdents64(4, [pid 6976] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6974] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 6977] openat(AT_FDCWD, "/dev/loop0", O_RDWR [ 269.695558][ T6976] loop5: detected capacity change from 0 to 4096 [pid 6974] chdir("./file0" [pid 6977] <... openat resumed>) = 4 [pid 6974] <... chdir resumed>) = 0 [pid 6977] ioctl(4, LOOP_SET_FD, 3 [pid 6974] ioctl(4, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6974] <... ioctl resumed>) = 0 [pid 5033] close(4 [pid 6978] <... write resumed>) = 2097152 [pid 6974] close(4 [pid 5033] <... close resumed>) = 0 [pid 6974] <... close resumed>) = 0 [pid 5033] rmdir("./315/file0" [pid 6978] munmap(0x7ff0df171000, 138412032 [pid 6977] <... ioctl resumed>) = 0 [pid 6974] exit_group(0 [pid 5033] <... rmdir resumed>) = 0 [pid 6978] <... munmap resumed>) = 0 [pid 6974] <... exit_group resumed>) = ? [pid 6974] +++ exited with 0 +++ [ 269.745878][ T6976] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 269.759769][ T6977] loop0: detected capacity change from 0 to 4096 [pid 6978] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6977] close(3 [pid 5033] getdents64(3, [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6974, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 6978] <... openat resumed>) = 4 [pid 6977] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6978] ioctl(4, LOOP_SET_FD, 3 [pid 6977] mkdir("./file0", 0777 [pid 5033] close(3 [pid 6977] <... mkdir resumed>) = 0 [pid 6975] <... mount resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6975] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6975] chdir("./file0") = 0 [pid 6975] ioctl(4, LOOP_CLR_FD) = 0 [pid 6975] close(4) = 0 [pid 6975] exit_group(0 [pid 5033] rmdir("./315" [pid 6975] <... exit_group resumed>) = ? [pid 6977] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./316", 0777 [pid 5031] umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6975] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6975, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] umount2("./323", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] openat(AT_FDCWD, "./323", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(3, "", [pid 5033] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] getdents64(3, [pid 5031] getdents64(3, [pid 5033] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6978] <... ioctl resumed>) = 0 [pid 6976] <... mount resumed>) = 0 [pid 5032] umount2("./323/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6978] close(3 [pid 5033] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6976] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./323/binderfs", [pid 6976] <... openat resumed>) = 3 [pid 6976] chdir("./file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6976] <... chdir resumed>) = 0 [pid 5032] unlink("./323/binderfs" [pid 6976] ioctl(4, LOOP_CLR_FD [pid 5032] <... unlink resumed>) = 0 [pid 6976] <... ioctl resumed>) = 0 [pid 5032] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6978] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6978] mkdir("./file0", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6976] close(4) = 0 [pid 6976] exit_group(0) = ? [pid 6978] <... mkdir resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6979 [pid 5031] newfstatat(AT_FDCWD, "./321/binderfs", [pid 6978] mount("/dev/loop1", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 6979 attached [ 269.831013][ T6978] loop1: detected capacity change from 0 to 4096 [ 269.849968][ T6977] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6979] set_robust_list(0x55555635e660, 24) = 0 [pid 6976] +++ exited with 0 +++ [pid 5031] unlink("./321/binderfs" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6976, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] <... unlink resumed>) = 0 [pid 6979] chdir("./316" [pid 5031] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6979] <... chdir resumed>) = 0 [pid 5034] umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6979] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6979] <... prctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6979] setpgid(0, 0 [pid 5034] newfstatat(3, "", [pid 6979] <... setpgid resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6979] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6979] <... openat resumed>) = 3 [pid 5034] umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6979] write(3, "1000", 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6979] <... write resumed>) = 4 [pid 5034] newfstatat(AT_FDCWD, "./315/binderfs", [pid 6979] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./315/binderfs") = 0 [pid 5034] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6979] <... close resumed>) = 0 [pid 6979] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6979] memfd_create("syzkaller", 0) = 3 [pid 6979] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = 0 [ 269.879943][ T6978] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./315/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6977] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6977] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6978] <... mount resumed>) = 0 [pid 6977] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 6978] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6977] chdir("./file0" [pid 5034] newfstatat(4, "", [pid 6978] <... openat resumed>) = 3 [pid 6977] <... chdir resumed>) = 0 [pid 6978] chdir("./file0" [pid 6977] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./315/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./315") = 0 [pid 5032] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./316", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... mkdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./323/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6978] <... chdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./323/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6978] ioctl(4, LOOP_CLR_FD [pid 5032] newfstatat(4, "", [pid 6978] <... ioctl resumed>) = 0 [pid 6977] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6978] close(4 [pid 6977] close(4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] getdents64(4, [pid 6978] <... close resumed>) = 0 [pid 6977] <... close resumed>) = 0 [pid 6977] exit_group(0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6978] exit_group(0) = ? [pid 5032] getdents64(4, [pid 6978] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6977] <... exit_group resumed>) = ? [pid 5032] close(4 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6978, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./323/file0") = 0 [pid 5030] umount2("./323", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6977] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6977, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "./323", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(3 [pid 5030] <... openat resumed>) = 3 [pid 5029] umount2("./322", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./323" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "./322", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5029] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] newfstatat(3, "", [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 5032] mkdir("./324", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] umount2("./323/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5034] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./322/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5031] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./323/binderfs", [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(AT_FDCWD, "./321/file0", [pid 5030] unlink("./323/binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5030] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6980 attached [pid 5032] <... close resumed>) = 0 [pid 5031] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./322/binderfs", [pid 6980] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6980 [pid 6980] <... set_robust_list resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6980] chdir("./316" [pid 5031] openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] unlink("./322/binderfs" [pid 6980] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6980] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] newfstatat(4, "", [pid 5029] <... unlink resumed>) = 0 [pid 6980] <... prctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 6981 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6981 [pid 5031] getdents64(4, [pid 6981] set_robust_list(0x55555635e660, 24 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 6981] <... set_robust_list resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 6980] setpgid(0, 0 [pid 6981] chdir("./324" [pid 5031] rmdir("./321/file0") = 0 [pid 6981] <... chdir resumed>) = 0 [pid 5031] getdents64(3, [pid 6981] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6981] <... prctl resumed>) = 0 [pid 5031] close(3 [pid 6981] setpgid(0, 0 [pid 5031] <... close resumed>) = 0 [pid 6981] <... setpgid resumed>) = 0 [pid 5031] rmdir("./321" [pid 6980] <... setpgid resumed>) = 0 [pid 6981] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6979] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 6981] <... openat resumed>) = 3 [pid 6980] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] mkdir("./322", 0777 [pid 6981] write(3, "1000", 4 [pid 6980] <... openat resumed>) = 3 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6980] write(3, "1000", 4) = 4 [pid 6981] <... write resumed>) = 4 [pid 6981] close(3) = 0 [pid 6981] symlink("/dev/binderfs", "./binderfs" [pid 6980] close(3) = 0 [pid 6980] symlink("/dev/binderfs", "./binderfs" [pid 6981] <... symlink resumed>) = 0 [pid 6980] <... symlink resumed>) = 0 [pid 6981] memfd_create("syzkaller", 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6980] memfd_create("syzkaller", 0 [pid 6981] <... memfd_create resumed>) = 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6982 [pid 6981] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5029] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6982 attached [pid 6982] set_robust_list(0x55555635e660, 24) = 0 [pid 6982] chdir("./322") = 0 [pid 6982] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6982] setpgid(0, 0) = 0 [pid 6980] <... memfd_create resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./322/file0", [pid 6982] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6980] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6980] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6982] <... openat resumed>) = 3 [pid 6982] write(3, "1000", 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6982] <... write resumed>) = 4 [pid 6982] close(3) = 0 [pid 6982] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6982] memfd_create("syzkaller", 0 [pid 5030] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./323/file0", [pid 5029] openat(AT_FDCWD, "./322/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6982] <... memfd_create resumed>) = 3 [pid 5030] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 6982] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] newfstatat(4, "", [pid 6982] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6979] <... write resumed>) = 2097152 [pid 5030] openat(AT_FDCWD, "./323/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(4, [pid 5030] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6979] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(4, [pid 6979] <... munmap resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5029] getdents64(4, [pid 5030] rmdir("./323/file0" [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] close(4 [pid 5030] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5029] rmdir("./322/file0" [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./323") = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] mkdir("./324", 0777) = 0 [pid 6979] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] getdents64(3, [pid 6979] <... openat resumed>) = 4 [pid 5030] <... openat resumed>) = 3 [pid 6979] ioctl(4, LOOP_SET_FD, 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 6983 attached [pid 6983] set_robust_list(0x55555635e660, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6983 [pid 5029] rmdir("./322" [pid 6983] <... set_robust_list resumed>) = 0 [pid 6983] chdir("./324" [pid 5029] <... rmdir resumed>) = 0 [pid 6983] <... chdir resumed>) = 0 [pid 6983] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6979] <... ioctl resumed>) = 0 [pid 6983] <... prctl resumed>) = 0 [pid 6983] setpgid(0, 0) = 0 [pid 6983] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6979] close(3 [pid 6983] write(3, "1000", 4) = 4 [pid 6979] <... close resumed>) = 0 [pid 6983] close(3 [pid 6979] mkdir("./file0", 0777 [pid 6983] <... close resumed>) = 0 [pid 6979] <... mkdir resumed>) = 0 [pid 5029] mkdir("./323", 0777 [pid 6983] symlink("/dev/binderfs", "./binderfs" [pid 6979] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 6983] <... symlink resumed>) = 0 [ 270.177691][ T6979] loop4: detected capacity change from 0 to 4096 [pid 6981] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... mkdir resumed>) = 0 [pid 6983] memfd_create("syzkaller", 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6983] <... memfd_create resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 6983] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6982] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6983] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6980] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6984 attached [pid 6984] set_robust_list(0x55555635e660, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6984 [ 270.220917][ T6979] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6984] <... set_robust_list resumed>) = 0 [pid 6984] chdir("./323") = 0 [pid 6984] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6984] setpgid(0, 0 [pid 6980] <... write resumed>) = 2097152 [pid 6984] <... setpgid resumed>) = 0 [pid 6980] munmap(0x7ff0df171000, 138412032 [pid 6984] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6984] write(3, "1000", 4) = 4 [pid 6984] close(3 [pid 6980] <... munmap resumed>) = 0 [pid 6984] <... close resumed>) = 0 [pid 6984] symlink("/dev/binderfs", "./binderfs" [pid 6980] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6984] <... symlink resumed>) = 0 [pid 6984] memfd_create("syzkaller", 0 [pid 6980] <... openat resumed>) = 4 [pid 6980] ioctl(4, LOOP_SET_FD, 3 [pid 6981] <... write resumed>) = 2097152 [pid 6979] <... mount resumed>) = 0 [pid 6981] munmap(0x7ff0df171000, 138412032 [pid 6979] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6981] <... munmap resumed>) = 0 [pid 6980] <... ioctl resumed>) = 0 [pid 6979] <... openat resumed>) = 3 [pid 6979] chdir("./file0" [pid 6980] close(3 [pid 6979] <... chdir resumed>) = 0 [pid 6980] <... close resumed>) = 0 [pid 6984] <... memfd_create resumed>) = 3 [pid 6980] mkdir("./file0", 0777 [pid 6984] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6979] ioctl(4, LOOP_CLR_FD) = 0 [pid 6979] close(4) = 0 [pid 6979] exit_group(0) = ? [pid 6980] <... mkdir resumed>) = 0 [pid 6979] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6979, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 6983] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6982] <... write resumed>) = 2097152 [pid 6980] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 6981] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 6981] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./316/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./316/binderfs") = 0 [pid 5033] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 270.315895][ T6980] loop5: detected capacity change from 0 to 4096 [ 270.339163][ T6981] loop3: detected capacity change from 0 to 4096 [ 270.346060][ T6980] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 6982] munmap(0x7ff0df171000, 138412032) = 0 [pid 6981] <... ioctl resumed>) = 0 [pid 6981] close(3) = 0 [pid 6981] mkdir("./file0", 0777) = 0 [pid 6981] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 6982] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6982] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6982] close(3) = 0 [pid 6984] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6982] mkdir("./file0", 0777) = 0 [pid 6982] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 6980] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6980] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6980] chdir("./file0") = 0 [ 270.369758][ T6982] loop2: detected capacity change from 0 to 4096 [ 270.375697][ T6981] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./316/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6983] <... write resumed>) = 2097152 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6983] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 6980] ioctl(4, LOOP_CLR_FD [pid 5033] rmdir("./316/file0" [pid 6980] <... ioctl resumed>) = 0 [pid 6980] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 6980] <... close resumed>) = 0 [pid 6980] exit_group(0) = ? [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 6983] <... munmap resumed>) = 0 [pid 6980] +++ exited with 0 +++ [pid 5033] rmdir("./316" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6980, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 6983] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5034] umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... rmdir resumed>) = 0 [pid 6983] ioctl(4, LOOP_SET_FD, 3 [pid 5034] openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] mkdir("./317", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6984] <... write resumed>) = 2097152 [pid 5034] <... openat resumed>) = 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 5034] newfstatat(3, "", [pid 6984] munmap(0x7ff0df171000, 138412032 [pid 5033] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6985 attached [pid 6985] set_robust_list(0x55555635e660, 24) = 0 [pid 6984] <... munmap resumed>) = 0 [pid 5034] getdents64(3, [pid 6985] chdir("./317" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6985] <... chdir resumed>) = 0 [pid 6985] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6984] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] newfstatat(AT_FDCWD, "./316/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6984] <... openat resumed>) = 4 [pid 5034] unlink("./316/binderfs" [pid 6985] <... prctl resumed>) = 0 [pid 6984] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6985 [pid 6985] setpgid(0, 0) = 0 [pid 6985] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6985] <... openat resumed>) = 3 [pid 6985] write(3, "1000", 4) = 4 [ 270.425629][ T6982] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 270.451719][ T6983] loop1: detected capacity change from 0 to 4096 [pid 6985] close(3) = 0 [pid 6983] <... ioctl resumed>) = 0 [pid 6985] symlink("/dev/binderfs", "./binderfs" [pid 6983] close(3 [pid 6985] <... symlink resumed>) = 0 [pid 6983] <... close resumed>) = 0 [pid 6983] mkdir("./file0", 0777) = 0 [pid 6985] memfd_create("syzkaller", 0 [pid 6983] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6985] <... memfd_create resumed>) = 3 [pid 6985] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6984] <... ioctl resumed>) = 0 [pid 6984] close(3) = 0 [pid 6984] mkdir("./file0", 0777) = 0 [pid 6984] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6981] <... mount resumed>) = 0 [ 270.473906][ T6984] loop0: detected capacity change from 0 to 4096 [ 270.491058][ T6983] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6981] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6981] chdir("./file0") = 0 [pid 6981] ioctl(4, LOOP_CLR_FD) = 0 [pid 6981] close(4) = 0 [pid 6981] exit_group(0) = ? [pid 6981] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6981, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./324", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./324", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./324/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./324/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./324/binderfs") = 0 [pid 5032] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6982] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 6982] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6982] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6982] chdir("./file0" [ 270.525276][ T6984] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5034] newfstatat(AT_FDCWD, "./316/file0", [pid 6983] <... mount resumed>) = 0 [pid 6982] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6983] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6982] ioctl(4, LOOP_CLR_FD [pid 6983] <... openat resumed>) = 3 [pid 6982] <... ioctl resumed>) = 0 [pid 5034] umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6983] chdir("./file0" [pid 6982] close(4 [pid 6983] <... chdir resumed>) = 0 [pid 6982] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6983] ioctl(4, LOOP_CLR_FD [pid 6982] exit_group(0 [pid 5034] openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6985] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6983] <... ioctl resumed>) = 0 [pid 6982] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = 0 [pid 6983] close(4 [pid 5032] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6983] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6983] exit_group(0 [pid 6982] +++ exited with 0 +++ [pid 5032] newfstatat(AT_FDCWD, "./324/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6982, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=10 /* 0.10 s */} --- [pid 5032] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./324/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] umount2("./322", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(4, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] openat(AT_FDCWD, "./322", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... openat resumed>) = 4 [pid 5032] getdents64(4, [pid 5031] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] newfstatat(3, "", [pid 5032] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(4, "", [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(3, [pid 6983] <... exit_group resumed>) = ? [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] close(4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6983] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5032] <... close resumed>) = 0 [pid 5031] umount2("./322/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./324/file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6983, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=3 /* 0.03 s */} --- [pid 6984] <... mount resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./322/binderfs", [pid 6984] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] getdents64(4, [pid 5032] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6984] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./322/binderfs" [pid 5030] umount2("./324", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6984] chdir("./file0" [pid 5034] close(4 [pid 5032] close(3 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./324", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 6984] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./324/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6984] ioctl(4, LOOP_CLR_FD [pid 5034] rmdir("./316/file0" [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./324" [pid 5030] newfstatat(AT_FDCWD, "./324/binderfs", [pid 6984] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6984] close(4 [pid 5034] getdents64(3, [pid 6984] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] mkdir("./325", 0777 [pid 5030] unlink("./324/binderfs" [pid 5034] close(3 [pid 6984] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5034] rmdir("./316" [pid 5030] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./317", 0777 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... openat resumed>) = 3 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6984] <... exit_group resumed>) = ? [pid 5034] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 6986 attached [pid 6986] set_robust_list(0x55555635e660, 24) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6986 [pid 6986] chdir("./325") = 0 [pid 6986] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6986] setpgid(0, 0 [pid 5034] close(3 [pid 6986] <... setpgid resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6986] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 ./strace-static-x86_64: Process 6987 attached [pid 6986] write(3, "1000", 4) = 4 [pid 6987] set_robust_list(0x55555635e660, 24 [pid 6986] close(3) = 0 [pid 6987] <... set_robust_list resumed>) = 0 [pid 6986] symlink("/dev/binderfs", "./binderfs" [pid 6984] +++ exited with 0 +++ [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6987 [pid 6987] chdir("./317" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6984, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 6986] <... symlink resumed>) = 0 [pid 6986] memfd_create("syzkaller", 0) = 3 [pid 6986] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6987] <... chdir resumed>) = 0 [pid 6985] <... write resumed>) = 2097152 [pid 6987] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] umount2("./323", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6987] setpgid(0, 0) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6987] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6985] munmap(0x7ff0df171000, 138412032 [pid 5029] openat(AT_FDCWD, "./323", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6987] <... openat resumed>) = 3 [pid 6985] <... munmap resumed>) = 0 [pid 6987] write(3, "1000", 4 [pid 5029] <... openat resumed>) = 3 [pid 6987] <... write resumed>) = 4 [pid 6987] close(3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./323/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6985] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6985] <... openat resumed>) = 4 [pid 6985] ioctl(4, LOOP_SET_FD, 3 [pid 5029] newfstatat(AT_FDCWD, "./323/binderfs", [pid 6987] <... close resumed>) = 0 [pid 6985] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 6987] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6987] <... symlink resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./322/file0", [pid 5029] unlink("./323/binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6987] memfd_create("syzkaller", 0 [pid 5031] openat(AT_FDCWD, "./322/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] <... unlink resumed>) = 0 [pid 6987] <... memfd_create resumed>) = 3 [pid 5031] newfstatat(4, "", [pid 5029] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6987] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./324/file0", [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./322/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] close(3 [pid 5030] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./322" [pid 5030] openat(AT_FDCWD, "./324/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./323", 0777 [pid 5030] <... openat resumed>) = 4 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(4, [pid 6985] close(3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6985] <... close resumed>) = 0 [pid 5031] close(3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6985] mkdir("./file0", 0777 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6985] <... mkdir resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6988 attached [pid 6988] set_robust_list(0x55555635e660, 24) = 0 [pid 6988] chdir("./323") = 0 [pid 6988] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6985] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6988 [pid 5030] close(4 [pid 6988] <... prctl resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6988] setpgid(0, 0) = 0 [pid 6988] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] rmdir("./324/file0" [pid 6988] <... openat resumed>) = 3 [pid 6988] write(3, "1000", 4) = 4 [pid 6988] close(3) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 6988] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 270.716330][ T6985] loop4: detected capacity change from 0 to 4096 [pid 5030] close(3) = 0 [pid 5030] rmdir("./324" [pid 6988] memfd_create("syzkaller", 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6986] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] mkdir("./325", 0777 [pid 5029] <... umount2 resumed>) = 0 [pid 6988] <... memfd_create resumed>) = 3 [pid 5030] <... mkdir resumed>) = 0 [pid 6988] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6988] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./323/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./323/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", ./strace-static-x86_64: Process 6989 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6989 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6989] set_robust_list(0x55555635e660, 24) = 0 [ 270.776355][ T6985] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] getdents64(4, [pid 6989] chdir("./325" [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6987] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... close resumed>) = 0 [pid 6985] <... mount resumed>) = 0 [pid 6989] <... chdir resumed>) = 0 [pid 5029] rmdir("./323/file0" [pid 6989] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6986] <... write resumed>) = 2097152 [pid 6985] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 6989] <... prctl resumed>) = 0 [pid 5029] getdents64(3, [pid 6989] setpgid(0, 0 [pid 6985] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6989] <... setpgid resumed>) = 0 [pid 6985] chdir("./file0") = 0 [pid 5029] close(3 [pid 6989] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6985] ioctl(4, LOOP_CLR_FD [pid 5029] <... close resumed>) = 0 [pid 6989] <... openat resumed>) = 3 [pid 6985] <... ioctl resumed>) = 0 [pid 5029] rmdir("./323" [pid 6985] close(4) = 0 [pid 6989] write(3, "1000", 4 [pid 6985] exit_group(0 [pid 5029] <... rmdir resumed>) = 0 [pid 6989] <... write resumed>) = 4 [pid 5029] mkdir("./324", 0777 [pid 6989] close(3 [pid 6988] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6985] <... exit_group resumed>) = ? [pid 5029] <... mkdir resumed>) = 0 [pid 6989] <... close resumed>) = 0 [pid 6986] munmap(0x7ff0df171000, 138412032) = 0 [pid 6985] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6985, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 6989] symlink("/dev/binderfs", "./binderfs" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 6989] <... symlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6989] memfd_create("syzkaller", 0 [pid 6986] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] newfstatat(3, "", [pid 6986] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6986] ioctl(4, LOOP_SET_FD, 3 [pid 5033] getdents64(3, [pid 6989] <... memfd_create resumed>) = 3 [pid 6987] <... write resumed>) = 2097152 [pid 5029] close(3 [pid 6989] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... close resumed>) = 0 [pid 6989] <... mmap resumed>) = 0x7ff0df171000 [pid 6986] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6986] close(3 [pid 5033] umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6986] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6986] mkdir("./file0", 0777 [pid 5033] newfstatat(AT_FDCWD, "./317/binderfs", ./strace-static-x86_64: Process 6990 attached [pid 6986] <... mkdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6990] set_robust_list(0x55555635e660, 24 [pid 6986] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] unlink("./317/binderfs" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6990 [pid 6990] <... set_robust_list resumed>) = 0 [pid 6987] munmap(0x7ff0df171000, 138412032 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6987] <... munmap resumed>) = 0 [pid 6990] chdir("./324") = 0 [pid 6990] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6987] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6990] <... prctl resumed>) = 0 [ 270.904262][ T6986] loop3: detected capacity change from 0 to 4096 [ 270.933541][ T6986] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6987] ioctl(4, LOOP_SET_FD, 3 [pid 6990] setpgid(0, 0) = 0 [pid 6987] <... ioctl resumed>) = 0 [pid 6990] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6987] close(3 [pid 6990] <... openat resumed>) = 3 [pid 6987] <... close resumed>) = 0 [pid 6990] write(3, "1000", 4 [pid 6987] mkdir("./file0", 0777 [pid 6990] <... write resumed>) = 4 [pid 6990] close(3) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 6990] symlink("/dev/binderfs", "./binderfs" [pid 6988] <... write resumed>) = 2097152 [pid 6987] <... mkdir resumed>) = 0 [pid 5033] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6990] <... symlink resumed>) = 0 [pid 6988] munmap(0x7ff0df171000, 138412032 [pid 6987] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./317/file0", [pid 6990] memfd_create("syzkaller", 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6986] <... mount resumed>) = 0 [pid 6986] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6986] chdir("./file0") = 0 [pid 6986] ioctl(4, LOOP_CLR_FD) = 0 [ 270.956354][ T6987] loop5: detected capacity change from 0 to 4096 [pid 6986] close(4) = 0 [pid 5033] openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6986] exit_group(0 [pid 6989] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6986] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 4 [pid 6990] <... memfd_create resumed>) = 3 [pid 6988] <... munmap resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6990] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6988] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6986] +++ exited with 0 +++ [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 6988] <... openat resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6986, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 6990] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] getdents64(4, [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6988] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5032] umount2("./325", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./325", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./325/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./317/file0" [pid 5032] newfstatat(AT_FDCWD, "./325/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./325/binderfs" [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(3) = 0 [pid 5033] rmdir("./317") = 0 [pid 6988] <... ioctl resumed>) = 0 [pid 6988] close(3 [pid 5033] mkdir("./318", 0777 [pid 6988] <... close resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 6988] mkdir("./file0", 0777 [ 271.003219][ T6987] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 271.032448][ T6988] loop2: detected capacity change from 0 to 4096 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6988] <... mkdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6989] <... write resumed>) = 2097152 [pid 6988] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] newfstatat(AT_FDCWD, "./325/file0", [pid 6989] munmap(0x7ff0df171000, 138412032 [pid 6987] <... mount resumed>) = 0 [pid 5033] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./325/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6987] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] getdents64(4, [pid 6987] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6987] chdir("./file0" [pid 5032] getdents64(4, [pid 6987] <... chdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6989] <... munmap resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6987] ioctl(4, LOOP_CLR_FD [pid 5032] close(4 [pid 6987] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6987] close(4 [pid 5032] rmdir("./325/file0" [pid 6990] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6989] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6987] <... close resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6991 [pid 6989] <... openat resumed>) = 4 [pid 6987] exit_group(0 [pid 5032] getdents64(3, [pid 6987] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6989] ioctl(4, LOOP_SET_FD, 3 [pid 6987] +++ exited with 0 +++ [pid 5032] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6987, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./325") = 0 ./strace-static-x86_64: Process 6991 attached [pid 5032] mkdir("./326", 0777 [pid 6991] set_robust_list(0x55555635e660, 24 [pid 5032] <... mkdir resumed>) = 0 [pid 6991] <... set_robust_list resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6991] chdir("./318") = 0 [pid 5032] <... openat resumed>) = 3 [pid 6991] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6991] <... prctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6991] setpgid(0, 0 [pid 5032] close(3 [pid 6991] <... setpgid resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6991] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6991] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6992 attached ) = 3 [pid 6991] write(3, "1000", 4 [pid 5034] newfstatat(3, "", [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6992 [pid 6992] set_robust_list(0x55555635e660, 24 [pid 6991] <... write resumed>) = 4 [pid 6989] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6991] close(3 [pid 6992] <... set_robust_list resumed>) = 0 [pid 6991] <... close resumed>) = 0 [pid 6989] close(3 [pid 6992] chdir("./326" [pid 6991] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6989] <... close resumed>) = 0 [pid 6988] <... mount resumed>) = 0 [pid 5034] getdents64(3, [pid 6989] mkdir("./file0", 0777 [pid 6988] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 271.094328][ T6988] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 271.121072][ T6989] loop1: detected capacity change from 0 to 4096 [pid 6992] <... chdir resumed>) = 0 [pid 6992] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6991] memfd_create("syzkaller", 0 [pid 6990] <... write resumed>) = 2097152 [pid 6989] <... mkdir resumed>) = 0 [pid 6988] <... openat resumed>) = 3 [pid 5034] umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6990] munmap(0x7ff0df171000, 138412032 [pid 6989] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 6988] chdir("./file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6988] <... chdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./317/binderfs", [pid 6988] ioctl(4, LOOP_CLR_FD [pid 6992] setpgid(0, 0 [pid 6991] <... memfd_create resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6992] <... setpgid resumed>) = 0 [pid 6991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6988] <... ioctl resumed>) = 0 [pid 5034] unlink("./317/binderfs" [pid 6992] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6991] <... mmap resumed>) = 0x7ff0df171000 [pid 6988] close(4 [pid 5034] <... unlink resumed>) = 0 [pid 6992] <... openat resumed>) = 3 [pid 6990] <... munmap resumed>) = 0 [pid 6988] <... close resumed>) = 0 [pid 5034] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6992] write(3, "1000", 4 [pid 6990] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6992] <... write resumed>) = 4 [pid 6990] <... openat resumed>) = 4 [pid 6988] exit_group(0 [pid 6990] ioctl(4, LOOP_SET_FD, 3 [pid 6992] close(3) = 0 [pid 6992] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6992] memfd_create("syzkaller", 0) = 3 [pid 6992] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6990] <... ioctl resumed>) = 0 [pid 6988] <... exit_group resumed>) = ? [pid 6988] +++ exited with 0 +++ [pid 6990] close(3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6988, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 6990] <... close resumed>) = 0 [pid 6990] mkdir("./file0", 0777 [pid 5031] umount2("./323", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./323", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6990] <... mkdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 6990] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 271.185317][ T6989] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 271.196170][ T6990] loop0: detected capacity change from 0 to 4096 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./323/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./323/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./323/binderfs") = 0 [pid 5031] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = 0 [pid 6989] <... mount resumed>) = 0 [pid 5034] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6989] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./317/file0", [pid 6989] <... openat resumed>) = 3 [pid 6989] chdir("./file0") = 0 [ 271.227292][ T6990] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 6991] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6989] ioctl(4, LOOP_CLR_FD) = 0 [pid 6989] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6989] <... close resumed>) = 0 [pid 6989] exit_group(0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6989] <... exit_group resumed>) = ? [pid 6989] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6989, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 6992] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5030] umount2("./325", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(4 [pid 5030] openat(AT_FDCWD, "./325", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", [pid 5034] rmdir("./317/file0" [pid 5031] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./323/file0", [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] close(3 [pid 5031] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./325/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./317" [pid 5031] openat(AT_FDCWD, "./323/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./325/binderfs", [pid 6991] <... write resumed>) = 2097152 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6990] <... mount resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6990] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] mkdir("./318", 0777 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] unlink("./325/binderfs" [pid 6992] <... write resumed>) = 2097152 [pid 6990] <... openat resumed>) = 3 [pid 5034] <... mkdir resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... unlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(4) = 0 [pid 5031] rmdir("./323/file0" [pid 6991] munmap(0x7ff0df171000, 138412032) = 0 [pid 6990] chdir("./file0" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... rmdir resumed>) = 0 [pid 6990] <... chdir resumed>) = 0 [pid 6990] ioctl(4, LOOP_CLR_FD [pid 5031] getdents64(3, [pid 6990] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6990] close(4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] close(3 [pid 6991] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6992] munmap(0x7ff0df171000, 138412032 [pid 6991] <... openat resumed>) = 4 [pid 6992] <... munmap resumed>) = 0 [pid 6991] ioctl(4, LOOP_SET_FD, 3 [pid 6990] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... close resumed>) = 0 [pid 5034] close(3 [pid 6990] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 5031] rmdir("./323" [pid 6992] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... rmdir resumed>) = 0 [pid 6992] ioctl(4, LOOP_SET_FD, 3 [pid 5031] mkdir("./324", 0777 [pid 5030] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 6993 attached [pid 6993] set_robust_list(0x55555635e660, 24 [pid 6990] <... exit_group resumed>) = ? [pid 5031] <... mkdir resumed>) = 0 [pid 5030] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6993] <... set_robust_list resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6993] chdir("./318") = 0 [pid 5030] newfstatat(AT_FDCWD, "./325/file0", [pid 6993] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6993] setpgid(0, 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 6993 [pid 6993] <... setpgid resumed>) = 0 [pid 6993] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6991] <... ioctl resumed>) = 0 [pid 6993] <... openat resumed>) = 3 [pid 5030] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6993] write(3, "1000", 4 [pid 6991] close(3 [pid 6993] <... write resumed>) = 4 [pid 6991] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6993] close(3 [pid 6991] mkdir("./file0", 0777 [pid 6993] <... close resumed>) = 0 [pid 6991] <... mkdir resumed>) = 0 [pid 6990] +++ exited with 0 +++ [pid 5031] <... openat resumed>) = 3 [pid 5030] openat(AT_FDCWD, "./325/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6993] symlink("/dev/binderfs", "./binderfs" [pid 6991] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... openat resumed>) = 4 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6990, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 6993] <... symlink resumed>) = 0 [pid 6992] <... ioctl resumed>) = 0 [pid 6993] memfd_create("syzkaller", 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] newfstatat(4, "", [pid 6993] <... memfd_create resumed>) = 3 [pid 6992] close(3 [pid 6993] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6992] <... close resumed>) = 0 [ 271.389845][ T6991] loop4: detected capacity change from 0 to 4096 [ 271.403967][ T6992] loop3: detected capacity change from 0 to 4096 [ 271.427204][ T6991] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 6993] <... mmap resumed>) = 0x7ff0df171000 [pid 6992] mkdir("./file0", 0777) = 0 [pid 5031] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 6992] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] getdents64(4, ./strace-static-x86_64: Process 6994 attached 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6994] set_robust_list(0x55555635e660, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 6994 [pid 5030] getdents64(4, [pid 6994] <... set_robust_list resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5029] umount2("./324", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6994] chdir("./324" [pid 5030] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./325/file0" [pid 6994] <... chdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./324", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6994] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6994] <... prctl resumed>) = 0 [pid 5030] getdents64(3, [pid 5029] newfstatat(3, "", [pid 6994] setpgid(0, 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6994] <... setpgid resumed>) = 0 [pid 5030] close(3 [pid 5029] getdents64(3, [pid 5030] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6994] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] rmdir("./325" [pid 5029] umount2("./324/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./324/binderfs", [pid 6994] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6994] write(3, "1000", 4 [pid 5030] mkdir("./326", 0777 [pid 5029] unlink("./324/binderfs" [pid 6994] <... write resumed>) = 4 [pid 6994] close(3 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6994] <... close resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6994] symlink("/dev/binderfs", "./binderfs" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6994] <... symlink resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6994] memfd_create("syzkaller", 0 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6995 attached , child_tidptr=0x55555635e650) = 6995 [pid 6995] set_robust_list(0x55555635e660, 24) = 0 [pid 6995] chdir("./326" [pid 5029] <... umount2 resumed>) = 0 [pid 6995] <... chdir resumed>) = 0 [pid 6995] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6995] setpgid(0, 0) = 0 [ 271.445264][ T6992] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6995] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6994] <... memfd_create resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6994] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] newfstatat(AT_FDCWD, "./324/file0", [pid 6994] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./324/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6995] write(3, "1000", 4 [pid 5029] <... openat resumed>) = 4 [pid 6995] <... write resumed>) = 4 [pid 6995] close(3) = 0 [pid 5029] newfstatat(4, "", [pid 6995] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 6995] memfd_create("syzkaller", 0 [pid 6991] <... mount resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6991] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 6995] <... memfd_create resumed>) = 3 [pid 6991] <... openat resumed>) = 3 [pid 5029] rmdir("./324/file0" [pid 6995] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6991] chdir("./file0" [pid 6995] <... mmap resumed>) = 0x7ff0df171000 [pid 6991] <... chdir resumed>) = 0 [pid 6991] ioctl(4, LOOP_CLR_FD [pid 5029] <... rmdir resumed>) = 0 [pid 6991] <... ioctl resumed>) = 0 [pid 5029] getdents64(3, [pid 6991] close(4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6991] <... close resumed>) = 0 [pid 6991] exit_group(0) = ? [pid 6991] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6991, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6993] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... close resumed>) = 0 [pid 5033] umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./324" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./318/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6992] <... mount resumed>) = 0 [pid 5033] unlink("./318/binderfs" [pid 5029] mkdir("./325", 0777 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6992] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... mkdir resumed>) = 0 [pid 6994] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6992] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6992] chdir("./file0") = 0 [pid 5029] <... openat resumed>) = 3 [pid 6992] ioctl(4, LOOP_CLR_FD [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6992] <... ioctl resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6992] close(4 [pid 5029] close(3 [pid 6992] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6992] exit_group(0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6992] <... exit_group resumed>) = ? [pid 6992] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6992, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./326", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./326", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6996 attached [pid 6995] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 6996 [pid 6996] set_robust_list(0x55555635e660, 24 [pid 5032] newfstatat(3, "", [pid 6996] <... set_robust_list resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6993] <... write resumed>) = 2097152 [pid 5032] umount2("./326/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./326/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./326/binderfs") = 0 [pid 6996] chdir("./325") = 0 [pid 5032] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6996] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6996] setpgid(0, 0) = 0 [pid 6996] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6994] <... write resumed>) = 2097152 [pid 6996] write(3, "1000", 4) = 4 [pid 6994] munmap(0x7ff0df171000, 138412032 [pid 6996] close(3) = 0 [pid 6996] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6996] memfd_create("syzkaller", 0 [pid 6993] munmap(0x7ff0df171000, 138412032 [pid 6994] <... munmap resumed>) = 0 [pid 6993] <... munmap resumed>) = 0 [pid 6996] <... memfd_create resumed>) = 3 [pid 6996] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6994] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6993] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6993] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6993] ioctl(4, LOOP_SET_FD, 3 [pid 6994] ioctl(4, LOOP_SET_FD, 3 [pid 6993] <... ioctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./318/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = 0 [pid 6993] close(3 [pid 5032] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6993] <... close resumed>) = 0 [pid 6993] mkdir("./file0", 0777 [pid 5033] openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6993] <... mkdir resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5032] newfstatat(AT_FDCWD, "./326/file0", [pid 6993] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] newfstatat(4, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./326/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 6995] <... write resumed>) = 2097152 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 6994] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6994] close(3 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./318/file0") = 0 [pid 6995] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(3, [pid 5032] getdents64(4, [pid 6994] <... close resumed>) = 0 [pid 6994] mkdir("./file0", 0777 [pid 6995] <... munmap resumed>) = 0 [pid 6994] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./318" [pid 6996] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6994] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] mkdir("./319", 0777 [pid 5032] getdents64(4, [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] close(4 [pid 6995] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 6995] <... openat resumed>) = 4 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6995] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 5032] rmdir("./326/file0" [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... rmdir resumed>) = 0 [ 271.694770][ T6993] loop5: detected capacity change from 0 to 4096 [ 271.702795][ T6994] loop2: detected capacity change from 0 to 4096 [ 271.727963][ T6993] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 6997 ./strace-static-x86_64: Process 6997 attached [pid 6997] set_robust_list(0x55555635e660, 24) = 0 [pid 6997] chdir("./319") = 0 [pid 6997] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6997] setpgid(0, 0) = 0 [pid 6997] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6997] write(3, "1000", 4) = 4 [pid 6997] close(3) = 0 [pid 6997] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 6997] memfd_create("syzkaller", 0 [pid 5032] <... close resumed>) = 0 [pid 6997] <... memfd_create resumed>) = 3 [pid 5032] rmdir("./326" [pid 6997] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./327", 0777 [pid 6995] <... ioctl resumed>) = 0 [pid 6995] close(3) = 0 [pid 6995] mkdir("./file0", 0777) = 0 [pid 6995] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] <... mkdir resumed>) = 0 [ 271.769168][ T6994] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 271.780142][ T6995] loop1: detected capacity change from 0 to 4096 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6994] <... mount resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6994] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6994] <... openat resumed>) = 3 [pid 5032] close(3 [pid 6994] chdir("./file0" [pid 5032] <... close resumed>) = 0 [pid 6994] <... chdir resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6994] ioctl(4, LOOP_CLR_FD./strace-static-x86_64: Process 6998 attached ) = 0 [pid 6996] <... write resumed>) = 2097152 [pid 6993] <... mount resumed>) = 0 [pid 6998] set_robust_list(0x55555635e660, 24 [pid 6994] close(4 [pid 6993] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6998] <... set_robust_list resumed>) = 0 [pid 6996] munmap(0x7ff0df171000, 138412032 [pid 6994] <... close resumed>) = 0 [pid 6993] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 6998 [pid 6998] chdir("./327" [pid 6994] exit_group(0 [pid 6993] chdir("./file0" [pid 6998] <... chdir resumed>) = 0 [pid 6993] <... chdir resumed>) = 0 [pid 6998] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6993] ioctl(4, LOOP_CLR_FD [pid 6998] <... prctl resumed>) = 0 [pid 6994] <... exit_group resumed>) = ? [pid 6993] <... ioctl resumed>) = 0 [pid 6998] setpgid(0, 0 [pid 6993] close(4) = 0 [pid 6998] <... setpgid resumed>) = 0 [pid 6994] +++ exited with 0 +++ [pid 6993] exit_group(0 [pid 6998] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6993] <... exit_group resumed>) = ? [ 271.814103][ T6995] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 6998] write(3, "1000", 4 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6994, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 6998] <... write resumed>) = 4 [pid 6998] close(3 [pid 6996] <... munmap resumed>) = 0 [pid 6993] +++ exited with 0 +++ [pid 6998] <... close resumed>) = 0 [pid 6996] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6995] <... mount resumed>) = 0 [pid 6998] symlink("/dev/binderfs", "./binderfs" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6993, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6995] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... restart_syscall resumed>) = 0 [pid 6998] <... symlink resumed>) = 0 [pid 6996] <... openat resumed>) = 4 [pid 6995] <... openat resumed>) = 3 [pid 6996] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6995] chdir("./file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6998] memfd_create("syzkaller", 0 [pid 6995] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6995] ioctl(4, LOOP_CLR_FD [pid 5034] newfstatat(3, "", [pid 6998] <... memfd_create resumed>) = 3 [pid 6997] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6995] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./324", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6995] close(4 [pid 5034] getdents64(3, [pid 6995] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 6995] exit_group(0 [pid 5034] umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./318/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6995] <... exit_group resumed>) = ? [pid 5034] unlink("./318/binderfs") = 0 [pid 5034] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./324", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6995] +++ exited with 0 +++ [pid 5031] <... openat resumed>) = 3 [pid 6998] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6998] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] getdents64(3, [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6995, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./326", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./326", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./324/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./324/binderfs", [pid 5030] newfstatat(3, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] unlink("./324/binderfs" [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./326/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./326/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6996] <... ioctl resumed>) = 0 [pid 5030] unlink("./326/binderfs" [pid 6996] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 6996] <... close resumed>) = 0 [pid 5030] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6996] mkdir("./file0", 0777) = 0 [pid 6996] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 6997] <... write resumed>) = 2097152 [pid 6997] munmap(0x7ff0df171000, 138412032 [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./326/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./326/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 271.888156][ T6996] loop0: detected capacity change from 0 to 4096 [ 271.927241][ T6996] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./326/file0" [pid 6997] <... munmap resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 6997] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 6997] <... openat resumed>) = 4 [pid 5030] rmdir("./326" [pid 6997] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./327", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6998] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6996] <... mount resumed>) = 0 ./strace-static-x86_64: Process 6999 attached [pid 6999] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 6999 [pid 6996] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6996] chdir("./file0") = 0 [pid 6996] ioctl(4, LOOP_CLR_FD) = 0 [pid 6996] close(4) = 0 [pid 6996] exit_group(0 [pid 6999] <... set_robust_list resumed>) = 0 [pid 6996] <... exit_group resumed>) = ? [pid 6996] +++ exited with 0 +++ [pid 6999] chdir("./327") = 0 [pid 6999] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6999] setpgid(0, 0) = 0 [pid 6999] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6997] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6999] <... openat resumed>) = 3 [pid 6997] close(3 [pid 5034] newfstatat(AT_FDCWD, "./318/file0", [pid 5031] newfstatat(AT_FDCWD, "./324/file0", [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6996, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 6999] write(3, "1000", 4 [pid 6997] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6999] <... write resumed>) = 4 [pid 6997] mkdir("./file0", 0777 [pid 5034] umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./325", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6999] close(3 [pid 6997] <... mkdir resumed>) = 0 [pid 6999] <... close resumed>) = 0 [pid 6997] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 271.988766][ T6997] loop4: detected capacity change from 0 to 4096 [pid 6999] symlink("/dev/binderfs", "./binderfs" [pid 5029] openat(AT_FDCWD, "./325", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6999] <... symlink resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "./324/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6999] memfd_create("syzkaller", 0 [pid 5029] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 4 [pid 5029] newfstatat(3, "", [pid 5031] newfstatat(4, "", [pid 5034] newfstatat(4, "", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] getdents64(4, [pid 5029] umount2("./325/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6999] <... memfd_create resumed>) = 3 [pid 5031] getdents64(4, [pid 5029] newfstatat(AT_FDCWD, "./325/binderfs", [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6999] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] close(4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./325/binderfs" [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./324/file0" [pid 5029] <... unlink resumed>) = 0 [pid 6998] <... write resumed>) = 2097152 [pid 5034] getdents64(4, [pid 5031] <... rmdir resumed>) = 0 [pid 5029] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(3, [pid 5034] getdents64(4, [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 6998] munmap(0x7ff0df171000, 138412032 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5034] close(4 [pid 5031] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] rmdir("./324" [pid 5034] rmdir("./318/file0" [pid 5031] <... rmdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] mkdir("./325", 0777 [pid 5034] getdents64(3, [pid 5031] <... mkdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] close(3) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5034] rmdir("./318" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5034] <... rmdir resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] mkdir("./319", 0777 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7000 ./strace-static-x86_64: Process 7000 attached [pid 7000] set_robust_list(0x55555635e660, 24) = 0 [pid 5034] <... mkdir resumed>) = 0 [ 272.031375][ T6997] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7000] chdir("./325") = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7000] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... openat resumed>) = 3 [pid 7000] <... prctl resumed>) = 0 [pid 7000] setpgid(0, 0) = 0 [pid 7000] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7000] write(3, "1000", 4) = 4 [pid 7000] close(3) = 0 [pid 7000] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7000] memfd_create("syzkaller", 0) = 3 [pid 7000] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 6999] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6998] <... munmap resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6998] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 6998] <... openat resumed>) = 4 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6998] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 7001 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7001 [pid 7001] set_robust_list(0x55555635e660, 24) = 0 [pid 7001] chdir("./319") = 0 [pid 7001] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7001] setpgid(0, 0) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./325/file0", [pid 7001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7001] <... openat resumed>) = 3 [pid 5029] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7001] write(3, "1000", 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6998] <... ioctl resumed>) = 0 [pid 6998] close(3) = 0 [pid 6998] mkdir("./file0", 0777) = 0 [pid 6998] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 272.126718][ T6998] loop3: detected capacity change from 0 to 4096 [pid 5029] openat(AT_FDCWD, "./325/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7001] <... write resumed>) = 4 [pid 6999] <... write resumed>) = 2097152 [pid 6997] <... mount resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 7001] close(3 [pid 6997] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] newfstatat(4, "", [pid 7001] <... close resumed>) = 0 [pid 6997] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6997] chdir("./file0" [pid 7001] symlink("/dev/binderfs", "./binderfs" [pid 5029] getdents64(4, [pid 7001] <... symlink resumed>) = 0 [pid 7000] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 6997] <... chdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7001] memfd_create("syzkaller", 0 [pid 6997] ioctl(4, LOOP_CLR_FD [pid 6999] munmap(0x7ff0df171000, 138412032) = 0 [pid 5029] getdents64(4, [pid 7001] <... memfd_create resumed>) = 3 [pid 6997] <... ioctl resumed>) = 0 [pid 7001] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6997] close(4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 6997] <... close resumed>) = 0 [pid 5029] close(4 [pid 7001] <... mmap resumed>) = 0x7ff0df171000 [pid 6997] exit_group(0 [pid 5029] <... close resumed>) = 0 [pid 6997] <... exit_group resumed>) = ? [pid 5029] rmdir("./325/file0" [pid 6999] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 272.169799][ T6998] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 6999] ioctl(4, LOOP_SET_FD, 3 [pid 6997] +++ exited with 0 +++ [pid 5029] <... rmdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6997, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 5029] getdents64(3, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./319/binderfs", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./319/binderfs" [pid 5029] close(3 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./325") = 0 [pid 5029] mkdir("./326", 0777 [pid 6999] <... ioctl resumed>) = 0 [pid 6999] close(3) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6999] mkdir("./file0", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6999] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] <... openat resumed>) = 3 [pid 7000] <... write resumed>) = 2097152 [ 272.219515][ T6999] loop1: detected capacity change from 0 to 4096 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6998] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7002 ./strace-static-x86_64: Process 7002 attached [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./319/file0", [pid 7002] set_robust_list(0x55555635e660, 24 [pid 7000] munmap(0x7ff0df171000, 138412032 [pid 6998] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7002] <... set_robust_list resumed>) = 0 [pid 7000] <... munmap resumed>) = 0 [pid 6998] <... openat resumed>) = 3 [pid 6998] chdir("./file0" [pid 7002] chdir("./326" [pid 6998] <... chdir resumed>) = 0 [pid 7002] <... chdir resumed>) = 0 [pid 6998] ioctl(4, LOOP_CLR_FD [pid 5033] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7002] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6998] <... ioctl resumed>) = 0 [pid 7002] <... prctl resumed>) = 0 [pid 6998] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7002] setpgid(0, 0 [pid 6998] <... close resumed>) = 0 [pid 7002] <... setpgid resumed>) = 0 [pid 6998] exit_group(0 [pid 7002] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7000] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6998] <... exit_group resumed>) = ? [pid 7000] <... openat resumed>) = 4 [pid 7000] ioctl(4, LOOP_SET_FD, 3 [pid 6998] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6998, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5032] umount2("./327", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7002] <... openat resumed>) = 3 [ 272.274541][ T6999] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7002] write(3, "1000", 4 [pid 7001] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... openat resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7002] <... write resumed>) = 4 [pid 5033] newfstatat(4, "", [pid 5032] openat(AT_FDCWD, "./327", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7002] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7002] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 7002] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 5032] newfstatat(3, "", [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] close(4 [pid 5032] getdents64(3, [pid 7002] memfd_create("syzkaller", 0 [pid 5033] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] rmdir("./319/file0" [pid 5032] umount2("./327/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7002] <... memfd_create resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./327/binderfs", [pid 7002] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7002] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] unlink("./327/binderfs" [pid 5033] close(3) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5033] rmdir("./319" [pid 5032] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7000] <... ioctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7000] close(3) = 0 [pid 7000] mkdir("./file0", 0777 [pid 7001] <... write resumed>) = 2097152 [pid 5033] mkdir("./320", 0777 [pid 7000] <... mkdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [ 272.322840][ T7000] loop2: detected capacity change from 0 to 4096 [pid 7000] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7001] munmap(0x7ff0df171000, 138412032 [pid 5033] ioctl(3, LOOP_CLR_FD) = 0 [pid 5033] close(3 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 272.376855][ T7000] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7001] <... munmap resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6999] <... mount resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./327/file0", [pid 7000] <... mount resumed>) = 0 [pid 7001] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6999] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7001] <... openat resumed>) = 4 [pid 5032] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7001] ioctl(4, LOOP_SET_FD, 3 [pid 7000] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6999] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7000] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./327/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7000] chdir("./file0") = 0 [pid 7000] ioctl(4, LOOP_CLR_FD) = 0 [pid 7000] close(4) = 0 [pid 7000] exit_group(0) = ? [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6999] chdir("./file0" [pid 5032] getdents64(4, [pid 6999] <... chdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 6999] ioctl(4, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7000] +++ exited with 0 +++ [pid 6999] <... ioctl resumed>) = 0 [pid 5032] close(4 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7000, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] <... close resumed>) = 0 [pid 6999] close(4) = 0 [pid 5032] rmdir("./327/file0" [pid 5031] umount2("./325", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6999] exit_group(0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6999] <... exit_group resumed>) = ? [pid 5032] <... rmdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./325", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6999] +++ exited with 0 +++ [pid 5032] getdents64(3, [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6999, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] getdents64(3, [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5032] close(3) = 0 [pid 5031] umount2("./325/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] rmdir("./327" [pid 5030] umount2("./327", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7001] <... ioctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7001] close(3 [pid 5032] mkdir("./328", 0777 [pid 5031] newfstatat(AT_FDCWD, "./325/binderfs", [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "./327", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] unlink("./325/binderfs" [pid 5030] newfstatat(3, "", ./strace-static-x86_64: Process 7003 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7003 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7003] set_robust_list(0x55555635e660, 24 [pid 5030] getdents64(3, [pid 7003] <... set_robust_list resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7001] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./327/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./327/binderfs", [pid 7003] chdir("./320" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7003] <... chdir resumed>) = 0 [pid 5030] unlink("./327/binderfs" [pid 7003] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... unlink resumed>) = 0 [pid 7003] <... prctl resumed>) = 0 [pid 7002] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7003] setpgid(0, 0 [pid 7001] mkdir("./file0", 0777 [pid 7003] <... setpgid resumed>) = 0 [pid 7001] <... mkdir resumed>) = 0 [pid 7001] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7003] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7003] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./327/file0", [pid 7003] write(3, "1000", 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7003] <... write resumed>) = 4 [pid 5030] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7003] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7003] <... close resumed>) = 0 [ 272.457936][ T7001] loop5: detected capacity change from 0 to 4096 [pid 5030] openat(AT_FDCWD, "./327/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7003] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... openat resumed>) = 4 [pid 7003] <... symlink resumed>) = 0 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 7003] memfd_create("syzkaller", 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./327/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7003] <... memfd_create resumed>) = 3 [pid 5030] close(3 [pid 7003] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... close resumed>) = 0 [pid 7003] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] rmdir("./327") = 0 [pid 5030] mkdir("./328", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [ 272.520010][ T7001] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7004 ./strace-static-x86_64: Process 7004 attached [pid 7004] set_robust_list(0x55555635e660, 24) = 0 [pid 7004] chdir("./328") = 0 [pid 7004] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7004] setpgid(0, 0) = 0 [pid 7004] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7004] write(3, "1000", 4) = 4 [pid 7002] <... write resumed>) = 2097152 [pid 5032] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] close(3) = 0 [pid 7004] close(3) = 0 [pid 7004] symlink("/dev/binderfs", "./binderfs" [pid 5031] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7004] <... symlink resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7002] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 7005 attached [pid 7004] memfd_create("syzkaller", 0 [pid 7002] <... munmap resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7005 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7005] set_robust_list(0x55555635e660, 24) = 0 [pid 7004] <... memfd_create resumed>) = 3 [pid 7005] chdir("./328" [pid 7004] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] newfstatat(AT_FDCWD, "./325/file0", [pid 7005] <... chdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7005] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7005] <... prctl resumed>) = 0 [pid 7005] setpgid(0, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./325/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7002] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5031] <... openat resumed>) = 4 [pid 7005] <... setpgid resumed>) = 0 [pid 7002] ioctl(4, LOOP_SET_FD, 3 [pid 5031] newfstatat(4, "", [pid 7005] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7005] write(3, "1000", 4 [pid 7001] <... mount resumed>) = 0 [pid 5031] getdents64(4, [pid 7001] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7005] <... write resumed>) = 4 [pid 7001] chdir("./file0") = 0 [pid 7005] close(3 [pid 7001] ioctl(4, LOOP_CLR_FD [pid 7005] <... close resumed>) = 0 [pid 7005] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7005] memfd_create("syzkaller", 0 [pid 7003] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7001] <... ioctl resumed>) = 0 [pid 5031] getdents64(4, [pid 7001] close(4 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 7005] <... memfd_create resumed>) = 3 [pid 7005] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] rmdir("./325/file0" [pid 7001] <... close resumed>) = 0 [pid 7002] <... ioctl resumed>) = 0 [pid 7002] close(3) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 7002] mkdir("./file0", 0777 [pid 5031] getdents64(3, [pid 7002] <... mkdir resumed>) = 0 [pid 7001] exit_group(0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 7002] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... close resumed>) = 0 [pid 7001] <... exit_group resumed>) = ? [ 272.653798][ T7002] loop0: detected capacity change from 0 to 4096 [pid 5031] rmdir("./325" [pid 7001] +++ exited with 0 +++ [pid 5031] <... rmdir resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7001, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5031] mkdir("./326", 0777) = 0 [pid 5034] umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5034] openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] newfstatat(3, "", [pid 5031] close(3) = 0 [pid 7004] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7006 attached [pid 7006] set_robust_list(0x55555635e660, 24 [pid 5034] getdents64(3, [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7006 [pid 7006] <... set_robust_list resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7006] chdir("./326" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7006] <... chdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./319/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 272.695551][ T7002] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5034] unlink("./319/binderfs" [pid 7006] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... unlink resumed>) = 0 [pid 7006] <... prctl resumed>) = 0 [pid 7006] setpgid(0, 0) = 0 [pid 7003] <... write resumed>) = 2097152 [pid 5034] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7003] munmap(0x7ff0df171000, 138412032 [pid 7006] write(3, "1000", 4 [pid 7003] <... munmap resumed>) = 0 [pid 7006] <... write resumed>) = 4 [pid 7006] close(3) = 0 [pid 7006] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7005] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7002] <... mount resumed>) = 0 [pid 7006] memfd_create("syzkaller", 0 [pid 7003] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7006] <... memfd_create resumed>) = 3 [pid 7004] <... write resumed>) = 2097152 [pid 7003] <... openat resumed>) = 4 [pid 7002] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7006] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7002] <... openat resumed>) = 3 [pid 7002] chdir("./file0") = 0 [pid 7003] ioctl(4, LOOP_SET_FD, 3 [pid 7002] ioctl(4, LOOP_CLR_FD [pid 7006] <... mmap resumed>) = 0x7ff0df171000 [pid 7002] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7002] close(4) = 0 [pid 7002] exit_group(0) = ? [pid 7002] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7002, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 7004] munmap(0x7ff0df171000, 138412032) = 0 [pid 7003] <... ioctl resumed>) = 0 [pid 5029] umount2("./326", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7003] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7003] <... close resumed>) = 0 [pid 7003] mkdir("./file0", 0777) = 0 [pid 5029] openat(AT_FDCWD, "./326", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7003] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 7004] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5029] newfstatat(3, "", [pid 5034] newfstatat(AT_FDCWD, "./319/file0", [pid 7004] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] umount2("./326/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(AT_FDCWD, "./326/binderfs", [pid 5034] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./326/binderfs") = 0 [pid 5029] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7005] <... write resumed>) = 2097152 [pid 7005] munmap(0x7ff0df171000, 138412032 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7004] <... ioctl resumed>) = 0 [pid 7004] close(3) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./319/file0" [pid 7004] mkdir("./file0", 0777 [pid 5034] <... rmdir resumed>) = 0 [pid 7004] <... mkdir resumed>) = 0 [pid 7004] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7005] <... munmap resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7005] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] close(3 [pid 7005] <... openat resumed>) = 4 [pid 7005] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./319") = 0 [pid 5029] <... umount2 resumed>) = 0 [ 272.814211][ T7003] loop4: detected capacity change from 0 to 4096 [ 272.840568][ T7003] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 272.851726][ T7004] loop1: detected capacity change from 0 to 4096 [pid 5029] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7006] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] mkdir("./320", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./326/file0", [pid 5034] <... mkdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./326/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./326/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 7005] <... ioctl resumed>) = 0 [pid 7005] close(3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 7005] <... close resumed>) = 0 [pid 5034] close(3 [pid 7005] mkdir("./file0", 0777 [pid 5034] <... close resumed>) = 0 [pid 5029] rmdir("./326" [pid 7005] <... mkdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... rmdir resumed>) = 0 [pid 7005] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] mkdir("./327", 0777./strace-static-x86_64: Process 7007 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7007 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7007] set_robust_list(0x55555635e660, 24) = 0 [pid 7007] chdir("./320") = 0 [pid 7007] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7007] setpgid(0, 0) = 0 [pid 7007] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7007] <... openat resumed>) = 3 [pid 5029] close(3) = 0 [pid 7007] write(3, "1000", 4 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7007] <... write resumed>) = 4 [ 272.889102][ T7005] loop3: detected capacity change from 0 to 4096 [ 272.895735][ T7004] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 272.919856][ T7005] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7007] close(3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7008 ./strace-static-x86_64: Process 7008 attached [pid 7008] set_robust_list(0x55555635e660, 24) = 0 [pid 7008] chdir("./327") = 0 [pid 7007] <... close resumed>) = 0 [pid 7008] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7007] symlink("/dev/binderfs", "./binderfs" [pid 7008] <... prctl resumed>) = 0 [pid 7008] setpgid(0, 0 [pid 7007] <... symlink resumed>) = 0 [pid 7005] <... mount resumed>) = 0 [pid 7003] <... mount resumed>) = 0 [pid 7008] <... setpgid resumed>) = 0 [pid 7008] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7005] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7004] <... mount resumed>) = 0 [pid 7003] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7008] write(3, "1000", 4 [pid 7005] <... openat resumed>) = 3 [pid 7004] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7008] <... write resumed>) = 4 [pid 7005] chdir("./file0" [pid 7004] <... openat resumed>) = 3 [pid 7008] close(3 [pid 7007] memfd_create("syzkaller", 0 [pid 7005] <... chdir resumed>) = 0 [pid 7004] chdir("./file0" [pid 7003] <... openat resumed>) = 3 [pid 7008] <... close resumed>) = 0 [pid 7008] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7006] <... write resumed>) = 2097152 [pid 7005] ioctl(4, LOOP_CLR_FD [pid 7004] <... chdir resumed>) = 0 [pid 7008] memfd_create("syzkaller", 0 [pid 7007] <... memfd_create resumed>) = 3 [pid 7005] <... ioctl resumed>) = 0 [pid 7004] ioctl(4, LOOP_CLR_FD [pid 7003] chdir("./file0" [pid 7007] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7005] close(4 [pid 7004] <... ioctl resumed>) = 0 [pid 7003] <... chdir resumed>) = 0 [pid 7007] <... mmap resumed>) = 0x7ff0df171000 [pid 7005] <... close resumed>) = 0 [pid 7004] close(4 [pid 7003] ioctl(4, LOOP_CLR_FD [pid 7005] exit_group(0 [pid 7004] <... close resumed>) = 0 [pid 7003] <... ioctl resumed>) = 0 [pid 7005] <... exit_group resumed>) = ? [pid 7004] exit_group(0 [pid 7003] close(4 [pid 7005] +++ exited with 0 +++ [pid 7003] <... close resumed>) = 0 [pid 7008] <... memfd_create resumed>) = 3 [pid 7006] munmap(0x7ff0df171000, 138412032 [pid 7004] <... exit_group resumed>) = ? [pid 7003] exit_group(0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7005, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 7008] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7006] <... munmap resumed>) = 0 [pid 7004] +++ exited with 0 +++ [pid 7003] <... exit_group resumed>) = ? [pid 7008] <... mmap resumed>) = 0x7ff0df171000 [pid 7003] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7004, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] umount2("./328", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./328", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./328", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7003, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7006] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] umount2("./328/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7006] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./328/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7006] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./328/binderfs" [pid 5032] openat(AT_FDCWD, "./328", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(3, "", [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./320/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(3, [pid 5033] unlink("./320/binderfs" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7006] <... ioctl resumed>) = 0 [pid 7006] close(3 [pid 5033] <... unlink resumed>) = 0 [pid 5032] umount2("./328/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7006] <... close resumed>) = 0 [pid 7006] mkdir("./file0", 0777) = 0 [pid 5033] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7006] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 273.040879][ T7006] loop2: detected capacity change from 0 to 4096 [pid 5032] newfstatat(AT_FDCWD, "./328/binderfs", [pid 7007] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./328/binderfs") = 0 [pid 5032] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7008] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] newfstatat(AT_FDCWD, "./328/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./328/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 5033] newfstatat(AT_FDCWD, "./320/file0", [pid 5030] newfstatat(4, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 5033] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] newfstatat(4, "", [pid 5030] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 5030] rmdir("./328/file0" [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... rmdir resumed>) = 0 [pid 5033] getdents64(4, [pid 5030] getdents64(3, [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5030] close(3 [pid 5033] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5033] rmdir("./320/file0" [pid 5030] rmdir("./328" [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [ 273.085160][ T7006] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] mkdir("./329", 0777 [pid 5033] close(3 [pid 5032] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./320") = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] mkdir("./321", 0777 [pid 5032] newfstatat(AT_FDCWD, "./328/file0", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5032] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] close(3 [pid 5032] openat(AT_FDCWD, "./328/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7006] <... mount resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 4 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(4, "", [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5033] <... ioctl resumed>) = 0 [pid 5033] close(3) = 0 ./strace-static-x86_64: Process 7009 attached [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7009] set_robust_list(0x55555635e660, 24 [pid 7007] <... write resumed>) = 2097152 [pid 7006] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7006] <... openat resumed>) = 3 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 7010 attached [pid 7007] munmap(0x7ff0df171000, 138412032 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7009 [pid 7009] <... set_robust_list resumed>) = 0 [pid 7006] chdir("./file0" [pid 7009] chdir("./329" [pid 7006] <... chdir resumed>) = 0 [pid 7009] <... chdir resumed>) = 0 [pid 7006] ioctl(4, LOOP_CLR_FD [pid 7009] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7006] <... ioctl resumed>) = 0 [pid 7010] set_robust_list(0x55555635e660, 24 [pid 7009] <... prctl resumed>) = 0 [pid 7006] close(4 [pid 7010] <... set_robust_list resumed>) = 0 [pid 7006] <... close resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7010 [pid 7009] setpgid(0, 0 [pid 7006] exit_group(0 [pid 5032] close(4 [pid 7010] chdir("./321" [pid 7009] <... setpgid resumed>) = 0 [pid 7007] <... munmap resumed>) = 0 [pid 7006] <... exit_group resumed>) = ? [pid 5032] <... close resumed>) = 0 [pid 7009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7006] +++ exited with 0 +++ [pid 5032] rmdir("./328/file0" [pid 7009] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7006, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7009] write(3, "1000", 4) = 4 [pid 7009] close(3) = 0 [pid 7009] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7010] <... chdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 7010] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./326", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7010] <... prctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7010] setpgid(0, 0 [pid 5032] rmdir("./328" [pid 5031] openat(AT_FDCWD, "./326", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7010] <... setpgid resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 7010] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7008] <... write resumed>) = 2097152 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 7010] <... openat resumed>) = 3 [pid 7009] memfd_create("syzkaller", 0 [pid 5032] mkdir("./329", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7007] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7009] <... memfd_create resumed>) = 3 [pid 7008] munmap(0x7ff0df171000, 138412032 [pid 7010] write(3, "1000", 4 [pid 7009] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7008] <... munmap resumed>) = 0 [pid 7007] <... openat resumed>) = 4 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 7007] ioctl(4, LOOP_SET_FD, 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7009] <... mmap resumed>) = 0x7ff0df171000 [pid 7008] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7008] ioctl(4, LOOP_SET_FD, 3 [pid 7010] <... write resumed>) = 4 [pid 5032] <... openat resumed>) = 3 [pid 5031] umount2("./326/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7010] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./326/binderfs", [pid 7010] <... close resumed>) = 0 [pid 7010] symlink("/dev/binderfs", "./binderfs" [pid 7007] <... ioctl resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7010] <... symlink resumed>) = 0 [pid 7007] close(3 [pid 5031] unlink("./326/binderfs" [pid 7008] <... ioctl resumed>) = 0 [pid 7008] close(3 [pid 7007] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 7008] <... close resumed>) = 0 [pid 7008] mkdir("./file0", 0777) = 0 [pid 7007] mkdir("./file0", 0777 [pid 5031] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7008] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7010] memfd_create("syzkaller", 0 [pid 7007] <... mkdir resumed>) = 0 [pid 7010] <... memfd_create resumed>) = 3 [pid 7007] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7010] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./326/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./326/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [ 273.219634][ T7007] loop5: detected capacity change from 0 to 4096 [ 273.224805][ T7008] loop0: detected capacity change from 0 to 4096 [ 273.245786][ T7008] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 273.256864][ T7007] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5031] rmdir("./326/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./326") = 0 [pid 5031] mkdir("./327", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7011 attached [pid 7011] set_robust_list(0x55555635e660, 24) = 0 [pid 7011] chdir("./327") = 0 [pid 7011] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7009] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7011] <... prctl resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7011 [pid 7011] setpgid(0, 0) = 0 [pid 7011] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7011] write(3, "1000", 4) = 4 [pid 7011] close(3) = 0 [pid 7011] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] <... ioctl resumed>) = 0 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7011] memfd_create("syzkaller", 0) = 3 [pid 7011] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7012 ./strace-static-x86_64: Process 7012 attached [pid 7012] set_robust_list(0x55555635e660, 24) = 0 [pid 7007] <... mount resumed>) = 0 [pid 7012] chdir("./329") = 0 [pid 7007] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7012] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7012] setpgid(0, 0 [pid 7007] <... openat resumed>) = 3 [pid 7012] <... setpgid resumed>) = 0 [pid 7012] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7007] chdir("./file0") = 0 [pid 7007] ioctl(4, LOOP_CLR_FD) = 0 [pid 7012] write(3, "1000", 4 [pid 7008] <... mount resumed>) = 0 [pid 7007] close(4 [pid 7012] <... write resumed>) = 4 [pid 7010] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7007] <... close resumed>) = 0 [pid 7012] close(3) = 0 [pid 7012] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7012] memfd_create("syzkaller", 0 [pid 7007] exit_group(0 [pid 7008] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7008] chdir("./file0") = 0 [pid 7008] ioctl(4, LOOP_CLR_FD) = 0 [pid 7008] close(4) = 0 [pid 7008] exit_group(0) = ? [pid 7008] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7008, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 7012] <... memfd_create resumed>) = 3 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7012] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7007] <... exit_group resumed>) = ? [pid 7012] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... restart_syscall resumed>) = 0 [pid 7007] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7007, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7009] <... write resumed>) = 2097152 [pid 5034] umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./327", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./327", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(3, "", [pid 5034] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 5034] getdents64(3, [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./327/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./320/binderfs", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./327/binderfs", [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./320/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7009] munmap(0x7ff0df171000, 138412032 [pid 5029] unlink("./327/binderfs" [pid 7009] <... munmap resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7011] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7009] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 7009] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7010] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./320/file0", [pid 7010] munmap(0x7ff0df171000, 138412032 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7009] <... ioctl resumed>) = 0 [pid 7009] close(3 [pid 7012] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7010] <... munmap resumed>) = 0 [pid 7009] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7009] mkdir("./file0", 0777 [pid 5034] openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7010] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7009] <... mkdir resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 7010] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 7009] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 273.455132][ T7009] loop1: detected capacity change from 0 to 4096 [pid 7010] ioctl(4, LOOP_SET_FD, 3 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./320/file0" [pid 7010] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 7011] <... write resumed>) = 2097152 [pid 7010] close(3 [pid 5034] getdents64(3, [pid 5029] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7010] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7010] mkdir("./file0", 0777 [pid 5034] close(3) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./320" [pid 5029] newfstatat(AT_FDCWD, "./327/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./321", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./327/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 5034] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7010] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] close(4 [pid 7010] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 5034] close(3 [pid 5029] rmdir("./327/file0" [pid 5034] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 273.516858][ T7010] loop4: detected capacity change from 0 to 4096 [ 273.528024][ T7009] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). ./strace-static-x86_64: Process 7013 attached [pid 5029] close(3) = 0 [pid 5029] rmdir("./327" [pid 7011] munmap(0x7ff0df171000, 138412032 [pid 5029] <... rmdir resumed>) = 0 [pid 7011] <... munmap resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7013 [pid 5029] mkdir("./328", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7014 ./strace-static-x86_64: Process 7014 attached [pid 7014] set_robust_list(0x55555635e660, 24) = 0 [pid 7013] set_robust_list(0x55555635e660, 24 [pid 7014] chdir("./328" [pid 7011] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7014] <... chdir resumed>) = 0 [pid 7011] <... openat resumed>) = 4 [pid 7014] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7011] ioctl(4, LOOP_SET_FD, 3 [pid 7013] <... set_robust_list resumed>) = 0 [pid 7014] setpgid(0, 0 [pid 7013] chdir("./321" [pid 7014] <... setpgid resumed>) = 0 [pid 7014] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7013] <... chdir resumed>) = 0 [pid 7014] write(3, "1000", 4) = 4 [pid 7014] close(3) = 0 [pid 7014] symlink("/dev/binderfs", "./binderfs" [pid 7013] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7014] <... symlink resumed>) = 0 [pid 7013] <... prctl resumed>) = 0 [pid 7014] memfd_create("syzkaller", 0 [pid 7013] setpgid(0, 0) = 0 [pid 7013] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7014] <... memfd_create resumed>) = 3 [pid 7013] <... openat resumed>) = 3 [pid 7013] write(3, "1000", 4) = 4 [pid 7013] close(3 [pid 7014] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7010] <... mount resumed>) = 0 [pid 7010] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7013] <... close resumed>) = 0 [pid 7014] <... mmap resumed>) = 0x7ff0df171000 [pid 7013] symlink("/dev/binderfs", "./binderfs" [pid 7010] chdir("./file0" [pid 7009] <... mount resumed>) = 0 [pid 7013] <... symlink resumed>) = 0 [pid 7012] <... write resumed>) = 2097152 [pid 7010] <... chdir resumed>) = 0 [pid 7009] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7011] <... ioctl resumed>) = 0 [pid 7011] close(3) = 0 [pid 7010] ioctl(4, LOOP_CLR_FD [pid 7009] <... openat resumed>) = 3 [pid 7012] munmap(0x7ff0df171000, 138412032 [pid 7011] mkdir("./file0", 0777 [pid 7012] <... munmap resumed>) = 0 [pid 7010] <... ioctl resumed>) = 0 [ 273.568630][ T7010] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 273.583359][ T7011] loop2: detected capacity change from 0 to 4096 [pid 7009] chdir("./file0" [pid 7013] memfd_create("syzkaller", 0 [pid 7011] <... mkdir resumed>) = 0 [pid 7010] close(4 [pid 7009] <... chdir resumed>) = 0 [pid 7009] ioctl(4, LOOP_CLR_FD) = 0 [pid 7009] close(4) = 0 [pid 7009] exit_group(0) = ? [pid 7011] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7013] <... memfd_create resumed>) = 3 [pid 7012] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7010] <... close resumed>) = 0 [pid 7009] +++ exited with 0 +++ [pid 7013] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7009, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7010] exit_group(0 [pid 7012] <... openat resumed>) = 4 [pid 7010] <... exit_group resumed>) = ? [pid 5030] umount2("./329", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./329", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7012] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... openat resumed>) = 3 [pid 7010] +++ exited with 0 +++ [pid 5030] newfstatat(3, "", [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7010, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./329/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./329/binderfs", [pid 5033] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(3, "", [pid 5030] unlink("./329/binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5033] getdents64(3, [pid 5030] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./321/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./321/binderfs") = 0 [pid 5033] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7012] <... ioctl resumed>) = 0 [pid 7012] close(3) = 0 [ 273.640136][ T7011] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 273.665220][ T7012] loop3: detected capacity change from 0 to 4096 [pid 7012] mkdir("./file0", 0777) = 0 [pid 7012] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7014] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7013] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./321/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 273.702466][ T7012] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7011] <... mount resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 7011] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7011] <... openat resumed>) = 3 [pid 5033] getdents64(4, [pid 7011] chdir("./file0" [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7011] <... chdir resumed>) = 0 [pid 7011] ioctl(4, LOOP_CLR_FD [pid 5033] getdents64(4, [pid 7011] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7011] close(4 [pid 5033] close(4 [pid 7011] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7011] exit_group(0 [pid 5033] rmdir("./321/file0") = 0 [pid 7011] <... exit_group resumed>) = ? [pid 7011] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7011, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5031] umount2("./327", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./327", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5033] rmdir("./321" [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] umount2("./327/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./327/binderfs", [pid 5030] <... umount2 resumed>) = 0 [pid 5033] mkdir("./322", 0777) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./327/binderfs") = 0 [pid 5031] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7014] <... write resumed>) = 2097152 [pid 5030] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 7014] munmap(0x7ff0df171000, 138412032 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7014] <... munmap resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./329/file0", [pid 5033] close(3) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7015 [pid 5030] openat(AT_FDCWD, "./329/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7015 attached [pid 7014] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5030] getdents64(4, [pid 7015] set_robust_list(0x55555635e660, 24 [pid 7014] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7014] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, [pid 5031] <... umount2 resumed>) = 0 [pid 7015] <... set_robust_list resumed>) = 0 [pid 7013] <... write resumed>) = 2097152 [pid 7015] chdir("./322" [pid 5031] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7015] <... chdir resumed>) = 0 [pid 7015] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7015] <... prctl resumed>) = 0 [pid 7015] setpgid(0, 0) = 0 [pid 7015] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] newfstatat(AT_FDCWD, "./327/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7012] <... mount resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./327/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(4) = 0 [pid 7015] <... openat resumed>) = 3 [pid 7012] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... openat resumed>) = 4 [pid 5030] rmdir("./329/file0" [pid 5031] newfstatat(4, "", [pid 7015] write(3, "1000", 4 [pid 7012] <... openat resumed>) = 3 [pid 7015] <... write resumed>) = 4 [pid 7012] chdir("./file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 7013] munmap(0x7ff0df171000, 138412032 [pid 7012] <... chdir resumed>) = 0 [pid 7015] close(3 [pid 7013] <... munmap resumed>) = 0 [pid 7012] ioctl(4, LOOP_CLR_FD [pid 5031] getdents64(4, [pid 5030] getdents64(3, [pid 7015] <... close resumed>) = 0 [pid 7015] symlink("/dev/binderfs", "./binderfs" [pid 7012] <... ioctl resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7015] <... symlink resumed>) = 0 [pid 7014] <... ioctl resumed>) = 0 [pid 7012] close(4 [pid 5031] getdents64(4, [pid 5030] close(3 [pid 7014] close(3) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... close resumed>) = 0 [pid 7014] mkdir("./file0", 0777 [pid 5031] close(4 [pid 5030] rmdir("./329" [pid 7014] <... mkdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 7012] <... close resumed>) = 0 [pid 7014] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7012] exit_group(0 [pid 7015] memfd_create("syzkaller", 0 [pid 7012] <... exit_group resumed>) = ? [pid 5031] rmdir("./327/file0" [pid 5030] <... rmdir resumed>) = 0 [pid 7012] +++ exited with 0 +++ [pid 5031] <... rmdir resumed>) = 0 [pid 5030] mkdir("./330", 0777 [pid 7015] <... memfd_create resumed>) = 3 [pid 7013] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7012, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 7015] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7013] <... openat resumed>) = 4 [pid 7015] <... mmap resumed>) = 0x7ff0df171000 [ 273.837360][ T7014] loop0: detected capacity change from 0 to 4096 [ 273.874341][ T7014] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7013] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(3, [pid 5030] <... mkdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] close(3 [pid 5030] <... openat resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5031] rmdir("./327" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] umount2("./329", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 5030] close(3) = 0 [pid 5032] openat(AT_FDCWD, "./329", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./329/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./329/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7013] <... ioctl resumed>) = 0 [pid 5032] unlink("./329/binderfs"./strace-static-x86_64: Process 7016 attached [pid 7013] close(3 [pid 5032] <... unlink resumed>) = 0 [pid 5031] mkdir("./328", 0777 [pid 7016] set_robust_list(0x55555635e660, 24 [pid 5032] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7013] <... close resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 7016] <... set_robust_list resumed>) = 0 [pid 7016] chdir("./330" [pid 7013] mkdir("./file0", 0777 [pid 7016] <... chdir resumed>) = 0 [pid 7013] <... mkdir resumed>) = 0 [pid 7016] prctl(PR_SET_PDEATHSIG, SIGKILL [ 273.885647][ T7013] loop5: detected capacity change from 0 to 4096 [pid 7013] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7016] <... prctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7016 [pid 5031] <... openat resumed>) = 3 [pid 7016] setpgid(0, 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7016] <... setpgid resumed>) = 0 [pid 7016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7017 [pid 7016] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7017 attached [pid 7016] write(3, "1000", 4 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7017] set_robust_list(0x55555635e660, 24 [pid 7016] <... write resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./329/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./329/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7016] close(3 [pid 5032] <... openat resumed>) = 4 [ 273.914668][ T7013] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5032] newfstatat(4, "", [pid 7017] <... set_robust_list resumed>) = 0 [pid 7016] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7016] symlink("/dev/binderfs", "./binderfs" [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 7017] chdir("./328" [pid 7016] <... symlink resumed>) = 0 [pid 7014] <... mount resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 7014] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 7014] <... openat resumed>) = 3 [pid 5032] rmdir("./329/file0" [pid 7014] chdir("./file0" [pid 5032] <... rmdir resumed>) = 0 [pid 7017] <... chdir resumed>) = 0 [pid 7014] <... chdir resumed>) = 0 [pid 5032] getdents64(3, [pid 7017] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7014] ioctl(4, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7017] setpgid(0, 0 [pid 7014] <... ioctl resumed>) = 0 [pid 5032] close(3 [pid 7014] close(4 [pid 5032] <... close resumed>) = 0 [pid 7014] <... close resumed>) = 0 [pid 7014] exit_group(0 [pid 5032] rmdir("./329" [pid 7014] <... exit_group resumed>) = ? [pid 5032] <... rmdir resumed>) = 0 [pid 7017] <... setpgid resumed>) = 0 [pid 7016] memfd_create("syzkaller", 0 [pid 5032] mkdir("./330", 0777 [pid 7017] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... mkdir resumed>) = 0 [pid 7017] <... openat resumed>) = 3 [pid 7017] write(3, "1000", 4) = 4 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7014] +++ exited with 0 +++ [pid 7016] <... memfd_create resumed>) = 3 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7014, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 7017] close(3 [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./328", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./328", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7017] <... close resumed>) = 0 [pid 7016] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... openat resumed>) = 3 [pid 7017] symlink("/dev/binderfs", "./binderfs" [pid 7016] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] newfstatat(3, "", [pid 7017] <... symlink resumed>) = 0 [pid 7015] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7017] memfd_create("syzkaller", 0 [pid 5029] umount2("./328/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7017] <... memfd_create resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./328/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./328/binderfs") = 0 [pid 5029] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7017] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 7018 attached ) = 0x7ff0df171000 [pid 7013] <... mount resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7018 [pid 7018] set_robust_list(0x55555635e660, 24 [pid 7013] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7018] <... set_robust_list resumed>) = 0 [pid 7013] <... openat resumed>) = 3 [pid 7018] chdir("./330") = 0 [pid 7013] chdir("./file0" [pid 7018] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7013] <... chdir resumed>) = 0 [pid 7018] <... prctl resumed>) = 0 [pid 7013] ioctl(4, LOOP_CLR_FD [pid 7018] setpgid(0, 0) = 0 [pid 7013] <... ioctl resumed>) = 0 [pid 7018] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7013] close(4 [pid 7018] <... openat resumed>) = 3 [pid 7013] <... close resumed>) = 0 [pid 7013] exit_group(0 [pid 7018] write(3, "1000", 4) = 4 [pid 7018] close(3) = 0 [pid 7018] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7013] <... exit_group resumed>) = ? [pid 7013] +++ exited with 0 +++ [pid 7018] memfd_create("syzkaller", 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7013, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7018] <... memfd_create resumed>) = 3 [pid 7018] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7016] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7018] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7015] <... write resumed>) = 2097152 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7015] munmap(0x7ff0df171000, 138412032 [pid 5034] getdents64(3, [pid 7015] <... munmap resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7017] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] newfstatat(AT_FDCWD, "./321/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./321/binderfs" [pid 7015] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5034] <... unlink resumed>) = 0 [pid 7015] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./328/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./328/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 7015] <... ioctl resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7015] close(3) = 0 [pid 5029] getdents64(4, [pid 7015] mkdir("./file0", 0777) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 274.134238][ T7015] loop4: detected capacity change from 0 to 4096 [pid 5029] getdents64(4, [pid 7015] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 7016] <... write resumed>) = 2097152 [pid 5034] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./328/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5034] newfstatat(AT_FDCWD, "./321/file0", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 7017] <... write resumed>) = 2097152 [pid 7016] munmap(0x7ff0df171000, 138412032 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] rmdir("./328" [pid 5034] umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7018] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 7017] munmap(0x7ff0df171000, 138412032 [pid 5034] openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] mkdir("./329", 0777 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 5029] <... mkdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] getdents64(4, [pid 7016] <... munmap resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... openat resumed>) = 3 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(4 [pid 5029] close(3 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./321/file0" [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7017] <... munmap resumed>) = 0 [pid 7016] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 7019 attached [pid 7017] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7016] <... openat resumed>) = 4 [ 274.185832][ T7015] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5034] getdents64(3, [pid 7019] set_robust_list(0x55555635e660, 24 [pid 7017] <... openat resumed>) = 4 [pid 7016] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7019 [pid 5034] close(3) = 0 [pid 5034] rmdir("./321" [pid 7019] <... set_robust_list resumed>) = 0 [pid 7017] ioctl(4, LOOP_SET_FD, 3 [pid 7019] chdir("./329") = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 7019] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7017] <... ioctl resumed>) = 0 [pid 7016] <... ioctl resumed>) = 0 [pid 7015] <... mount resumed>) = 0 [pid 5034] mkdir("./322", 0777) = 0 [pid 7019] <... prctl resumed>) = 0 [pid 7015] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7017] close(3 [pid 5034] <... openat resumed>) = 3 [pid 7017] <... close resumed>) = 0 [pid 7015] <... openat resumed>) = 3 [pid 7017] mkdir("./file0", 0777 [pid 7015] chdir("./file0" [pid 7019] setpgid(0, 0 [pid 7017] <... mkdir resumed>) = 0 [pid 7015] <... chdir resumed>) = 0 [pid 7015] ioctl(4, LOOP_CLR_FD [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7019] <... setpgid resumed>) = 0 [pid 7015] <... ioctl resumed>) = 0 [pid 7019] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7015] close(4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7015] <... close resumed>) = 0 [pid 5034] close(3 [pid 7015] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7019] <... openat resumed>) = 3 [pid 7017] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7016] close(3 [pid 7015] <... exit_group resumed>) = ? [pid 7019] write(3, "1000", 4./strace-static-x86_64: Process 7020 attached [pid 7020] set_robust_list(0x55555635e660, 24) = 0 [pid 7020] chdir("./322") = 0 [pid 7020] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7019] <... write resumed>) = 4 [pid 7016] <... close resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7020 [pid 7019] close(3 [pid 7016] mkdir("./file0", 0777 [pid 7020] <... prctl resumed>) = 0 [pid 7020] setpgid(0, 0) = 0 [pid 7020] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7016] <... mkdir resumed>) = 0 [pid 7020] <... openat resumed>) = 3 [pid 7015] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7015, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./322", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./322", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7020] write(3, "1000", 4 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7019] <... close resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7020] <... write resumed>) = 4 [pid 5033] umount2("./322/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [ 274.240082][ T7016] loop1: detected capacity change from 0 to 4096 [ 274.249549][ T7017] loop2: detected capacity change from 0 to 4096 [ 274.278436][ T7017] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7019] symlink("/dev/binderfs", "./binderfs" [pid 7016] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7020] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7020] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./322/binderfs", [pid 7020] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7020] <... symlink resumed>) = 0 [pid 5033] unlink("./322/binderfs") = 0 [pid 7020] memfd_create("syzkaller", 0 [pid 7019] <... symlink resumed>) = 0 [pid 5033] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7019] memfd_create("syzkaller", 0 [pid 7018] <... write resumed>) = 2097152 [pid 7018] munmap(0x7ff0df171000, 138412032) = 0 [pid 7019] <... memfd_create resumed>) = 3 [pid 7019] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7020] <... memfd_create resumed>) = 3 [pid 7019] <... mmap resumed>) = 0x7ff0df171000 [pid 7020] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 274.294245][ T7016] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] <... umount2 resumed>) = 0 [pid 7018] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7018] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7018] ioctl(4, LOOP_SET_FD, 3 [pid 5033] newfstatat(AT_FDCWD, "./322/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./322/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./322/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./322") = 0 [pid 5033] mkdir("./323", 0777 [pid 7018] <... ioctl resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [ 274.337609][ T7018] loop3: detected capacity change from 0 to 4096 [pid 7018] close(3) = 0 [pid 7018] mkdir("./file0", 0777 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7018] <... mkdir resumed>) = 0 [pid 7018] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7021 attached [pid 7016] <... mount resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7021 [pid 7021] set_robust_list(0x55555635e660, 24) = 0 [pid 7016] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7021] chdir("./323" [pid 7016] <... openat resumed>) = 3 [pid 7019] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7016] chdir("./file0" [pid 7021] <... chdir resumed>) = 0 [pid 7016] <... chdir resumed>) = 0 [pid 7016] ioctl(4, LOOP_CLR_FD [pid 7021] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7016] <... ioctl resumed>) = 0 [pid 7021] <... prctl resumed>) = 0 [pid 7021] setpgid(0, 0) = 0 [pid 7021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7016] close(4) = 0 [pid 7021] <... openat resumed>) = 3 [pid 7016] exit_group(0 [pid 7021] write(3, "1000", 4 [pid 7016] <... exit_group resumed>) = ? [pid 7021] <... write resumed>) = 4 [pid 7016] +++ exited with 0 +++ [pid 7021] close(3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7016, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 7021] <... close resumed>) = 0 [pid 7021] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7021] memfd_create("syzkaller", 0 [pid 5030] umount2("./330", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7021] <... memfd_create resumed>) = 3 [pid 7020] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7021] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7017] <... mount resumed>) = 0 [pid 7021] <... mmap resumed>) = 0x7ff0df171000 [pid 7017] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./330", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7017] <... openat resumed>) = 3 [ 274.383660][ T7018] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5030] <... openat resumed>) = 3 [pid 7017] chdir("./file0") = 0 [pid 7017] ioctl(4, LOOP_CLR_FD [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 7017] <... ioctl resumed>) = 0 [pid 7017] close(4) = 0 [pid 7017] exit_group(0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7017] <... exit_group resumed>) = ? [pid 5030] umount2("./330/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7017] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7017, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- [pid 5031] umount2("./328", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./330/binderfs", [pid 5031] openat(AT_FDCWD, "./328", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7018] <... mount resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./328/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./330/binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7018] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./328/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./328/binderfs") = 0 [pid 7018] <... openat resumed>) = 3 [pid 7018] chdir("./file0" [pid 5031] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7018] <... chdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 7018] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7018] <... ioctl resumed>) = 0 [pid 7019] <... write resumed>) = 2097152 [pid 7018] close(4 [pid 5031] <... umount2 resumed>) = 0 [pid 7018] <... close resumed>) = 0 [pid 5031] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7018] exit_group(0) = ? [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./328/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./328/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7019] munmap(0x7ff0df171000, 138412032 [pid 7018] +++ exited with 0 +++ [pid 7020] <... write resumed>) = 2097152 [pid 7019] <... munmap resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7018, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=3 /* 0.03 s */} --- [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5032] umount2("./330", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 7019] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./328/file0" [pid 5032] openat(AT_FDCWD, "./330", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] getdents64(3, [pid 7019] <... openat resumed>) = 4 [pid 5032] newfstatat(3, "", [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] close(3 [pid 5032] getdents64(3, [pid 5031] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] rmdir("./328" [pid 7019] ioctl(4, LOOP_SET_FD, 3 [pid 5032] umount2("./330/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] mkdir("./329", 0777 [pid 7020] munmap(0x7ff0df171000, 138412032) = 0 [pid 5032] newfstatat(AT_FDCWD, "./330/binderfs", [pid 5031] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7019] <... ioctl resumed>) = 0 [pid 5032] unlink("./330/binderfs" [pid 5031] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 7019] close(3) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7019] mkdir("./file0", 0777 [pid 5030] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7021] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7019] <... mkdir resumed>) = 0 [pid 5032] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7019] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(AT_FDCWD, "./330/file0", ./strace-static-x86_64: Process 7022 attached [pid 7020] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7020] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7022 [pid 7022] set_robust_list(0x55555635e660, 24 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7022] <... set_robust_list resumed>) = 0 [pid 5030] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7022] chdir("./329" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./330/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7022] <... chdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 7020] <... ioctl resumed>) = 0 [pid 7020] close(3) = 0 [ 274.534465][ T7019] loop0: detected capacity change from 0 to 4096 [ 274.558419][ T7019] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 274.564913][ T7020] loop5: detected capacity change from 0 to 4096 [pid 7020] mkdir("./file0", 0777 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7022] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] close(4) = 0 [pid 7020] <... mkdir resumed>) = 0 [pid 7020] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7022] <... prctl resumed>) = 0 [pid 5030] rmdir("./330/file0" [pid 7022] setpgid(0, 0) = 0 [pid 7021] <... write resumed>) = 2097152 [pid 5030] <... rmdir resumed>) = 0 [pid 7022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] getdents64(3, [pid 7022] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 7022] write(3, "1000", 4) = 4 [pid 5030] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7022] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./330" [pid 5032] newfstatat(AT_FDCWD, "./330/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 7022] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./330/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] mkdir("./331", 0777 [pid 7022] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5030] <... mkdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7022] <... symlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5030] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] rmdir("./330/file0" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... rmdir resumed>) = 0 [pid 5030] close(3 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... close resumed>) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./330" [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7022] memfd_create("syzkaller", 0 [pid 7021] munmap(0x7ff0df171000, 138412032 [pid 5032] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 7023 attached [pid 7022] <... memfd_create resumed>) = 3 [pid 7021] <... munmap resumed>) = 0 [pid 5032] mkdir("./331", 0777 [ 274.604983][ T7020] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7022] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7023] set_robust_list(0x55555635e660, 24 [pid 7022] <... mmap resumed>) = 0x7ff0df171000 [pid 7020] <... mount resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7023 [pid 7020] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7020] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 7020] chdir("./file0") = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7020] ioctl(4, LOOP_CLR_FD [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7020] <... ioctl resumed>) = 0 [pid 5032] close(3 [pid 7021] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7020] close(4 [pid 5032] <... close resumed>) = 0 [pid 7021] <... openat resumed>) = 4 [pid 7020] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7023] <... set_robust_list resumed>) = 0 [pid 7021] ioctl(4, LOOP_SET_FD, 3 [pid 7020] exit_group(0 [pid 7023] chdir("./331" [pid 7021] <... ioctl resumed>) = 0 [pid 7020] <... exit_group resumed>) = ? [pid 7023] <... chdir resumed>) = 0 [pid 7023] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7024 [pid 7023] setpgid(0, 0 [pid 7020] +++ exited with 0 +++ [pid 7023] <... setpgid resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7020, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- ./strace-static-x86_64: Process 7024 attached [pid 7023] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7024] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./322", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7024] <... set_robust_list resumed>) = 0 [pid 7023] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7024] chdir("./331" [pid 5034] openat(AT_FDCWD, "./322", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7024] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 7023] write(3, "1000", 4 [pid 5034] newfstatat(3, "", [pid 7024] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7021] close(3 [pid 7024] <... prctl resumed>) = 0 [pid 7021] <... close resumed>) = 0 [pid 7024] setpgid(0, 0 [pid 7021] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7024] <... setpgid resumed>) = 0 [pid 7023] <... write resumed>) = 4 [pid 7021] <... mkdir resumed>) = 0 [pid 7019] <... mount resumed>) = 0 [pid 5034] getdents64(3, [pid 7024] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7023] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7024] <... openat resumed>) = 3 [pid 7023] <... close resumed>) = 0 [pid 7019] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./322/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7023] symlink("/dev/binderfs", "./binderfs" [pid 7021] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7019] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7024] write(3, "1000", 4 [pid 7023] <... symlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./322/binderfs", [pid 7024] <... write resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7024] close(3 [pid 5034] unlink("./322/binderfs" [pid 7024] <... close resumed>) = 0 [ 274.675986][ T7021] loop4: detected capacity change from 0 to 4096 [pid 7024] symlink("/dev/binderfs", "./binderfs" [pid 7023] memfd_create("syzkaller", 0 [pid 7019] chdir("./file0" [pid 5034] <... unlink resumed>) = 0 [pid 7024] <... symlink resumed>) = 0 [pid 7024] memfd_create("syzkaller", 0 [pid 5034] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7023] <... memfd_create resumed>) = 3 [pid 7019] <... chdir resumed>) = 0 [pid 7023] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7019] ioctl(4, LOOP_CLR_FD) = 0 [pid 7023] <... mmap resumed>) = 0x7ff0df171000 [pid 7019] close(4 [pid 7024] <... memfd_create resumed>) = 3 [pid 7024] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7019] <... close resumed>) = 0 [pid 7022] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7019] exit_group(0) = ? [pid 7019] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7019, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] umount2("./329", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./329", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 274.728688][ T7021] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./329/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./329/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./329/binderfs") = 0 [pid 5029] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7021] <... mount resumed>) = 0 [pid 7024] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7021] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7021] chdir("./file0") = 0 [pid 7021] ioctl(4, LOOP_CLR_FD) = 0 [pid 7021] close(4) = 0 [pid 7021] exit_group(0) = ? [pid 7021] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7021, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5034] <... umount2 resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7023] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7022] <... write resumed>) = 2097152 [pid 5034] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./323", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./329/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./323", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(AT_FDCWD, "./322/file0", [pid 5033] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] openat(AT_FDCWD, "./329/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./322/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./323/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./323/binderfs", [pid 5029] newfstatat(4, "", [pid 5034] openat(AT_FDCWD, "./322/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] unlink("./323/binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(4, "", [pid 5033] <... unlink resumed>) = 0 [pid 7022] munmap(0x7ff0df171000, 138412032 [pid 5029] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 7022] <... munmap resumed>) = 0 [pid 5034] rmdir("./322/file0" [pid 5029] getdents64(4, [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] getdents64(3, [pid 5029] close(4) = 0 [pid 5029] rmdir("./329/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7022] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] close(3) = 0 [pid 5029] rmdir("./329") = 0 [pid 7022] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] mkdir("./330", 0777 [pid 5034] close(3) = 0 [pid 5033] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] rmdir("./322" [pid 7023] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... mkdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./323/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7024] <... write resumed>) = 2097152 [pid 7023] munmap(0x7ff0df171000, 138412032 [pid 7022] ioctl(4, LOOP_SET_FD, 3 [pid 5034] mkdir("./323", 0777 [pid 5033] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./323/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", [pid 7024] munmap(0x7ff0df171000, 138412032 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./323/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./323" [pid 5029] <... openat resumed>) = 3 [pid 7024] <... munmap resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./324", 0777) = 0 [pid 7024] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 7024] ioctl(4, LOOP_SET_FD, 3 [pid 7023] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] ioctl(3, LOOP_CLR_FD) = 0 [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7025 attached [pid 7023] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 7025] set_robust_list(0x55555635e660, 24 [pid 7023] <... openat resumed>) = 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7025] <... set_robust_list resumed>) = 0 [pid 7023] ioctl(4, LOOP_SET_FD, 3 [pid 5034] close(3 [pid 5029] <... close resumed>) = 0 [pid 7025] chdir("./324" [pid 5034] <... close resumed>) = 0 [pid 7025] <... chdir resumed>) = 0 [pid 7022] <... ioctl resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7025 [pid 7022] close(3 [pid 7025] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7025] setpgid(0, 0) = 0 [pid 7024] <... ioctl resumed>) = 0 [pid 7024] close(3) = 0 [pid 7022] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7026 [pid 7025] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7024] mkdir("./file0", 0777) = 0 [pid 7022] mkdir("./file0", 0777./strace-static-x86_64: Process 7026 attached [pid 7025] <... openat resumed>) = 3 [pid 7024] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7022] <... mkdir resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7027 [pid 7026] set_robust_list(0x55555635e660, 24 [pid 7025] write(3, "1000", 4 [pid 7026] <... set_robust_list resumed>) = 0 [pid 7025] <... write resumed>) = 4 [pid 7026] chdir("./330" [pid 7025] close(3) = 0 [ 274.917487][ T7022] loop2: detected capacity change from 0 to 4096 [ 274.930569][ T7024] loop3: detected capacity change from 0 to 4096 [ 274.942456][ T7023] loop1: detected capacity change from 0 to 4096 [pid 7025] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7022] mount("/dev/loop2", "./file0", "ntfs3", 0, ""./strace-static-x86_64: Process 7027 attached [pid 7026] <... chdir resumed>) = 0 [pid 7025] memfd_create("syzkaller", 0 [pid 7023] <... ioctl resumed>) = 0 [pid 7025] <... memfd_create resumed>) = 3 [pid 7025] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7023] close(3) = 0 [pid 7026] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7023] mkdir("./file0", 0777 [pid 7026] <... prctl resumed>) = 0 [pid 7027] set_robust_list(0x55555635e660, 24 [pid 7026] setpgid(0, 0) = 0 [pid 7026] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7027] <... set_robust_list resumed>) = 0 [pid 7027] chdir("./323") = 0 [pid 7026] <... openat resumed>) = 3 [pid 7023] <... mkdir resumed>) = 0 [pid 7027] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7026] write(3, "1000", 4) = 4 [pid 7023] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7026] close(3 [pid 7027] <... prctl resumed>) = 0 [pid 7026] <... close resumed>) = 0 [pid 7027] setpgid(0, 0 [pid 7026] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7027] <... setpgid resumed>) = 0 [pid 7027] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7027] write(3, "1000", 4) = 4 [ 274.962869][ T7024] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 274.971880][ T7022] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7027] close(3) = 0 [pid 7027] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7027] memfd_create("syzkaller", 0 [pid 7026] memfd_create("syzkaller", 0 [pid 7027] <... memfd_create resumed>) = 3 [pid 7027] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7026] <... memfd_create resumed>) = 3 [pid 7026] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 275.009874][ T7023] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7023] <... mount resumed>) = 0 [pid 7023] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7025] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7024] <... mount resumed>) = 0 [pid 7023] <... openat resumed>) = 3 [pid 7022] <... mount resumed>) = 0 [pid 7024] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7023] chdir("./file0" [pid 7022] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7024] <... openat resumed>) = 3 [pid 7023] <... chdir resumed>) = 0 [pid 7022] <... openat resumed>) = 3 [pid 7024] chdir("./file0" [pid 7023] ioctl(4, LOOP_CLR_FD [pid 7022] chdir("./file0" [pid 7024] <... chdir resumed>) = 0 [pid 7023] <... ioctl resumed>) = 0 [pid 7024] ioctl(4, LOOP_CLR_FD) = 0 [pid 7024] close(4) = 0 [pid 7024] exit_group(0) = ? [pid 7024] +++ exited with 0 +++ [pid 7023] close(4 [pid 7022] <... chdir resumed>) = 0 [pid 7022] ioctl(4, LOOP_CLR_FD [pid 7023] <... close resumed>) = 0 [pid 7022] <... ioctl resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7024, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 7023] exit_group(0 [pid 7022] close(4 [pid 5032] umount2("./331", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7022] <... close resumed>) = 0 [pid 7023] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./331", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./331/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./331/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./331/binderfs") = 0 [pid 5032] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7026] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7023] +++ exited with 0 +++ [pid 7022] exit_group(0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7023, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 7022] <... exit_group resumed>) = ? [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 7027] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7022] +++ exited with 0 +++ [pid 5030] <... restart_syscall resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7022, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] umount2("./331", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./331", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./329", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./329", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./329/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 5031] newfstatat(AT_FDCWD, "./329/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./329/binderfs") = 0 [pid 5031] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 7025] <... write resumed>) = 2097152 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./331/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./331/binderfs", [pid 7025] munmap(0x7ff0df171000, 138412032 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./331/binderfs" [pid 7025] <... munmap resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 7025] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... umount2 resumed>) = 0 [pid 5030] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7025] <... openat resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7025] ioctl(4, LOOP_SET_FD, 3 [pid 5032] newfstatat(AT_FDCWD, "./331/file0", [pid 7027] <... write resumed>) = 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./329/file0", [pid 5032] openat(AT_FDCWD, "./331/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 7026] <... write resumed>) = 2097152 [pid 5032] <... openat resumed>) = 4 [pid 5031] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(4, "", [pid 5031] openat(AT_FDCWD, "./329/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./331/file0", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(4, "", [pid 5030] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 7027] munmap(0x7ff0df171000, 138412032 [pid 7026] munmap(0x7ff0df171000, 138412032 [pid 7025] <... ioctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 5032] getdents64(4, [pid 5030] openat(AT_FDCWD, "./331/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... openat resumed>) = 4 [pid 5032] close(4 [pid 5031] getdents64(4, [pid 7025] close(3 [pid 5032] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./331/file0" [pid 5030] newfstatat(4, "", [pid 7025] <... close resumed>) = 0 [pid 5031] close(4 [pid 7025] mkdir("./file0", 0777) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 275.196540][ T7025] loop4: detected capacity change from 0 to 4096 [pid 5031] rmdir("./329/file0" [pid 7025] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] getdents64(3, [pid 5031] <... rmdir resumed>) = 0 [pid 5030] getdents64(4, [pid 7026] <... munmap resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5032] close(3 [pid 7027] <... munmap resumed>) = 0 [pid 7026] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 5031] close(3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 7027] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7026] <... openat resumed>) = 4 [pid 5032] rmdir("./331" [pid 5031] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7027] <... openat resumed>) = 4 [pid 7026] ioctl(4, LOOP_SET_FD, 3 [pid 5030] rmdir("./331/file0" [pid 7027] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] rmdir("./329" [pid 5030] <... rmdir resumed>) = 0 [pid 5032] mkdir("./332", 0777 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5031] mkdir("./330", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] close(3) = 0 [pid 7026] <... ioctl resumed>) = 0 [pid 7026] close(3) = 0 [pid 7026] mkdir("./file0", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] rmdir("./331" [pid 5032] <... openat resumed>) = 3 [pid 7027] <... ioctl resumed>) = 0 [pid 7026] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5030] <... rmdir resumed>) = 0 [pid 7027] close(3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 3 [pid 5030] mkdir("./332", 0777 [pid 7027] <... close resumed>) = 0 [pid 7027] mkdir("./file0", 0777) = 0 [pid 7027] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] <... mkdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5031] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 275.250985][ T7025] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 275.267793][ T7026] loop0: detected capacity change from 0 to 4096 [ 275.275691][ T7027] loop5: detected capacity change from 0 to 4096 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7029 attached ./strace-static-x86_64: Process 7028 attached [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7029] set_robust_list(0x55555635e660, 24 [pid 7028] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7028 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7029 [pid 5030] <... openat resumed>) = 3 [pid 7029] <... set_robust_list resumed>) = 0 [pid 7028] <... set_robust_list resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7029] chdir("./330" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7029] <... chdir resumed>) = 0 [pid 5030] close(3 [pid 7029] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7028] chdir("./332" [pid 5030] <... close resumed>) = 0 [pid 7029] setpgid(0, 0 [pid 7028] <... chdir resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 275.308588][ T7026] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 275.318912][ T7027] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7028] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 7030 attached [pid 7029] <... setpgid resumed>) = 0 [pid 7028] <... prctl resumed>) = 0 [pid 7025] <... mount resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7030 [pid 7028] setpgid(0, 0) = 0 [pid 7029] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7025] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7028] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7025] <... openat resumed>) = 3 [pid 7025] chdir("./file0" [pid 7029] <... openat resumed>) = 3 [pid 7028] <... openat resumed>) = 3 [pid 7030] set_robust_list(0x55555635e660, 24 [pid 7028] write(3, "1000", 4 [pid 7029] write(3, "1000", 4 [pid 7030] <... set_robust_list resumed>) = 0 [pid 7030] chdir("./332" [pid 7029] <... write resumed>) = 4 [pid 7028] <... write resumed>) = 4 [pid 7025] <... chdir resumed>) = 0 [pid 7030] <... chdir resumed>) = 0 [pid 7029] close(3 [pid 7028] close(3 [pid 7030] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7029] <... close resumed>) = 0 [pid 7028] <... close resumed>) = 0 [pid 7025] ioctl(4, LOOP_CLR_FD [pid 7030] <... prctl resumed>) = 0 [pid 7029] symlink("/dev/binderfs", "./binderfs" [pid 7028] symlink("/dev/binderfs", "./binderfs" [pid 7025] <... ioctl resumed>) = 0 [pid 7030] setpgid(0, 0 [pid 7029] <... symlink resumed>) = 0 [pid 7028] <... symlink resumed>) = 0 [pid 7025] close(4 [pid 7030] <... setpgid resumed>) = 0 [pid 7029] memfd_create("syzkaller", 0 [pid 7025] <... close resumed>) = 0 [pid 7030] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7027] <... mount resumed>) = 0 [pid 7027] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7026] <... mount resumed>) = 0 [pid 7030] <... openat resumed>) = 3 [pid 7028] memfd_create("syzkaller", 0 [pid 7027] <... openat resumed>) = 3 [pid 7026] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7025] exit_group(0 [pid 7029] <... memfd_create resumed>) = 3 [pid 7030] write(3, "1000", 4 [pid 7027] chdir("./file0" [pid 7025] <... exit_group resumed>) = ? [pid 7030] <... write resumed>) = 4 [pid 7029] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7028] <... memfd_create resumed>) = 3 [pid 7027] <... chdir resumed>) = 0 [pid 7026] <... openat resumed>) = 3 [pid 7025] +++ exited with 0 +++ [pid 7030] close(3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7025, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 7030] <... close resumed>) = 0 [pid 7030] symlink("/dev/binderfs", "./binderfs" [pid 7028] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7029] <... mmap resumed>) = 0x7ff0df171000 [pid 7028] <... mmap resumed>) = 0x7ff0df171000 [pid 7027] ioctl(4, LOOP_CLR_FD [pid 7026] chdir("./file0" [pid 7030] <... symlink resumed>) = 0 [pid 7027] <... ioctl resumed>) = 0 [pid 5033] umount2("./324", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7026] <... chdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./324", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7026] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(3, "", [pid 7027] close(4 [pid 7030] memfd_create("syzkaller", 0) = 3 [pid 7030] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7027] <... close resumed>) = 0 [pid 7026] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7027] exit_group(0 [pid 7026] close(4 [pid 5033] getdents64(3, [pid 7027] <... exit_group resumed>) = ? [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7026] <... close resumed>) = 0 [pid 5033] umount2("./324/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7027] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7026] exit_group(0 [pid 5033] newfstatat(AT_FDCWD, "./324/binderfs", [pid 7026] <... exit_group resumed>) = ? [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7027, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./323", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] unlink("./324/binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./323", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 7026] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./323/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... unlink resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7026, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./323/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./323/binderfs") = 0 [pid 5029] umount2("./330", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./330", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./330/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./330/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./330/binderfs") = 0 [pid 5029] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./324/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./324/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 7028] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] rmdir("./324/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 7029] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./324") = 0 [pid 5033] mkdir("./325", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5034] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./323/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7030] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] umount2("./323/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7028] <... write resumed>) = 2097152 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./323/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7028] munmap(0x7ff0df171000, 138412032 [pid 5033] close(3 [pid 5034] newfstatat(4, "", [pid 5033] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7028] <... munmap resumed>) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./323/file0"./strace-static-x86_64: Process 7031 attached [pid 7031] set_robust_list(0x55555635e660, 24) = 0 [pid 7031] chdir("./325" [pid 5034] <... rmdir resumed>) = 0 [pid 7031] <... chdir resumed>) = 0 [pid 5034] getdents64(3, [pid 7031] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7031 [pid 5034] close(3 [pid 7031] <... prctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./323" [pid 7031] setpgid(0, 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./324", 0777 [pid 7031] <... setpgid resumed>) = 0 [pid 7029] <... write resumed>) = 2097152 [pid 5034] <... mkdir resumed>) = 0 [pid 7029] munmap(0x7ff0df171000, 138412032 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7031] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... openat resumed>) = 3 [pid 7031] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7031] write(3, "1000", 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7031] <... write resumed>) = 4 [pid 5034] close(3 [pid 7031] close(3 [pid 7029] <... munmap resumed>) = 0 [pid 7028] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... close resumed>) = 0 [pid 7031] <... close resumed>) = 0 [pid 7029] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7028] <... openat resumed>) = 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7031] symlink("/dev/binderfs", "./binderfs" [pid 7028] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 7032 attached [pid 7031] <... symlink resumed>) = 0 [pid 7028] <... ioctl resumed>) = 0 [pid 7032] set_robust_list(0x55555635e660, 24 [pid 7031] memfd_create("syzkaller", 0 [pid 7030] <... write resumed>) = 2097152 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7032 [pid 7031] <... memfd_create resumed>) = 3 [pid 7032] <... set_robust_list resumed>) = 0 [pid 7031] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7030] munmap(0x7ff0df171000, 138412032 [pid 7031] <... mmap resumed>) = 0x7ff0df171000 [pid 7032] chdir("./324") = 0 [pid 7032] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7030] <... munmap resumed>) = 0 [pid 7029] <... openat resumed>) = 4 [pid 7028] close(3 [pid 5029] <... umount2 resumed>) = 0 [pid 7032] <... prctl resumed>) = 0 [pid 7030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7029] ioctl(4, LOOP_SET_FD, 3 [pid 7028] <... close resumed>) = 0 [pid 5029] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7032] setpgid(0, 0 [pid 7030] <... openat resumed>) = 4 [pid 7028] mkdir("./file0", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7028] <... mkdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./330/file0", [pid 7028] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 275.593584][ T7028] loop3: detected capacity change from 0 to 4096 [ 275.625759][ T7029] loop2: detected capacity change from 0 to 4096 [pid 5029] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7032] <... setpgid resumed>) = 0 [pid 7030] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./330/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7032] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 7032] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 7032] write(3, "1000", 4) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7032] close(3 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 7032] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./330/file0" [pid 7032] symlink("/dev/binderfs", "./binderfs" [pid 7029] <... ioctl resumed>) = 0 [pid 7032] <... symlink resumed>) = 0 [pid 7029] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 7032] memfd_create("syzkaller", 0 [pid 7029] <... close resumed>) = 0 [pid 7029] mkdir("./file0", 0777) = 0 [pid 5029] getdents64(3, [pid 7029] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7032] <... memfd_create resumed>) = 3 [pid 7030] <... ioctl resumed>) = 0 [pid 7032] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7030] close(3 [pid 5029] close(3 [pid 7030] <... close resumed>) = 0 [pid 7032] <... mmap resumed>) = 0x7ff0df171000 [pid 7030] mkdir("./file0", 0777 [pid 5029] <... close resumed>) = 0 [pid 7030] <... mkdir resumed>) = 0 [pid 5029] rmdir("./330" [pid 7030] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] <... rmdir resumed>) = 0 [ 275.637245][ T7028] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 275.647529][ T7030] loop1: detected capacity change from 0 to 4096 [ 275.665117][ T7029] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5029] mkdir("./331", 0777 [pid 7031] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 7032] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7033 attached , child_tidptr=0x55555635e650) = 7033 [pid 7033] set_robust_list(0x55555635e660, 24) = 0 [pid 7033] chdir("./331" [pid 7028] <... mount resumed>) = 0 [pid 7033] <... chdir resumed>) = 0 [pid 7033] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7033] setpgid(0, 0) = 0 [pid 7033] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7033] write(3, "1000", 4) = 4 [pid 7033] close(3) = 0 [pid 7033] symlink("/dev/binderfs", "./binderfs") = 0 [ 275.694338][ T7030] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7033] memfd_create("syzkaller", 0 [pid 7028] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7028] chdir("./file0") = 0 [pid 7028] ioctl(4, LOOP_CLR_FD) = 0 [pid 7033] <... memfd_create resumed>) = 3 [pid 7028] close(4 [pid 7033] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7028] <... close resumed>) = 0 [pid 7033] <... mmap resumed>) = 0x7ff0df171000 [pid 7028] exit_group(0 [pid 7031] <... write resumed>) = 2097152 [pid 7028] <... exit_group resumed>) = ? [pid 7029] <... mount resumed>) = 0 [pid 7028] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7028, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7029] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7029] chdir("./file0") = 0 [pid 5032] umount2("./332", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7031] munmap(0x7ff0df171000, 138412032 [pid 7029] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7029] <... ioctl resumed>) = 0 [pid 7029] close(4) = 0 [pid 7029] exit_group(0) = ? [pid 7029] +++ exited with 0 +++ [pid 5032] openat(AT_FDCWD, "./332", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7031] <... munmap resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7029, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 7031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7031] <... openat resumed>) = 4 [pid 7031] ioctl(4, LOOP_SET_FD, 3 [pid 5031] umount2("./330", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7030] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7030] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7032] <... write resumed>) = 2097152 [pid 5032] getdents64(3, [pid 5031] openat(AT_FDCWD, "./330", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7030] chdir("./file0") = 0 [pid 7030] ioctl(4, LOOP_CLR_FD) = 0 [pid 7030] close(4) = 0 [pid 7030] exit_group(0 [pid 7032] munmap(0x7ff0df171000, 138412032 [pid 7030] <... exit_group resumed>) = ? [pid 7030] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... openat resumed>) = 3 [pid 7032] <... munmap resumed>) = 0 [pid 5032] umount2("./332/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(3, "", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7030, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./332/binderfs", [pid 5031] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] unlink("./332/binderfs" [pid 5031] umount2("./330/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7032] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./330/binderfs", [pid 5030] umount2("./332", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7032] <... openat resumed>) = 4 [pid 5031] unlink("./330/binderfs" [pid 5030] openat(AT_FDCWD, "./332", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... unlink resumed>) = 0 [pid 7032] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... openat resumed>) = 3 [pid 7032] <... ioctl resumed>) = 0 [pid 5031] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7031] <... ioctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 7031] close(3 [pid 5032] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7031] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7031] mkdir("./file0", 0777 [pid 7032] close(3) = 0 [pid 7032] mkdir("./file0", 0777 [pid 7031] <... mkdir resumed>) = 0 [pid 7031] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./332/file0", [pid 7032] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7033] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./332/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7032] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 275.797141][ T7031] loop4: detected capacity change from 0 to 4096 [ 275.816205][ T7032] loop5: detected capacity change from 0 to 4096 [pid 5030] newfstatat(AT_FDCWD, "./332/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./332/binderfs") = 0 [pid 5032] openat(AT_FDCWD, "./332/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./332/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./332" [pid 7033] <... write resumed>) = 2097152 [pid 7033] munmap(0x7ff0df171000, 138412032 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 275.841690][ T7031] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 275.852391][ T7032] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7033] <... munmap resumed>) = 0 [pid 5032] mkdir("./333", 0777 [pid 5031] newfstatat(AT_FDCWD, "./330/file0", [pid 5030] <... umount2 resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./332/file0", [pid 5031] openat(AT_FDCWD, "./330/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] getdents64(4, [pid 5030] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7033] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7031] <... mount resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 7033] <... openat resumed>) = 4 [pid 7033] ioctl(4, LOOP_SET_FD, 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "./332/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7034 attached [pid 7032] <... mount resumed>) = 0 [pid 5031] close(4 [pid 5030] <... openat resumed>) = 4 [pid 7034] set_robust_list(0x55555635e660, 24 [pid 7031] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7034 [pid 5031] <... close resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7034] <... set_robust_list resumed>) = 0 [pid 5031] rmdir("./330/file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7034] chdir("./333" [pid 7031] <... openat resumed>) = 3 [pid 7031] chdir("./file0" [pid 5031] <... rmdir resumed>) = 0 [pid 7034] <... chdir resumed>) = 0 [pid 5030] getdents64(4, [pid 7034] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7034] setpgid(0, 0 [pid 7032] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7031] <... chdir resumed>) = 0 [pid 7034] <... setpgid resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7034] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7032] <... openat resumed>) = 3 [pid 7031] ioctl(4, LOOP_CLR_FD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5031] close(3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7031] <... ioctl resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] close(4 [pid 7034] <... openat resumed>) = 3 [pid 7034] write(3, "1000", 4 [pid 7032] chdir("./file0" [pid 7031] close(4 [pid 5030] <... close resumed>) = 0 [pid 7034] <... write resumed>) = 4 [pid 5031] rmdir("./330" [pid 5030] rmdir("./332/file0" [pid 7034] close(3 [pid 7032] <... chdir resumed>) = 0 [pid 7031] <... close resumed>) = 0 [pid 7032] ioctl(4, LOOP_CLR_FD [pid 7031] exit_group(0 [pid 5030] <... rmdir resumed>) = 0 [pid 7033] <... ioctl resumed>) = 0 [pid 7032] <... ioctl resumed>) = 0 [pid 7031] <... exit_group resumed>) = ? [pid 7032] close(4 [pid 7031] +++ exited with 0 +++ [pid 7034] <... close resumed>) = 0 [pid 7032] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 7032] exit_group(0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7031, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=11 /* 0.11 s */} --- [pid 7034] symlink("/dev/binderfs", "./binderfs" [pid 7032] <... exit_group resumed>) = ? [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7034] <... symlink resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5030] close(3 [pid 7033] close(3 [pid 5031] mkdir("./331", 0777 [pid 7033] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7033] mkdir("./file0", 0777 [pid 5033] umount2("./325", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 7034] memfd_create("syzkaller", 0 [pid 7033] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./332" [pid 7033] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] openat(AT_FDCWD, "./325", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 7034] <... memfd_create resumed>) = 3 [pid 7034] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7032] +++ exited with 0 +++ [pid 5033] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 5030] mkdir("./333", 0777 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7032, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] umount2("./324", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./324", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7035 attached [pid 7034] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 5030] <... mkdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(3, "", [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7035 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7035] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./324/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7035] <... set_robust_list resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7035] chdir("./331" [pid 5034] newfstatat(AT_FDCWD, "./324/binderfs", [pid 7035] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7035] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] unlink("./324/binderfs" [pid 7035] <... prctl resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 7035] setpgid(0, 0 [pid 5034] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7035] <... setpgid resumed>) = 0 [pid 7035] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 275.941269][ T7033] loop0: detected capacity change from 0 to 4096 [ 275.980396][ T7033] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7035] write(3, "1000", 4 [pid 5033] getdents64(3, [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7035] <... write resumed>) = 4 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7035] close(3 [pid 5033] umount2("./325/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7035] <... close resumed>) = 0 [pid 5030] close(3 [pid 7035] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... close resumed>) = 0 [pid 7035] <... symlink resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./325/binderfs", [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7035] memfd_create("syzkaller", 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7035] <... memfd_create resumed>) = 3 [pid 5033] unlink("./325/binderfs" [pid 7035] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 7036 attached [pid 7035] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7036 [pid 7036] set_robust_list(0x55555635e660, 24 [pid 5033] <... unlink resumed>) = 0 [pid 7036] <... set_robust_list resumed>) = 0 [pid 7036] chdir("./333" [pid 5033] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7036] <... chdir resumed>) = 0 [pid 7036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7036] setpgid(0, 0) = 0 [pid 7036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7036] write(3, "1000", 4) = 4 [pid 7036] close(3) = 0 [pid 7036] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7036] memfd_create("syzkaller", 0 [pid 5034] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7036] <... memfd_create resumed>) = 3 [pid 7036] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] newfstatat(AT_FDCWD, "./324/file0", [pid 5033] <... umount2 resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./324/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./324/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 7034] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./325/file0", [pid 5034] rmdir("./324/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./324") = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./325", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./325/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... openat resumed>) = 4 [pid 5034] <... openat resumed>) = 3 [pid 5033] newfstatat(4, "", [pid 7033] <... mount resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7033] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7033] chdir("./file0" [pid 5033] getdents64(4, [pid 7033] <... chdir resumed>) = 0 [pid 7033] ioctl(4, LOOP_CLR_FD) = 0 [pid 7033] close(4) = 0 [pid 7033] exit_group(0) = ? [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7033] +++ exited with 0 +++ [pid 5034] close(3 [pid 7035] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7033, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./331", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./331", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] rmdir("./325/file0" [pid 5029] <... openat resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7037 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7037 attached [pid 7036] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] getdents64(3, [pid 7037] set_robust_list(0x55555635e660, 24 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7037] <... set_robust_list resumed>) = 0 [pid 7037] chdir("./325") = 0 [pid 7037] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] getdents64(3, [pid 5029] umount2("./331/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5029] newfstatat(AT_FDCWD, "./331/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] unlink("./331/binderfs" [pid 7037] <... prctl resumed>) = 0 [pid 7037] setpgid(0, 0) = 0 [pid 7037] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5033] rmdir("./325" [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7037] write(3, "1000", 4) = 4 [pid 7037] close(3) = 0 [pid 7037] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... rmdir resumed>) = 0 [pid 7037] <... symlink resumed>) = 0 [pid 5033] mkdir("./326", 0777) = 0 [pid 7037] memfd_create("syzkaller", 0) = 3 [pid 7037] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7037] <... mmap resumed>) = 0x7ff0df171000 [pid 7034] <... write resumed>) = 2097152 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7034] munmap(0x7ff0df171000, 138412032 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7034] <... munmap resumed>) = 0 [pid 5033] close(3 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 7035] <... write resumed>) = 2097152 [pid 7034] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./331/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7034] <... openat resumed>) = 4 [pid 5029] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7035] munmap(0x7ff0df171000, 138412032 [pid 7034] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7035] <... munmap resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./331/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7038 attached ) = 4 [pid 7036] <... write resumed>) = 2097152 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7038 [pid 5029] newfstatat(4, "", [pid 7036] munmap(0x7ff0df171000, 138412032 [pid 7038] set_robust_list(0x55555635e660, 24 [pid 7036] <... munmap resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7038] <... set_robust_list resumed>) = 0 [pid 5029] getdents64(4, [pid 7035] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7038] chdir("./326" [pid 7035] <... openat resumed>) = 4 [pid 5029] getdents64(4, [pid 7038] <... chdir resumed>) = 0 [pid 7035] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7038] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] close(4 [pid 7038] <... prctl resumed>) = 0 [pid 7034] <... ioctl resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7034] close(3 [pid 5029] rmdir("./331/file0" [pid 7038] setpgid(0, 0) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 7038] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7037] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7036] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7034] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7038] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 7034] mkdir("./file0", 0777 [pid 7038] write(3, "1000", 4 [pid 5029] rmdir("./331" [pid 7038] <... write resumed>) = 4 [pid 7036] <... openat resumed>) = 4 [pid 7036] ioctl(4, LOOP_SET_FD, 3 [pid 7035] <... ioctl resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7038] close(3 [pid 7035] close(3 [pid 7034] <... mkdir resumed>) = 0 [pid 5029] mkdir("./332", 0777 [pid 7035] <... close resumed>) = 0 [pid 7035] mkdir("./file0", 0777) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 7038] <... close resumed>) = 0 [pid 7036] <... ioctl resumed>) = 0 [pid 7035] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 276.253479][ T7034] loop3: detected capacity change from 0 to 4096 [ 276.273497][ T7035] loop2: detected capacity change from 0 to 4096 [ 276.294494][ T7036] loop1: detected capacity change from 0 to 4096 [pid 7034] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7038] symlink("/dev/binderfs", "./binderfs" [pid 7036] close(3) = 0 [pid 7036] mkdir("./file0", 0777) = 0 [pid 7036] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7038] <... symlink resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7038] memfd_create("syzkaller", 0 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7038] <... memfd_create resumed>) = 3 [pid 5029] close(3 [pid 7038] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7037] <... write resumed>) = 2097152 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7038] <... mmap resumed>) = 0x7ff0df171000 [pid 7037] munmap(0x7ff0df171000, 138412032 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7039 ./strace-static-x86_64: Process 7039 attached [pid 7037] <... munmap resumed>) = 0 [pid 7039] set_robust_list(0x55555635e660, 24) = 0 [pid 7039] chdir("./332") = 0 [pid 7039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7039] setpgid(0, 0) = 0 [pid 7039] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7037] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7039] write(3, "1000", 4) = 4 [pid 7037] ioctl(4, LOOP_SET_FD, 3 [ 276.315635][ T7035] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 276.315955][ T7034] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 276.343424][ T7036] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7039] close(3) = 0 [pid 7039] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7039] memfd_create("syzkaller", 0) = 3 [pid 7039] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7037] <... ioctl resumed>) = 0 [pid 7037] close(3) = 0 [pid 7037] mkdir("./file0", 0777 [pid 7035] <... mount resumed>) = 0 [pid 7034] <... mount resumed>) = 0 [pid 7037] <... mkdir resumed>) = 0 [pid 7037] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7034] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7035] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7034] <... openat resumed>) = 3 [pid 7034] chdir("./file0" [pid 7035] <... openat resumed>) = 3 [pid 7034] <... chdir resumed>) = 0 [pid 7035] chdir("./file0" [pid 7034] ioctl(4, LOOP_CLR_FD) = 0 [pid 7035] <... chdir resumed>) = 0 [ 276.389407][ T7037] loop5: detected capacity change from 0 to 4096 [pid 7038] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7035] ioctl(4, LOOP_CLR_FD [pid 7034] close(4) = 0 [pid 7035] <... ioctl resumed>) = 0 [pid 7034] exit_group(0 [pid 7035] close(4 [pid 7034] <... exit_group resumed>) = ? [pid 7036] <... mount resumed>) = 0 [pid 7035] <... close resumed>) = 0 [pid 7034] +++ exited with 0 +++ [pid 7036] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7035] exit_group(0) = ? [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7034, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 7036] <... openat resumed>) = 3 [pid 7035] +++ exited with 0 +++ [pid 5032] umount2("./333", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7038] <... write resumed>) = 2097152 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7035, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 7038] munmap(0x7ff0df171000, 138412032 [pid 5032] openat(AT_FDCWD, "./333", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7036] chdir("./file0") = 0 [pid 7036] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] <... openat resumed>) = 3 [pid 7036] close(4 [pid 5032] newfstatat(3, "", [pid 7036] <... close resumed>) = 0 [pid 5031] umount2("./331", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7036] exit_group(0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7036] <... exit_group resumed>) = ? [pid 5031] openat(AT_FDCWD, "./331", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7036] +++ exited with 0 +++ [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7036, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7038] <... munmap resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] getdents64(3, [pid 7038] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7038] <... openat resumed>) = 4 [pid 5032] umount2("./333/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [ 276.434557][ T7037] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5031] umount2("./331/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7038] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./333/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(AT_FDCWD, "./331/binderfs", [pid 5030] umount2("./333", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7038] <... ioctl resumed>) = 0 [pid 7038] close(3 [pid 5032] unlink("./333/binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7038] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] unlink("./331/binderfs" [pid 5030] openat(AT_FDCWD, "./333", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7038] mkdir("./file0", 0777 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7039] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7038] <... mkdir resumed>) = 0 [pid 7037] <... mount resumed>) = 0 [pid 5032] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 7038] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7037] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7037] <... openat resumed>) = 3 [pid 5030] getdents64(3, [pid 7037] chdir("./file0" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7037] <... chdir resumed>) = 0 [pid 5030] umount2("./333/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7037] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7037] <... ioctl resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./333/binderfs", [pid 7037] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7037] <... close resumed>) = 0 [pid 5030] unlink("./333/binderfs" [pid 7037] exit_group(0 [pid 5030] <... unlink resumed>) = 0 [pid 7037] <... exit_group resumed>) = ? [pid 5030] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7037] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7037, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- [pid 5034] umount2("./325", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./325", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./325/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./325/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./325/binderfs") = 0 [pid 5034] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5032] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./333/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 276.503941][ T7038] loop4: detected capacity change from 0 to 4096 [ 276.544054][ T7038] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./333/file0", [pid 5032] openat(AT_FDCWD, "./333/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 5030] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5030] openat(AT_FDCWD, "./333/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 5034] newfstatat(AT_FDCWD, "./325/file0", [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(4, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./325/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./325/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 5034] getdents64(4, [pid 5032] rmdir("./333/file0" [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] close(4 [pid 7039] <... write resumed>) = 2097152 [pid 5034] close(4 [pid 5030] <... close resumed>) = 0 [pid 7039] munmap(0x7ff0df171000, 138412032 [pid 5034] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] rmdir("./333/file0" [pid 5034] rmdir("./325/file0" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] close(3 [pid 5030] getdents64(3, [pid 5032] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./333" [pid 5030] close(3 [pid 7039] <... munmap resumed>) = 0 [pid 5034] getdents64(3, [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] rmdir("./333" [pid 5034] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 7039] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5032] mkdir("./334", 0777 [pid 5031] <... umount2 resumed>) = 0 [pid 7039] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] mkdir("./334", 0777 [pid 5034] rmdir("./325" [pid 5030] <... mkdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] mkdir("./326", 0777 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5031] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] <... ioctl resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7039] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 7039] close(3 [pid 5031] newfstatat(AT_FDCWD, "./331/file0", [pid 7039] <... close resumed>) = 0 ./strace-static-x86_64: Process 7040 attached [pid 7039] mkdir("./file0", 0777 [pid 5034] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7042 attached [pid 7040] set_robust_list(0x55555635e660, 24 [pid 7039] <... mkdir resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7040 [pid 5031] openat(AT_FDCWD, "./331/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7041 attached [pid 7040] <... set_robust_list resumed>) = 0 [pid 7039] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7042 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7041 [pid 7041] set_robust_list(0x55555635e660, 24 [pid 7040] chdir("./334" [pid 5031] <... openat resumed>) = 4 [pid 7040] <... chdir resumed>) = 0 [pid 7041] <... set_robust_list resumed>) = 0 [pid 7040] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] newfstatat(4, "", [pid 7041] chdir("./334" [pid 7040] <... prctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7040] setpgid(0, 0 [pid 5031] getdents64(4, [pid 7041] <... chdir resumed>) = 0 [pid 7040] <... setpgid resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7041] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7040] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] getdents64(4, [pid 7041] <... prctl resumed>) = 0 [pid 7041] setpgid(0, 0) = 0 [pid 7041] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7041] write(3, "1000", 4) = 4 [pid 7041] close(3) = 0 [pid 7041] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7042] set_robust_list(0x55555635e660, 24 [pid 7041] memfd_create("syzkaller", 0 [pid 7040] <... openat resumed>) = 3 [pid 5031] close(4 [pid 7042] <... set_robust_list resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./331/file0") = 0 [pid 5031] getdents64(3, [pid 7042] chdir("./326") = 0 [pid 7041] <... memfd_create resumed>) = 3 [pid 7040] write(3, "1000", 4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7040] <... write resumed>) = 4 [pid 5031] close(3 [pid 7042] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7041] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7040] close(3 [pid 5031] <... close resumed>) = 0 [pid 7042] <... prctl resumed>) = 0 [pid 7041] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] rmdir("./331" [pid 7042] setpgid(0, 0 [pid 7040] <... close resumed>) = 0 [pid 7038] <... mount resumed>) = 0 [ 276.637396][ T7039] loop0: detected capacity change from 0 to 4096 [ 276.677219][ T7039] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7042] <... setpgid resumed>) = 0 [pid 7040] symlink("/dev/binderfs", "./binderfs" [pid 7038] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... rmdir resumed>) = 0 [pid 7038] <... openat resumed>) = 3 [pid 7040] <... symlink resumed>) = 0 [pid 7042] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7038] chdir("./file0" [pid 7042] <... openat resumed>) = 3 [pid 7040] memfd_create("syzkaller", 0 [pid 7038] <... chdir resumed>) = 0 [pid 7038] ioctl(4, LOOP_CLR_FD) = 0 [pid 5031] mkdir("./332", 0777 [pid 7038] close(4 [pid 5031] <... mkdir resumed>) = 0 [pid 7042] write(3, "1000", 4 [pid 7038] <... close resumed>) = 0 [pid 7038] exit_group(0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7042] <... write resumed>) = 4 [pid 7040] <... memfd_create resumed>) = 3 [pid 7038] <... exit_group resumed>) = ? [pid 7042] close(3 [pid 5031] <... openat resumed>) = 3 [pid 7038] +++ exited with 0 +++ [pid 7040] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7042] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7038, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7042] symlink("/dev/binderfs", "./binderfs" [pid 7040] <... mmap resumed>) = 0x7ff0df171000 [pid 7042] <... symlink resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7042] memfd_create("syzkaller", 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7042] <... memfd_create resumed>) = 3 [pid 5033] umount2("./326", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7042] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7043 [pid 7042] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7043 attached [pid 5033] openat(AT_FDCWD, "./326", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7043] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] <... openat resumed>) = 3 [pid 7043] chdir("./332") = 0 [pid 5033] newfstatat(3, "", [pid 7043] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7039] <... mount resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7043] <... prctl resumed>) = 0 [pid 5033] getdents64(3, [pid 7043] setpgid(0, 0 [pid 7039] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7039] <... openat resumed>) = 3 [pid 5033] umount2("./326/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7039] chdir("./file0") = 0 [pid 7039] ioctl(4, LOOP_CLR_FD [pid 7043] <... setpgid resumed>) = 0 [pid 7039] <... ioctl resumed>) = 0 [pid 7043] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7039] close(4) = 0 [pid 7043] <... openat resumed>) = 3 [pid 7039] exit_group(0 [pid 7043] write(3, "1000", 4 [pid 7039] <... exit_group resumed>) = ? [pid 7043] <... write resumed>) = 4 [pid 7039] +++ exited with 0 +++ [pid 7043] close(3) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7043] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7039, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=2 /* 0.02 s */} --- [pid 5033] newfstatat(AT_FDCWD, "./326/binderfs", [pid 7043] memfd_create("syzkaller", 0) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7043] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] unlink("./326/binderfs") = 0 [pid 5029] umount2("./332", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./332", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 7041] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./332/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./332/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./332/binderfs") = 0 [pid 5029] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7041] <... write resumed>) = 2097152 [pid 5029] <... umount2 resumed>) = 0 [pid 7041] munmap(0x7ff0df171000, 138412032 [pid 7042] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7040] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7041] <... munmap resumed>) = 0 [pid 7041] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 7041] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = 0 [pid 7043] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7041] <... ioctl resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./332/file0", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7041] close(3 [pid 5033] newfstatat(AT_FDCWD, "./326/file0", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7041] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7041] mkdir("./file0", 0777 [pid 5033] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7040] <... write resumed>) = 2097152 [pid 7042] <... write resumed>) = 2097152 [pid 7041] <... mkdir resumed>) = 0 [ 276.911177][ T7041] loop1: detected capacity change from 0 to 4096 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7041] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7042] munmap(0x7ff0df171000, 138412032 [pid 5033] openat(AT_FDCWD, "./326/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7040] munmap(0x7ff0df171000, 138412032 [pid 5029] openat(AT_FDCWD, "./332/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... openat resumed>) = 4 [pid 7040] <... munmap resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5029] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5029] getdents64(4, [pid 7040] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5029] getdents64(4, [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5029] close(4 [pid 7040] <... openat resumed>) = 4 [pid 5033] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5033] rmdir("./326/file0" [pid 5029] rmdir("./332/file0" [pid 7040] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7040] <... ioctl resumed>) = 0 [pid 5033] getdents64(3, [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7042] <... munmap resumed>) = 0 [pid 5029] close(3 [pid 7042] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7040] close(3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... close resumed>) = 0 [pid 5033] close(3 [pid 7042] <... openat resumed>) = 4 [pid 5033] <... close resumed>) = 0 [pid 5029] rmdir("./332" [pid 7042] ioctl(4, LOOP_SET_FD, 3 [pid 7040] <... close resumed>) = 0 [pid 5033] rmdir("./326" [pid 5029] <... rmdir resumed>) = 0 [ 276.965751][ T7041] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 276.995704][ T7040] loop3: detected capacity change from 0 to 4096 [pid 7040] mkdir("./file0", 0777 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] mkdir("./333", 0777 [pid 5033] mkdir("./327", 0777 [pid 5029] <... mkdir resumed>) = 0 [pid 7040] <... mkdir resumed>) = 0 [pid 7043] <... write resumed>) = 2097152 [pid 7040] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7043] munmap(0x7ff0df171000, 138412032 [pid 7042] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... openat resumed>) = 3 [pid 7042] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7042] <... close resumed>) = 0 [pid 7042] mkdir("./file0", 0777 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7042] <... mkdir resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 7043] <... munmap resumed>) = 0 [pid 7042] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] close(3 [pid 5029] <... close resumed>) = 0 [ 277.014230][ T7042] loop5: detected capacity change from 0 to 4096 [ 277.027554][ T7040] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7043] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7043] <... openat resumed>) = 4 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7043] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7044 ./strace-static-x86_64: Process 7045 attached ./strace-static-x86_64: Process 7044 attached [pid 7045] set_robust_list(0x55555635e660, 24 [pid 7044] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7045 [pid 7045] <... set_robust_list resumed>) = 0 [pid 7044] <... set_robust_list resumed>) = 0 [pid 7043] <... ioctl resumed>) = 0 [pid 7044] chdir("./333" [pid 7043] close(3) = 0 [pid 7045] chdir("./327" [pid 7043] mkdir("./file0", 0777 [pid 7044] <... chdir resumed>) = 0 [pid 7044] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7045] <... chdir resumed>) = 0 [pid 7044] <... prctl resumed>) = 0 [pid 7041] <... mount resumed>) = 0 [pid 7045] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7044] setpgid(0, 0 [pid 7043] <... mkdir resumed>) = 0 [pid 7041] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7045] <... prctl resumed>) = 0 [pid 7044] <... setpgid resumed>) = 0 [pid 7043] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7041] <... openat resumed>) = 3 [ 277.056941][ T7042] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 277.071325][ T7043] loop2: detected capacity change from 0 to 4096 [pid 7045] setpgid(0, 0 [pid 7044] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7041] chdir("./file0" [pid 7040] <... mount resumed>) = 0 [pid 7045] <... setpgid resumed>) = 0 [pid 7044] <... openat resumed>) = 3 [pid 7045] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7044] write(3, "1000", 4) = 4 [pid 7045] write(3, "1000", 4 [pid 7044] close(3 [pid 7045] <... write resumed>) = 4 [pid 7044] <... close resumed>) = 0 [pid 7045] close(3 [pid 7044] symlink("/dev/binderfs", "./binderfs" [pid 7045] <... close resumed>) = 0 [pid 7044] <... symlink resumed>) = 0 [pid 7041] <... chdir resumed>) = 0 [pid 7045] symlink("/dev/binderfs", "./binderfs" [pid 7041] ioctl(4, LOOP_CLR_FD [pid 7040] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7041] <... ioctl resumed>) = 0 [pid 7040] <... openat resumed>) = 3 [pid 7045] <... symlink resumed>) = 0 [pid 7044] memfd_create("syzkaller", 0 [pid 7041] close(4 [pid 7040] chdir("./file0" [pid 7041] <... close resumed>) = 0 [pid 7040] <... chdir resumed>) = 0 [pid 7044] <... memfd_create resumed>) = 3 [pid 7041] exit_group(0 [pid 7040] ioctl(4, LOOP_CLR_FD [pid 7044] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7041] <... exit_group resumed>) = ? [pid 7040] <... ioctl resumed>) = 0 [pid 7040] close(4 [pid 7045] memfd_create("syzkaller", 0) = 3 [pid 7041] +++ exited with 0 +++ [pid 7040] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7041, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7045] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7040] exit_group(0 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 7040] <... exit_group resumed>) = ? [pid 5030] <... restart_syscall resumed>) = 0 [pid 7045] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./334", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./334", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7040] +++ exited with 0 +++ [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7040, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] umount2("./334/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./334/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./334/binderfs" [pid 7044] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./334", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./334", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./334/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./334/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./334/binderfs" [pid 7042] <... mount resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7042] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7042] chdir("./file0") = 0 [pid 7042] ioctl(4, LOOP_CLR_FD) = 0 [ 277.102974][ T7043] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7042] close(4) = 0 [pid 7042] exit_group(0) = ? [pid 7043] <... mount resumed>) = 0 [pid 7042] +++ exited with 0 +++ [pid 7043] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7042, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7044] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7043] <... openat resumed>) = 3 [pid 5034] umount2("./326", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7043] chdir("./file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7043] <... chdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./326", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7043] ioctl(4, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 7043] <... ioctl resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 7043] close(4) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7043] exit_group(0 [pid 5034] getdents64(3, [pid 7043] <... exit_group resumed>) = ? [pid 5030] <... umount2 resumed>) = 0 [pid 7045] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7043] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7043, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5034] umount2("./326/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./326/binderfs", [pid 5031] umount2("./332", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./332", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] unlink("./326/binderfs" [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./332/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./332/binderfs", [pid 5030] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] unlink("./332/binderfs" [pid 5030] newfstatat(AT_FDCWD, "./334/file0", [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./334/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./334/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./334") = 0 [pid 5030] mkdir("./335", 0777 [pid 5032] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./334/file0", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] openat(AT_FDCWD, "./334/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... openat resumed>) = 4 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7046 ./strace-static-x86_64: Process 7046 attached [pid 7046] set_robust_list(0x55555635e660, 24) = 0 [pid 7046] chdir("./335" [pid 7044] <... write resumed>) = 2097152 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7046] <... chdir resumed>) = 0 [pid 5032] getdents64(4, [pid 7046] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7046] <... prctl resumed>) = 0 [pid 7046] setpgid(0, 0) = 0 [pid 7046] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] close(4) = 0 [pid 5032] rmdir("./334/file0" [pid 7046] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 7046] write(3, "1000", 4 [pid 5031] <... umount2 resumed>) = 0 [pid 7046] <... write resumed>) = 4 [pid 7046] close(3 [pid 7044] munmap(0x7ff0df171000, 138412032 [pid 5032] getdents64(3, [pid 7046] <... close resumed>) = 0 [pid 7046] symlink("/dev/binderfs", "./binderfs" [pid 7044] <... munmap resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 7046] <... symlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./334" [pid 7046] memfd_create("syzkaller", 0 [pid 5031] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./332/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7046] <... memfd_create resumed>) = 3 [pid 5031] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7046] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] openat(AT_FDCWD, "./332/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7046] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7045] <... write resumed>) = 2097152 [pid 5032] mkdir("./335", 0777 [pid 5031] close(4) = 0 [pid 7045] munmap(0x7ff0df171000, 138412032 [pid 7044] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... mkdir resumed>) = 0 [pid 5031] rmdir("./332/file0" [pid 7044] <... openat resumed>) = 4 [pid 7045] <... munmap resumed>) = 0 [pid 7044] ioctl(4, LOOP_SET_FD, 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./332") = 0 [pid 5031] mkdir("./333", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7045] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... close resumed>) = 0 [pid 7045] <... openat resumed>) = 4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7045] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7048 attached [pid 7044] <... ioctl resumed>) = 0 [pid 7048] set_robust_list(0x55555635e660, 24 [pid 7044] close(3 [pid 5034] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7048 [pid 7048] <... set_robust_list resumed>) = 0 [pid 7044] <... close resumed>) = 0 [pid 7044] mkdir("./file0", 0777 [pid 7048] chdir("./335" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7047 ./strace-static-x86_64: Process 7047 attached [pid 7047] set_robust_list(0x55555635e660, 24 [pid 7048] <... chdir resumed>) = 0 [pid 7044] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./326/file0", [pid 7048] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7047] <... set_robust_list resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7048] <... prctl resumed>) = 0 [ 277.329427][ T7044] loop0: detected capacity change from 0 to 4096 [ 277.344251][ T7045] loop4: detected capacity change from 0 to 4096 [pid 7047] chdir("./333" [pid 7044] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./326/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7047] <... chdir resumed>) = 0 [pid 7048] setpgid(0, 0 [pid 7047] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7048] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7047] <... prctl resumed>) = 0 [pid 7045] close(3 [pid 7047] setpgid(0, 0 [pid 7045] <... close resumed>) = 0 [pid 7045] mkdir("./file0", 0777) = 0 [pid 7047] <... setpgid resumed>) = 0 [pid 7047] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7045] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7047] write(3, "1000", 4) = 4 [pid 7047] close(3 [pid 7048] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./326/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7048] <... openat resumed>) = 3 [pid 7048] write(3, "1000", 4 [pid 5034] <... openat resumed>) = 4 [pid 7048] <... write resumed>) = 4 [pid 7047] <... close resumed>) = 0 [pid 7048] close(3 [pid 5034] newfstatat(4, "", [pid 7048] <... close resumed>) = 0 [pid 7047] symlink("/dev/binderfs", "./binderfs" [pid 7048] symlink("/dev/binderfs", "./binderfs" [pid 7047] <... symlink resumed>) = 0 [pid 7048] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 7047] memfd_create("syzkaller", 0 [pid 7048] memfd_create("syzkaller", 0 [pid 7046] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 7047] <... memfd_create resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 7047] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] rmdir("./326/file0" [pid 7047] <... mmap resumed>) = 0x7ff0df171000 [pid 7048] <... memfd_create resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 7048] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7048] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] close(3) = 0 [pid 5034] rmdir("./326") = 0 [ 277.373760][ T7044] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 277.384672][ T7045] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5034] mkdir("./327", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7046] <... write resumed>) = 2097152 [pid 5034] <... openat resumed>) = 3 [pid 7044] <... mount resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7044] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7044] chdir("./file0" [pid 5034] close(3 [pid 7044] <... chdir resumed>) = 0 [pid 7044] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] <... close resumed>) = 0 [pid 7044] close(4) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7044] exit_group(0) = ? ./strace-static-x86_64: Process 7049 attached [pid 7044] +++ exited with 0 +++ [pid 7049] set_robust_list(0x55555635e660, 24 [pid 7046] munmap(0x7ff0df171000, 138412032 [pid 7049] <... set_robust_list resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7049 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7044, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7049] chdir("./327" [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7049] <... chdir resumed>) = 0 [pid 7049] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] umount2("./333", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7049] setpgid(0, 0) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./333", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7049] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7046] <... munmap resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7046] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] newfstatat(3, "", [pid 7049] write(3, "1000", 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7049] <... write resumed>) = 4 [pid 7046] <... openat resumed>) = 4 [pid 5029] getdents64(3, [pid 7049] close(3) = 0 [pid 7046] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7049] symlink("/dev/binderfs", "./binderfs" [pid 7047] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./333/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7049] <... symlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./333/binderfs", [pid 7049] memfd_create("syzkaller", 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./333/binderfs") = 0 [pid 7049] <... memfd_create resumed>) = 3 [pid 5029] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7049] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7046] <... ioctl resumed>) = 0 [pid 7046] close(3 [pid 7048] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7046] <... close resumed>) = 0 [pid 7046] mkdir("./file0", 0777) = 0 [pid 7047] <... write resumed>) = 2097152 [ 277.480808][ T7046] loop1: detected capacity change from 0 to 4096 [pid 7046] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7045] <... mount resumed>) = 0 [pid 7045] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7047] munmap(0x7ff0df171000, 138412032 [pid 7045] chdir("./file0") = 0 [pid 7047] <... munmap resumed>) = 0 [pid 7045] ioctl(4, LOOP_CLR_FD) = 0 [pid 7045] close(4) = 0 [pid 7045] exit_group(0) = ? [pid 7045] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7045, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7047] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7048] <... write resumed>) = 2097152 [pid 5033] umount2("./327", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7047] <... openat resumed>) = 4 [pid 5033] openat(AT_FDCWD, "./327", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7047] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... openat resumed>) = 3 [ 277.527786][ T7046] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./327/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./327/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7048] munmap(0x7ff0df171000, 138412032 [pid 5029] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./327/binderfs" [pid 5029] newfstatat(AT_FDCWD, "./333/file0", [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7048] <... munmap resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7048] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] openat(AT_FDCWD, "./333/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7048] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 7049] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7047] <... ioctl resumed>) = 0 [pid 7048] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7047] close(3 [pid 5033] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./327/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7047] <... close resumed>) = 0 [pid 7046] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5033] openat(AT_FDCWD, "./327/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7047] mkdir("./file0", 0777 [pid 5033] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7046] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] newfstatat(4, "", [pid 5029] getdents64(4, [pid 7046] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7047] <... mkdir resumed>) = 0 [pid 7046] chdir("./file0" [pid 5033] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7046] <... chdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] close(4 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... close resumed>) = 0 [pid 5033] close(4 [pid 5029] rmdir("./333/file0" [pid 7046] ioctl(4, LOOP_CLR_FD [pid 5033] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [ 277.584833][ T7047] loop2: detected capacity change from 0 to 4096 [ 277.612263][ T7048] loop3: detected capacity change from 0 to 4096 [pid 7046] <... ioctl resumed>) = 0 [pid 5033] rmdir("./327/file0" [pid 7047] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] getdents64(3, [pid 7048] <... ioctl resumed>) = 0 [pid 7046] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 7046] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7048] close(3 [pid 7046] exit_group(0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7048] <... close resumed>) = 0 [pid 7046] <... exit_group resumed>) = ? [pid 7046] +++ exited with 0 +++ [pid 5033] close(3) = 0 [pid 5033] rmdir("./327") = 0 [pid 5033] mkdir("./328", 0777 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7046, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 5033] <... mkdir resumed>) = 0 [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] umount2("./335", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./335", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./335/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./335/binderfs", [pid 7048] mkdir("./file0", 0777 [pid 5029] rmdir("./333" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./335/binderfs") = 0 [pid 5030] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7048] <... mkdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./334", 0777 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7048] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7050 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7050 [pid 7050] set_robust_list(0x55555635e660, 24) = 0 [pid 7050] chdir("./328") = 0 [pid 7050] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7050] setpgid(0, 0) = 0 [pid 7050] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7049] <... write resumed>) = 2097152 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7050] write(3, "1000", 4 [pid 7049] munmap(0x7ff0df171000, 138412032 [pid 5030] newfstatat(AT_FDCWD, "./335/file0", ./strace-static-x86_64: Process 7051 attached [pid 7050] <... write resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7051] set_robust_list(0x55555635e660, 24 [pid 7050] close(3 [pid 5030] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7051] <... set_robust_list resumed>) = 0 [pid 7050] <... close resumed>) = 0 [pid 7049] <... munmap resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7051 [pid 7050] symlink("/dev/binderfs", "./binderfs" [pid 5030] openat(AT_FDCWD, "./335/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 277.642053][ T7047] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 277.675830][ T7048] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7051] chdir("./334" [pid 7050] <... symlink resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 7051] <... chdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7051] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7050] memfd_create("syzkaller", 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7051] <... prctl resumed>) = 0 [pid 7051] setpgid(0, 0 [pid 7049] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] getdents64(4, [pid 7051] <... setpgid resumed>) = 0 [pid 7049] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7049] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, [pid 7051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7050] <... memfd_create resumed>) = 3 [pid 7050] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7051] <... openat resumed>) = 3 [pid 5030] close(4 [pid 7051] write(3, "1000", 4) = 4 [pid 7050] <... mmap resumed>) = 0x7ff0df171000 [pid 7048] <... mount resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7051] close(3) = 0 [pid 7051] symlink("/dev/binderfs", "./binderfs" [pid 5030] rmdir("./335/file0" [pid 7051] <... symlink resumed>) = 0 [pid 7048] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 7051] memfd_create("syzkaller", 0 [pid 7048] <... openat resumed>) = 3 [pid 5030] getdents64(3, [pid 7048] chdir("./file0" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7048] <... chdir resumed>) = 0 [pid 5030] close(3 [pid 7048] ioctl(4, LOOP_CLR_FD [pid 5030] <... close resumed>) = 0 [pid 7048] <... ioctl resumed>) = 0 [pid 5030] rmdir("./335" [pid 7048] close(4 [pid 5030] <... rmdir resumed>) = 0 [pid 7048] <... close resumed>) = 0 [pid 5030] mkdir("./336", 0777 [pid 7051] <... memfd_create resumed>) = 3 [pid 7049] <... ioctl resumed>) = 0 [pid 7048] exit_group(0 [pid 5030] <... mkdir resumed>) = 0 [pid 7048] <... exit_group resumed>) = ? [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7051] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7048] +++ exited with 0 +++ [pid 7051] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7048, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7049] close(3 [pid 5030] <... ioctl resumed>) = 0 [pid 7049] <... close resumed>) = 0 [pid 5030] close(3 [pid 7049] mkdir("./file0", 0777) = 0 [pid 5030] <... close resumed>) = 0 [ 277.711476][ T7049] loop5: detected capacity change from 0 to 4096 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] umount2("./335", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7052 attached [pid 5032] openat(AT_FDCWD, "./335", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7052] set_robust_list(0x55555635e660, 24 [pid 7049] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7047] <... mount resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7052 [pid 7052] <... set_robust_list resumed>) = 0 [pid 7052] chdir("./336") = 0 [pid 7052] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7052] setpgid(0, 0) = 0 [pid 7052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] newfstatat(3, "", [pid 7052] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7052] write(3, "1000", 4 [pid 5032] getdents64(3, [pid 7052] <... write resumed>) = 4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7052] close(3) = 0 [pid 5032] umount2("./335/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./335/binderfs", [pid 7052] symlink("/dev/binderfs", "./binderfs" [pid 7047] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7052] <... symlink resumed>) = 0 [pid 7047] chdir("./file0") = 0 [pid 7047] ioctl(4, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7047] <... ioctl resumed>) = 0 [pid 7047] close(4 [pid 5032] unlink("./335/binderfs" [pid 7047] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 7047] exit_group(0 [pid 5032] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7047] <... exit_group resumed>) = ? [pid 7052] memfd_create("syzkaller", 0 [pid 7047] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7047, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=2 /* 0.02 s */} --- [pid 5031] umount2("./333", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./333", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./333/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./333/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./333/binderfs") = 0 [pid 5031] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7050] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7052] <... memfd_create resumed>) = 3 [pid 5032] <... umount2 resumed>) = 0 [ 277.774949][ T7049] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7052] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./335/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./335/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7051] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./335/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./335") = 0 [pid 5032] mkdir("./336", 0777) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = 0 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7053 attached [pid 7053] set_robust_list(0x55555635e660, 24) = 0 [pid 7053] chdir("./336") = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7053 [pid 7053] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7053] <... prctl resumed>) = 0 [pid 7053] setpgid(0, 0 [pid 5031] newfstatat(AT_FDCWD, "./333/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7053] <... setpgid resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7049] <... mount resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./333/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7049] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7053] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7049] <... openat resumed>) = 3 [pid 7049] chdir("./file0" [pid 7053] <... openat resumed>) = 3 [pid 7049] <... chdir resumed>) = 0 [pid 7049] ioctl(4, LOOP_CLR_FD [pid 7053] write(3, "1000", 4 [pid 5031] <... openat resumed>) = 4 [pid 7053] <... write resumed>) = 4 [pid 7049] <... ioctl resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 7053] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7053] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 7053] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7053] <... symlink resumed>) = 0 [pid 5031] getdents64(4, [pid 7053] memfd_create("syzkaller", 0 [pid 7049] close(4 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./333/file0") = 0 [pid 5031] getdents64(3, [pid 7053] <... memfd_create resumed>) = 3 [pid 7050] <... write resumed>) = 2097152 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./333") = 0 [pid 5031] mkdir("./334", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7053] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7050] munmap(0x7ff0df171000, 138412032 [pid 7049] <... close resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7053] <... mmap resumed>) = 0x7ff0df171000 [pid 7051] <... write resumed>) = 2097152 [pid 7050] <... munmap resumed>) = 0 [pid 7049] exit_group(0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7051] munmap(0x7ff0df171000, 138412032 [pid 7049] <... exit_group resumed>) = ? [pid 7052] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7051] <... munmap resumed>) = 0 [pid 7049] +++ exited with 0 +++ [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7054 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7049, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 7051] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] umount2("./327", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7054 attached ) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./327", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7051] <... openat resumed>) = 4 [pid 7054] set_robust_list(0x55555635e660, 24 [pid 7051] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... openat resumed>) = 3 [pid 7054] <... set_robust_list resumed>) = 0 [pid 7054] chdir("./334") = 0 [pid 7054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7054] setpgid(0, 0) = 0 [pid 7054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7050] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7054] write(3, "1000", 4 [pid 7050] <... openat resumed>) = 4 [pid 5034] newfstatat(3, "", [pid 7054] <... write resumed>) = 4 [pid 7050] ioctl(4, LOOP_SET_FD, 3 [pid 7051] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7054] close(3) = 0 [pid 7054] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(3, [pid 7051] close(3 [pid 7054] <... symlink resumed>) = 0 [pid 7051] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7051] mkdir("./file0", 0777 [pid 5034] umount2("./327/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7051] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7051] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./327/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7054] memfd_create("syzkaller", 0 [pid 5034] unlink("./327/binderfs" [pid 7054] <... memfd_create resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [pid 7054] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7050] <... ioctl resumed>) = 0 [pid 7050] close(3) = 0 [pid 7050] mkdir("./file0", 0777 [pid 7052] <... write resumed>) = 2097152 [pid 7050] <... mkdir resumed>) = 0 [ 277.987023][ T7051] loop0: detected capacity change from 0 to 4096 [ 278.010285][ T7050] loop4: detected capacity change from 0 to 4096 [ 278.023128][ T7051] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7053] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7050] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7052] munmap(0x7ff0df171000, 138412032 [pid 7051] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7052] <... munmap resumed>) = 0 [pid 7051] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(AT_FDCWD, "./327/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7051] <... openat resumed>) = 3 [pid 7051] chdir("./file0") = 0 [pid 5034] umount2("./327/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7051] ioctl(4, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7051] <... ioctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./327/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 7052] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7051] close(4 [ 278.083322][ T7050] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7054] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7052] <... openat resumed>) = 4 [pid 7051] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7051] exit_group(0 [pid 5034] getdents64(4, [pid 7052] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7053] <... write resumed>) = 2097152 [pid 7053] munmap(0x7ff0df171000, 138412032 [pid 7051] <... exit_group resumed>) = ? [pid 5034] getdents64(4, [pid 7051] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7051, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 5034] close(4 [pid 5029] umount2("./334", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./327/file0" [pid 5029] openat(AT_FDCWD, "./334", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 5034] <... rmdir resumed>) = 0 [pid 7053] <... munmap resumed>) = 0 [pid 7052] <... ioctl resumed>) = 0 [pid 5034] getdents64(3, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7052] close(3) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 7052] mkdir("./file0", 0777 [pid 5034] close(3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./334/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 7052] <... mkdir resumed>) = 0 [pid 5034] rmdir("./327" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7053] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7052] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] newfstatat(AT_FDCWD, "./334/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] unlink("./334/binderfs") = 0 [pid 5029] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7053] <... openat resumed>) = 4 [ 278.134901][ T7052] loop1: detected capacity change from 0 to 4096 [ 278.164796][ T7052] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] mkdir("./328", 0777 [pid 7053] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... mkdir resumed>) = 0 [pid 7053] <... ioctl resumed>) = 0 [pid 7050] <... mount resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] <... umount2 resumed>) = 0 [pid 7053] close(3 [pid 7050] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7053] <... close resumed>) = 0 [pid 7050] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 3 [pid 5029] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7053] mkdir("./file0", 0777 [pid 7050] chdir("./file0" [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5029] newfstatat(AT_FDCWD, "./334/file0", [pid 7053] <... mkdir resumed>) = 0 [pid 7050] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7053] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7050] ioctl(4, LOOP_CLR_FD [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7050] <... ioctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7050] close(4) = 0 [pid 5029] openat(AT_FDCWD, "./334/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7050] exit_group(0 [pid 5029] <... openat resumed>) = 4 [pid 7050] <... exit_group resumed>) = ? [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7055 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 7055 attached [pid 5029] close(4 [pid 7055] set_robust_list(0x55555635e660, 24 [pid 5029] <... close resumed>) = 0 [ 278.182838][ T7053] loop3: detected capacity change from 0 to 4096 [pid 7055] <... set_robust_list resumed>) = 0 [pid 5029] rmdir("./334/file0" [pid 7055] chdir("./328" [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 7055] <... chdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7055] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7055] setpgid(0, 0 [pid 5029] close(3) = 0 [pid 7055] <... setpgid resumed>) = 0 [pid 5029] rmdir("./334" [pid 7055] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... rmdir resumed>) = 0 [pid 7050] +++ exited with 0 +++ [pid 5029] mkdir("./335", 0777 [pid 7055] <... openat resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7050, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 7055] write(3, "1000", 4 [pid 5033] umount2("./328", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 7055] <... write resumed>) = 4 [pid 7054] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./328", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7055] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7055] <... close resumed>) = 0 [pid 7054] munmap(0x7ff0df171000, 138412032 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7055] symlink("/dev/binderfs", "./binderfs" [pid 7054] <... munmap resumed>) = 0 [pid 5033] getdents64(3, [pid 7055] <... symlink resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7052] <... mount resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... ioctl resumed>) = 0 [pid 7052] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] close(3 [pid 7052] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 7052] chdir("./file0" [pid 5033] umount2("./328/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7052] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7055] memfd_create("syzkaller", 0 [pid 7052] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./328/binderfs", [pid 7054] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7052] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 7056 attached [pid 7055] <... memfd_create resumed>) = 3 [pid 7054] <... openat resumed>) = 4 [pid 7052] close(4 [pid 5033] unlink("./328/binderfs" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7056 [pid 7056] set_robust_list(0x55555635e660, 24 [pid 7055] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7052] <... close resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7056] <... set_robust_list resumed>) = 0 [pid 7055] <... mmap resumed>) = 0x7ff0df171000 [pid 7054] ioctl(4, LOOP_SET_FD, 3 [ 278.212933][ T7053] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7052] exit_group(0 [pid 7056] chdir("./335" [pid 7052] <... exit_group resumed>) = ? [pid 7056] <... chdir resumed>) = 0 [pid 7052] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7052, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 7056] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7056] setpgid(0, 0 [pid 5030] umount2("./336", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7056] <... setpgid resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./336", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", [pid 7056] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7056] write(3, "1000", 4 [pid 5030] getdents64(3, [pid 7056] <... write resumed>) = 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./336/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7056] close(3 [pid 5030] newfstatat(AT_FDCWD, "./336/binderfs", [pid 7056] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./336/binderfs") = 0 [pid 5030] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7053] <... mount resumed>) = 0 [pid 7056] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7054] <... ioctl resumed>) = 0 [pid 7054] close(3) = 0 [ 278.258549][ T7054] loop2: detected capacity change from 0 to 4096 [pid 7054] mkdir("./file0", 0777 [pid 7056] memfd_create("syzkaller", 0 [pid 7054] <... mkdir resumed>) = 0 [pid 7053] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7053] chdir("./file0" [pid 7054] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7053] <... chdir resumed>) = 0 [pid 7053] ioctl(4, LOOP_CLR_FD [pid 7056] <... memfd_create resumed>) = 3 [pid 7053] <... ioctl resumed>) = 0 [pid 7056] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7053] close(4) = 0 [pid 7056] <... mmap resumed>) = 0x7ff0df171000 [pid 7053] exit_group(0) = ? [pid 7053] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7053, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5032] umount2("./336", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./336", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 7055] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./336/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./336/binderfs", [pid 5033] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./336/binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./328/file0", [pid 5032] <... unlink resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./328/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 278.310272][ T7054] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] getdents64(4, [pid 5030] <... umount2 resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5030] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(4) = 0 [pid 5030] newfstatat(AT_FDCWD, "./336/file0", [pid 5033] rmdir("./328/file0") = 0 [pid 5033] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./328") = 0 [pid 5033] mkdir("./329", 0777 [pid 5030] openat(AT_FDCWD, "./336/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] newfstatat(4, "", [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7054] <... mount resumed>) = 0 [pid 5030] getdents64(4, [pid 7054] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 7054] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7057 [pid 7054] chdir("./file0") = 0 [pid 7054] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] close(4 [pid 7054] close(4 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./336/file0" [pid 7054] <... close resumed>) = 0 [pid 7054] exit_group(0 [pid 5030] <... rmdir resumed>) = 0 [pid 7054] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 7057 attached [pid 7054] +++ exited with 0 +++ [pid 5030] getdents64(3, [pid 7057] set_robust_list(0x55555635e660, 24 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7054, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 7057] <... set_robust_list resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7057] chdir("./329") = 0 [pid 7057] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./334", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7057] <... prctl resumed>) = 0 [pid 7057] setpgid(0, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7057] <... setpgid resumed>) = 0 [pid 7057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] openat(AT_FDCWD, "./334", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7057] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [pid 5030] close(3 [pid 7057] write(3, "1000", 4 [pid 5031] newfstatat(3, "", [pid 7057] <... write resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7057] close(3 [pid 5031] getdents64(3, [pid 7057] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 7057] symlink("/dev/binderfs", "./binderfs" [pid 5031] umount2("./334/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./336" [pid 7057] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7057] memfd_create("syzkaller", 0 [pid 5031] newfstatat(AT_FDCWD, "./334/binderfs", [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./334/binderfs" [pid 5030] mkdir("./337", 0777 [pid 5031] <... unlink resumed>) = 0 [pid 7057] <... memfd_create resumed>) = 3 [pid 5031] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 7057] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7055] <... write resumed>) = 2097152 [pid 5032] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 7056] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] newfstatat(AT_FDCWD, "./336/file0", [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7058 attached [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7058] set_robust_list(0x55555635e660, 24 [pid 7055] munmap(0x7ff0df171000, 138412032 [pid 5032] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7058 [pid 7058] <... set_robust_list resumed>) = 0 [pid 7058] chdir("./337" [pid 7055] <... munmap resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7058] <... chdir resumed>) = 0 [pid 7058] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] openat(AT_FDCWD, "./336/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7058] <... prctl resumed>) = 0 [pid 7058] setpgid(0, 0 [pid 5032] <... openat resumed>) = 4 [pid 7058] <... setpgid resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 7058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7055] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] getdents64(4, [pid 7055] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7055] ioctl(4, LOOP_SET_FD, 3 [pid 5032] getdents64(4, [pid 7058] <... openat resumed>) = 3 [pid 7056] <... write resumed>) = 2097152 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 7058] write(3, "1000", 4 [pid 7056] munmap(0x7ff0df171000, 138412032 [pid 5032] <... close resumed>) = 0 [pid 7058] <... write resumed>) = 4 [pid 5032] rmdir("./336/file0") = 0 [pid 7058] close(3) = 0 [pid 5032] getdents64(3, [pid 7058] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7058] <... symlink resumed>) = 0 [pid 5032] close(3 [pid 7056] <... munmap resumed>) = 0 [pid 7056] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 7056] <... openat resumed>) = 4 [pid 5032] rmdir("./336" [pid 5031] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7056] ioctl(4, LOOP_SET_FD, 3 [pid 7055] <... ioctl resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7055] close(3) = 0 [pid 7055] mkdir("./file0", 0777) = 0 [pid 5032] mkdir("./337", 0777 [pid 7058] memfd_create("syzkaller", 0 [pid 7055] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 278.523633][ T7055] loop5: detected capacity change from 0 to 4096 [ 278.555335][ T7056] loop0: detected capacity change from 0 to 4096 [pid 5031] newfstatat(AT_FDCWD, "./334/file0", [pid 7058] <... memfd_create resumed>) = 3 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7058] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7056] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7058] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... openat resumed>) = 3 [pid 7057] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7056] close(3 [pid 5031] openat(AT_FDCWD, "./334/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7056] <... close resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... openat resumed>) = 4 [pid 7056] mkdir("./file0", 0777 [pid 5032] close(3 [pid 5031] newfstatat(4, "", [pid 7056] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7056] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(4, ./strace-static-x86_64: Process 7059 attached 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7059] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7059 [ 278.568659][ T7055] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(4, [pid 7055] <... mount resumed>) = 0 [pid 7055] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7059] <... set_robust_list resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 7055] chdir("./file0") = 0 [pid 7055] ioctl(4, LOOP_CLR_FD) = 0 [pid 7055] close(4 [pid 7059] chdir("./337" [pid 7055] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 7055] exit_group(0 [pid 5031] rmdir("./334/file0" [pid 7059] <... chdir resumed>) = 0 [pid 7055] <... exit_group resumed>) = ? [pid 5031] <... rmdir resumed>) = 0 [pid 7059] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7055] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7055, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] getdents64(3, [pid 7059] <... prctl resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7059] setpgid(0, 0) = 0 [pid 5031] close(3) = 0 [pid 7059] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] rmdir("./334" [pid 5034] umount2("./328", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7059] <... openat resumed>) = 3 [pid 7058] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 7059] write(3, "1000", 4 [pid 5034] openat(AT_FDCWD, "./328", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] mkdir("./335", 0777 [pid 7059] <... write resumed>) = 4 [pid 5034] <... openat resumed>) = 3 [pid 7059] close(3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 7059] <... close resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 7059] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7059] <... symlink resumed>) = 0 [pid 5034] umount2("./328/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7059] memfd_create("syzkaller", 0 [pid 5034] newfstatat(AT_FDCWD, "./328/binderfs", [pid 5031] <... openat resumed>) = 3 [pid 7059] <... memfd_create resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./328/binderfs" [pid 7059] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7057] <... write resumed>) = 2097152 [pid 5034] <... unlink resumed>) = 0 [ 278.609523][ T7056] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7059] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7057] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 7060 attached [pid 5034] <... umount2 resumed>) = 0 [pid 7057] <... munmap resumed>) = 0 [pid 5034] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7060] set_robust_list(0x55555635e660, 24 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./328/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./328/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./328/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7060] <... set_robust_list resumed>) = 0 [pid 5034] getdents64(4, [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7060 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7060] chdir("./335" [pid 5034] close(4 [pid 7060] <... chdir resumed>) = 0 [pid 7057] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... close resumed>) = 0 [pid 7060] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7057] <... openat resumed>) = 4 [pid 7060] <... prctl resumed>) = 0 [pid 7057] ioctl(4, LOOP_SET_FD, 3 [pid 5034] rmdir("./328/file0" [pid 7060] setpgid(0, 0 [pid 5034] <... rmdir resumed>) = 0 [pid 7060] <... setpgid resumed>) = 0 [pid 7060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] getdents64(3, [pid 7060] write(3, "1000", 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7060] <... write resumed>) = 4 [pid 5034] close(3) = 0 [pid 7060] close(3) = 0 [pid 5034] rmdir("./328" [pid 7060] symlink("/dev/binderfs", "./binderfs" [pid 7058] <... write resumed>) = 2097152 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./329", 0777 [pid 7060] <... symlink resumed>) = 0 [pid 7058] munmap(0x7ff0df171000, 138412032 [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7056] <... mount resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 7060] memfd_create("syzkaller", 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7056] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7057] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 7060] <... memfd_create resumed>) = 3 [pid 7057] close(3 [pid 7056] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 7060] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7059] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7058] <... munmap resumed>) = 0 [pid 7057] <... close resumed>) = 0 [pid 7056] chdir("./file0" [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7060] <... mmap resumed>) = 0x7ff0df171000 [pid 7057] mkdir("./file0", 0777 [pid 7056] <... chdir resumed>) = 0 [pid 7056] ioctl(4, LOOP_CLR_FD [pid 7058] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7057] <... mkdir resumed>) = 0 [pid 7056] <... ioctl resumed>) = 0 [pid 7057] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7061 [pid 7058] <... openat resumed>) = 4 [pid 7058] ioctl(4, LOOP_SET_FD, 3 [pid 7056] close(4) = 0 [ 278.711798][ T7057] loop4: detected capacity change from 0 to 4096 ./strace-static-x86_64: Process 7061 attached [pid 7058] <... ioctl resumed>) = 0 [pid 7056] exit_group(0 [pid 7061] set_robust_list(0x55555635e660, 24) = 0 [pid 7061] chdir("./329") = 0 [pid 7061] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7056] <... exit_group resumed>) = ? [pid 7061] <... prctl resumed>) = 0 [pid 7061] setpgid(0, 0 [pid 7056] +++ exited with 0 +++ [pid 7061] <... setpgid resumed>) = 0 [pid 7061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7056, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 7061] <... openat resumed>) = 3 [pid 7058] close(3 [pid 5029] umount2("./335", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7061] write(3, "1000", 4 [pid 7058] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7058] mkdir("./file0", 0777 [pid 7061] <... write resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./335", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7061] close(3) = 0 [pid 7058] <... mkdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7061] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7058] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] newfstatat(3, "", [pid 7061] memfd_create("syzkaller", 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7061] <... memfd_create resumed>) = 3 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7061] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] umount2("./335/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7061] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./335/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./335/binderfs") = 0 [pid 5029] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 [ 278.763454][ T7058] loop1: detected capacity change from 0 to 4096 [ 278.764694][ T7057] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 278.803182][ T7058] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7060] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7059] <... write resumed>) = 2097152 [pid 5029] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7059] munmap(0x7ff0df171000, 138412032 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./335/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./335/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7059] <... munmap resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 7059] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7059] <... openat resumed>) = 4 [pid 5029] getdents64(4, [pid 7059] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./335/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./335") = 0 [pid 7057] <... mount resumed>) = 0 [pid 5029] mkdir("./336", 0777 [pid 7057] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5029] <... mkdir resumed>) = 0 [pid 7061] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7057] chdir("./file0") = 0 [pid 7057] ioctl(4, LOOP_CLR_FD [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7057] <... ioctl resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7057] close(4 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7057] <... close resumed>) = 0 [pid 7057] exit_group(0 [pid 5029] <... ioctl resumed>) = 0 [pid 7057] <... exit_group resumed>) = ? [pid 5029] close(3 [pid 7059] <... ioctl resumed>) = 0 [pid 7059] close(3) = 0 [pid 7059] mkdir("./file0", 0777 [pid 7060] <... write resumed>) = 2097152 [pid 7059] <... mkdir resumed>) = 0 [pid 7057] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7057, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=8 /* 0.08 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7059] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7058] <... mount resumed>) = 0 [pid 7058] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [ 278.874591][ T7059] loop3: detected capacity change from 0 to 4096 [pid 7060] munmap(0x7ff0df171000, 138412032 [pid 5033] umount2("./329", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./329", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7058] <... openat resumed>) = 3 [pid 5033] umount2("./329/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7060] <... munmap resumed>) = 0 [pid 7058] chdir("./file0" [pid 5033] newfstatat(AT_FDCWD, "./329/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7058] <... chdir resumed>) = 0 [pid 5033] unlink("./329/binderfs" [pid 7061] <... write resumed>) = 2097152 [pid 7060] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7058] ioctl(4, LOOP_CLR_FD [pid 5033] <... unlink resumed>) = 0 [pid 7061] munmap(0x7ff0df171000, 138412032 [pid 7060] <... openat resumed>) = 4 [pid 7058] <... ioctl resumed>) = 0 [pid 7060] ioctl(4, LOOP_SET_FD, 3 [pid 7058] close(4 [pid 5033] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7061] <... munmap resumed>) = 0 [pid 7060] <... ioctl resumed>) = 0 [pid 7058] <... close resumed>) = 0 [pid 7058] exit_group(0) = ? [pid 7058] +++ exited with 0 +++ [pid 7060] close(3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7058, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 7060] <... close resumed>) = 0 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 7060] mkdir("./file0", 0777 [pid 5030] <... restart_syscall resumed>) = 0 [pid 7060] <... mkdir resumed>) = 0 [pid 7061] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7060] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] umount2("./337", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7061] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7061] ioctl(4, LOOP_SET_FD, 3 [pid 5030] openat(AT_FDCWD, "./337", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [ 278.932287][ T7059] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 278.954759][ T7060] loop2: detected capacity change from 0 to 4096 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7062 attached [pid 7062] set_robust_list(0x55555635e660, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7062 [pid 7062] <... set_robust_list resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7062] chdir("./336" [pid 5030] newfstatat(3, "", [pid 7062] <... chdir resumed>) = 0 [pid 7062] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7062] <... prctl resumed>) = 0 [pid 7062] setpgid(0, 0 [pid 5030] getdents64(3, [pid 7062] <... setpgid resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7062] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] umount2("./337/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7062] write(3, "1000", 4) = 4 [pid 7062] close(3) = 0 [pid 7062] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7062] memfd_create("syzkaller", 0) = 3 [pid 7062] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7061] <... ioctl resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./337/binderfs", [pid 7062] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7061] close(3 [pid 7059] <... mount resumed>) = 0 [pid 5030] unlink("./337/binderfs" [pid 7061] <... close resumed>) = 0 [pid 7059] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7061] mkdir("./file0", 0777 [pid 7059] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 7061] <... mkdir resumed>) = 0 [pid 5033] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7061] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7059] chdir("./file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./329/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7059] <... chdir resumed>) = 0 [pid 5033] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7059] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./329/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7059] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 7059] close(4 [pid 5033] newfstatat(4, "", [pid 7059] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 278.984192][ T7061] loop5: detected capacity change from 0 to 4096 [ 278.994187][ T7060] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7059] exit_group(0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./329/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 7059] <... exit_group resumed>) = ? [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./329") = 0 [pid 7059] +++ exited with 0 +++ [pid 5033] mkdir("./330", 0777 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7059, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5033] <... mkdir resumed>) = 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 5032] umount2("./337", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./337", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7063 ./strace-static-x86_64: Process 7063 attached [pid 7063] set_robust_list(0x55555635e660, 24) = 0 [pid 7063] chdir("./330") = 0 [pid 5032] getdents64(3, [pid 7063] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7063] setpgid(0, 0) = 0 [pid 7063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5032] umount2("./337/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7063] write(3, "1000", 4 [pid 7060] <... mount resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7063] <... write resumed>) = 4 [pid 5032] newfstatat(AT_FDCWD, "./337/binderfs", [pid 7063] close(3 [pid 7060] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7063] <... close resumed>) = 0 [pid 7060] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7063] symlink("/dev/binderfs", "./binderfs" [ 279.039872][ T7061] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7060] chdir("./file0" [pid 5032] unlink("./337/binderfs" [pid 7063] <... symlink resumed>) = 0 [pid 7062] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7060] <... chdir resumed>) = 0 [pid 7063] memfd_create("syzkaller", 0) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 7063] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7060] ioctl(4, LOOP_CLR_FD) = 0 [pid 7060] close(4) = 0 [pid 5032] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = 0 [pid 7060] exit_group(0) = ? [pid 5030] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7060] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7060, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] newfstatat(AT_FDCWD, "./337/file0", [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./335", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./337/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./335", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5030] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5030] getdents64(4, [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] umount2("./335/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7061] <... mount resumed>) = 0 [pid 7061] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./335/binderfs", [pid 7061] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7061] chdir("./file0" [pid 5031] unlink("./335/binderfs" [pid 5030] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7061] <... chdir resumed>) = 0 [pid 5032] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./337/file0" [pid 7061] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7061] <... ioctl resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./337/file0", [pid 5030] <... rmdir resumed>) = 0 [pid 7061] close(4) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(3, [pid 7061] exit_group(0) = ? [pid 5032] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7062] <... write resumed>) = 2097152 [pid 5030] close(3 [pid 7061] +++ exited with 0 +++ [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./337" [pid 5032] openat(AT_FDCWD, "./337/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7061, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 5034] umount2("./329", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./338", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] openat(AT_FDCWD, "./329", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... mkdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] getdents64(4, [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] getdents64(3, [pid 5032] getdents64(4, [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] umount2("./329/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./329/binderfs", [pid 5032] rmdir("./337/file0" [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./335/file0", [pid 5030] <... close resumed>) = 0 [pid 7062] munmap(0x7ff0df171000, 138412032) = 0 [pid 5034] unlink("./329/binderfs") = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7064 attached [pid 7063] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7064 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7064] set_robust_list(0x55555635e660, 24 [pid 5032] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./335/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7064] <... set_robust_list resumed>) = 0 [pid 5032] rmdir("./337" [pid 5031] <... openat resumed>) = 4 [pid 7062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7062] ioctl(4, LOOP_SET_FD, 3 [pid 7064] chdir("./338" [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 7064] <... chdir resumed>) = 0 [pid 5032] mkdir("./338", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7064] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... mkdir resumed>) = 0 [pid 5031] getdents64(4, [pid 7064] <... prctl resumed>) = 0 [pid 7064] setpgid(0, 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7064] <... setpgid resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] getdents64(4, [pid 7064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7062] <... ioctl resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] close(4 [pid 7062] close(3 [pid 5031] <... close resumed>) = 0 [pid 7062] <... close resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] rmdir("./335/file0" [pid 7064] <... openat resumed>) = 3 [pid 7062] mkdir("./file0", 0777 [pid 7064] write(3, "1000", 4 [pid 7062] <... mkdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... rmdir resumed>) = 0 [pid 7064] <... write resumed>) = 4 [pid 5032] close(3 [pid 5031] getdents64(3, [pid 5032] <... close resumed>) = 0 [pid 7064] close(3 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7064] <... close resumed>) = 0 [pid 7062] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3./strace-static-x86_64: Process 7065 attached [pid 7064] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 7065] set_robust_list(0x55555635e660, 24 [pid 7064] <... symlink resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7065 [pid 5031] rmdir("./335" [pid 5034] newfstatat(AT_FDCWD, "./329/file0", [pid 5031] <... rmdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7064] memfd_create("syzkaller", 0 [pid 7065] <... set_robust_list resumed>) = 0 [pid 7065] chdir("./338" [pid 5031] mkdir("./336", 0777 [pid 7065] <... chdir resumed>) = 0 [pid 7065] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7064] <... memfd_create resumed>) = 3 [pid 7063] <... write resumed>) = 2097152 [pid 5034] umount2("./329/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 7065] setpgid(0, 0 [pid 7064] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7065] <... setpgid resumed>) = 0 [pid 7064] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] openat(AT_FDCWD, "./329/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7065] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... openat resumed>) = 4 [pid 7065] <... openat resumed>) = 3 [pid 7063] munmap(0x7ff0df171000, 138412032 [pid 5034] newfstatat(4, "", [pid 7065] write(3, "1000", 4 [pid 7063] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7065] <... write resumed>) = 4 [pid 5034] close(4) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7065] close(3 [pid 7063] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] rmdir("./329/file0" [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7065] <... close resumed>) = 0 [pid 7063] <... openat resumed>) = 4 [pid 5034] <... rmdir resumed>) = 0 [ 279.256046][ T7062] loop0: detected capacity change from 0 to 4096 [ 279.288047][ T7062] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] close(3 [pid 7065] symlink("/dev/binderfs", "./binderfs" [pid 7063] ioctl(4, LOOP_SET_FD, 3 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5031] <... close resumed>) = 0 [pid 5034] rmdir("./329") = 0 [pid 5034] mkdir("./330", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7065] <... symlink resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7067 attached [pid 7065] memfd_create("syzkaller", 0./strace-static-x86_64: Process 7066 attached [pid 7067] set_robust_list(0x55555635e660, 24 [pid 7065] <... memfd_create resumed>) = 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7067 [pid 7066] set_robust_list(0x55555635e660, 24 [pid 7067] <... set_robust_list resumed>) = 0 [pid 7066] <... set_robust_list resumed>) = 0 [pid 7067] chdir("./336" [pid 7065] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7066 [pid 7066] chdir("./330" [pid 7067] <... chdir resumed>) = 0 [pid 7065] <... mmap resumed>) = 0x7ff0df171000 [pid 7063] <... ioctl resumed>) = 0 [pid 7066] <... chdir resumed>) = 0 [pid 7067] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7063] close(3 [pid 7067] <... prctl resumed>) = 0 [pid 7063] <... close resumed>) = 0 [pid 7067] setpgid(0, 0 [pid 7063] mkdir("./file0", 0777 [pid 7066] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7067] <... setpgid resumed>) = 0 [pid 7063] <... mkdir resumed>) = 0 [pid 7067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7062] <... mount resumed>) = 0 [pid 7066] <... prctl resumed>) = 0 [pid 7067] <... openat resumed>) = 3 [pid 7066] setpgid(0, 0 [pid 7067] write(3, "1000", 4 [pid 7063] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [ 279.346376][ T7063] loop4: detected capacity change from 0 to 4096 [pid 7062] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7066] <... setpgid resumed>) = 0 [pid 7067] <... write resumed>) = 4 [pid 7062] <... openat resumed>) = 3 [pid 7066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7067] close(3 [pid 7062] chdir("./file0" [pid 7067] <... close resumed>) = 0 [pid 7067] symlink("/dev/binderfs", "./binderfs" [pid 7066] <... openat resumed>) = 3 [pid 7067] <... symlink resumed>) = 0 [pid 7062] <... chdir resumed>) = 0 [pid 7062] ioctl(4, LOOP_CLR_FD [pid 7066] write(3, "1000", 4 [pid 7067] memfd_create("syzkaller", 0 [pid 7062] <... ioctl resumed>) = 0 [pid 7066] <... write resumed>) = 4 [pid 7066] close(3 [pid 7062] close(4 [pid 7066] <... close resumed>) = 0 [pid 7067] <... memfd_create resumed>) = 3 [pid 7062] <... close resumed>) = 0 [pid 7066] symlink("/dev/binderfs", "./binderfs" [pid 7067] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7062] exit_group(0 [pid 7066] <... symlink resumed>) = 0 [pid 7067] <... mmap resumed>) = 0x7ff0df171000 [pid 7062] <... exit_group resumed>) = ? [pid 7066] memfd_create("syzkaller", 0 [pid 7062] +++ exited with 0 +++ [pid 7064] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7062, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7066] <... memfd_create resumed>) = 3 [pid 5029] umount2("./336", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7066] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7066] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] openat(AT_FDCWD, "./336", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 279.393613][ T7063] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./336/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./336/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./336/binderfs") = 0 [pid 5029] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7065] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... umount2 resumed>) = 0 [pid 7063] <... mount resumed>) = 0 [pid 5029] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7064] <... write resumed>) = 2097152 [pid 7063] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] newfstatat(AT_FDCWD, "./336/file0", [pid 7066] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7067] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7064] munmap(0x7ff0df171000, 138412032 [pid 7063] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./336/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./336/file0") = 0 [pid 7063] chdir("./file0") = 0 [pid 7063] ioctl(4, LOOP_CLR_FD [pid 5029] getdents64(3, [pid 7063] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7063] close(4 [pid 5029] close(3 [pid 7063] <... close resumed>) = 0 [pid 7063] exit_group(0 [pid 5029] <... close resumed>) = 0 [pid 7063] <... exit_group resumed>) = ? [pid 7063] +++ exited with 0 +++ [pid 5029] rmdir("./336" [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7063, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5033] umount2("./330", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./330", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./330/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./330/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] mkdir("./337", 0777 [pid 5033] unlink("./330/binderfs" [pid 5029] <... mkdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7065] <... write resumed>) = 2097152 [pid 7064] <... munmap resumed>) = 0 [pid 5033] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 7065] munmap(0x7ff0df171000, 138412032 [pid 7064] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7064] <... openat resumed>) = 4 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7065] <... munmap resumed>) = 0 [pid 7064] ioctl(4, LOOP_SET_FD, 3 [pid 5029] close(3 [pid 7064] <... ioctl resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7064] close(3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7064] <... close resumed>) = 0 [pid 7064] mkdir("./file0", 0777 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7068 ./strace-static-x86_64: Process 7068 attached [pid 7068] set_robust_list(0x55555635e660, 24) = 0 [pid 7068] chdir("./337" [pid 7064] <... mkdir resumed>) = 0 [pid 7065] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7064] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7068] <... chdir resumed>) = 0 [pid 7065] <... openat resumed>) = 4 [pid 7068] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7065] ioctl(4, LOOP_SET_FD, 3 [pid 7068] setpgid(0, 0) = 0 [pid 7068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7068] write(3, "1000", 4) = 4 [pid 7068] close(3) = 0 [pid 7068] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7068] memfd_create("syzkaller", 0) = 3 [pid 7065] <... ioctl resumed>) = 0 [pid 7065] close(3) = 0 [pid 7065] mkdir("./file0", 0777 [pid 7068] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7065] <... mkdir resumed>) = 0 [pid 7065] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = 0 [pid 7067] <... write resumed>) = 2097152 [pid 5033] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7067] munmap(0x7ff0df171000, 138412032 [ 279.563874][ T7064] loop1: detected capacity change from 0 to 4096 [ 279.585124][ T7065] loop3: detected capacity change from 0 to 4096 [ 279.600982][ T7064] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] newfstatat(AT_FDCWD, "./330/file0", [pid 7067] <... munmap resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./330/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 7066] <... write resumed>) = 2097152 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./330/file0" [pid 7067] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./330") = 0 [pid 7066] munmap(0x7ff0df171000, 138412032 [pid 5033] mkdir("./331", 0777 [pid 7066] <... munmap resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7067] <... openat resumed>) = 4 [pid 5033] <... ioctl resumed>) = 0 [pid 5033] close(3) = 0 [pid 7067] ioctl(4, LOOP_SET_FD, 3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7066] openat(AT_FDCWD, "/dev/loop5", O_RDWR./strace-static-x86_64: Process 7069 attached [pid 7069] set_robust_list(0x55555635e660, 24 [pid 7066] <... openat resumed>) = 4 [pid 7069] <... set_robust_list resumed>) = 0 [pid 7066] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7069 [pid 7069] chdir("./331") = 0 [pid 7069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7069] setpgid(0, 0) = 0 [pid 7069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7069] write(3, "1000", 4 [pid 7067] <... ioctl resumed>) = 0 [pid 7069] <... write resumed>) = 4 [pid 7067] close(3 [pid 7069] close(3 [pid 7067] <... close resumed>) = 0 [pid 7069] <... close resumed>) = 0 [ 279.641124][ T7065] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 279.657624][ T7067] loop2: detected capacity change from 0 to 4096 [ 279.670946][ T7066] loop5: detected capacity change from 0 to 4096 [pid 7067] mkdir("./file0", 0777 [pid 7069] symlink("/dev/binderfs", "./binderfs" [pid 7067] <... mkdir resumed>) = 0 [pid 7069] <... symlink resumed>) = 0 [pid 7067] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7069] memfd_create("syzkaller", 0 [pid 7064] <... mount resumed>) = 0 [pid 7064] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7069] <... memfd_create resumed>) = 3 [pid 7066] <... ioctl resumed>) = 0 [pid 7069] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7066] close(3 [pid 7069] <... mmap resumed>) = 0x7ff0df171000 [pid 7066] <... close resumed>) = 0 [pid 7064] <... openat resumed>) = 3 [pid 7066] mkdir("./file0", 0777) = 0 [pid 7064] chdir("./file0") = 0 [pid 7064] ioctl(4, LOOP_CLR_FD) = 0 [pid 7066] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7064] close(4) = 0 [pid 7064] exit_group(0) = ? [pid 7068] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7064] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7064, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./338", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./338", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./338/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./338/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./338/binderfs") = 0 [ 279.701241][ T7067] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 279.726859][ T7066] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7065] <... mount resumed>) = 0 [pid 7065] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7065] chdir("./file0") = 0 [pid 7065] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = 0 [pid 7065] <... ioctl resumed>) = 0 [pid 5030] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7065] close(4 [pid 7067] <... mount resumed>) = 0 [pid 7065] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7065] exit_group(0 [pid 5030] newfstatat(AT_FDCWD, "./338/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7065] <... exit_group resumed>) = ? [pid 5030] openat(AT_FDCWD, "./338/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7067] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... openat resumed>) = 4 [pid 7067] <... openat resumed>) = 3 [pid 7067] chdir("./file0" [pid 7066] <... mount resumed>) = 0 [pid 7066] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7067] <... chdir resumed>) = 0 [pid 7067] ioctl(4, LOOP_CLR_FD) = 0 [pid 7065] +++ exited with 0 +++ [pid 5030] newfstatat(4, "", [pid 7066] <... openat resumed>) = 3 [pid 7067] close(4 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7065, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=3 /* 0.03 s */} --- [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7066] chdir("./file0" [pid 7067] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 7068] <... write resumed>) = 2097152 [pid 7066] <... chdir resumed>) = 0 [pid 7067] exit_group(0) = ? [pid 5032] umount2("./338", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7066] ioctl(4, LOOP_CLR_FD [pid 5032] openat(AT_FDCWD, "./338", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7066] <... ioctl resumed>) = 0 [pid 5030] getdents64(4, [pid 7066] close(4 [pid 5032] <... openat resumed>) = 3 [pid 7066] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7066] exit_group(0 [pid 5030] close(4 [pid 5032] newfstatat(3, "", [pid 7066] <... exit_group resumed>) = ? [pid 5030] <... close resumed>) = 0 [pid 7066] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] rmdir("./338/file0" [pid 7067] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7066, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7067, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5034] umount2("./330", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7068] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(3, [pid 5030] <... rmdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./330", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] getdents64(3, [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./336", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./330/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./338/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "./336", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(3 [pid 5034] newfstatat(AT_FDCWD, "./330/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 5034] unlink("./330/binderfs" [pid 5031] newfstatat(3, "", [pid 5030] rmdir("./338" [pid 7068] <... munmap resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] mkdir("./339", 0777 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 7069] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./336/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7068] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5032] newfstatat(AT_FDCWD, "./338/binderfs", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7068] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 7068] ioctl(4, LOOP_SET_FD, 3 [pid 5032] unlink("./338/binderfs" [pid 5031] newfstatat(AT_FDCWD, "./336/binderfs", [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7068] <... ioctl resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... ioctl resumed>) = 0 [pid 5030] close(3 [pid 5031] unlink("./336/binderfs" [pid 7068] close(3 [pid 5032] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7068] <... close resumed>) = 0 [pid 7068] mkdir("./file0", 0777 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7068] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 7070 attached [pid 7070] set_robust_list(0x55555635e660, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7070 [pid 7070] <... set_robust_list resumed>) = 0 [pid 7068] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7070] chdir("./339") = 0 [pid 7070] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7069] <... write resumed>) = 2097152 [pid 5032] <... umount2 resumed>) = 0 [pid 7070] <... prctl resumed>) = 0 [pid 5032] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./338/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./338/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./338/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7070] setpgid(0, 0 [pid 5032] close(3 [pid 7070] <... setpgid resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./338" [pid 7070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./339", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7070] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = 0 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7071 attached [pid 7070] write(3, "1000", 4 [pid 7069] munmap(0x7ff0df171000, 138412032 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7071 [pid 7071] set_robust_list(0x55555635e660, 24 [pid 7070] <... write resumed>) = 4 [pid 7071] <... set_robust_list resumed>) = 0 [ 279.855507][ T7068] loop0: detected capacity change from 0 to 4096 [ 279.892219][ T7068] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7071] chdir("./339") = 0 [pid 7069] <... munmap resumed>) = 0 [pid 7071] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7070] close(3 [pid 7071] <... prctl resumed>) = 0 [pid 7070] <... close resumed>) = 0 [pid 7071] setpgid(0, 0 [pid 7070] symlink("/dev/binderfs", "./binderfs" [pid 7069] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7071] <... setpgid resumed>) = 0 [pid 7071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7070] <... symlink resumed>) = 0 [pid 7069] <... openat resumed>) = 4 [pid 7071] <... openat resumed>) = 3 [pid 7071] write(3, "1000", 4) = 4 [pid 7071] close(3) = 0 [pid 7070] memfd_create("syzkaller", 0 [pid 7069] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = 0 [pid 7071] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7071] memfd_create("syzkaller", 0) = 3 [pid 5034] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7069] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7071] <... mmap resumed>) = 0x7ff0df171000 [pid 7070] <... memfd_create resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./330/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./330/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./330/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = 0 [pid 7070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./330/file0") = 0 [pid 5034] getdents64(3, [pid 7070] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3) = 0 [pid 5034] rmdir("./330") = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./336/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7068] <... mount resumed>) = 0 [pid 5034] mkdir("./331", 0777) = 0 [pid 7068] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7069] close(3 [pid 7068] chdir("./file0" [pid 5034] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7069] <... close resumed>) = 0 [ 279.953584][ T7069] loop4: detected capacity change from 0 to 4096 [pid 5031] openat(AT_FDCWD, "./336/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7069] mkdir("./file0", 0777 [pid 7068] <... chdir resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 4 [pid 7069] <... mkdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(4, "", [pid 7068] ioctl(4, LOOP_CLR_FD [pid 5034] close(3 [pid 7068] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7069] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7068] close(4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7068] <... close resumed>) = 0 [pid 7068] exit_group(0) = ? [pid 7068] +++ exited with 0 +++ [pid 5031] getdents64(4, [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7068, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 7072 attached [pid 7072] set_robust_list(0x55555635e660, 24) = 0 [pid 7072] chdir("./331" [pid 5029] <... restart_syscall resumed>) = 0 [pid 5029] umount2("./337", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./337", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7072 [pid 5029] umount2("./337/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./337/binderfs", [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./337/binderfs") = 0 [pid 5029] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7072] <... chdir resumed>) = 0 [pid 7072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7072] setpgid(0, 0) = 0 [pid 7072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7072] write(3, "1000", 4 [pid 5031] getdents64(4, [pid 7072] <... write resumed>) = 4 [pid 7072] close(3) = 0 [pid 7072] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7072] memfd_create("syzkaller", 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./336/file0") = 0 [pid 7072] <... memfd_create resumed>) = 3 [pid 7072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] getdents64(3, [pid 7072] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7070] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] close(3) = 0 [ 280.034913][ T7069] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] rmdir("./336") = 0 [pid 7071] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] mkdir("./337", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7073 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7073 attached [pid 7070] <... write resumed>) = 2097152 [pid 5029] newfstatat(AT_FDCWD, "./337/file0", [pid 7073] set_robust_list(0x55555635e660, 24 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7073] <... set_robust_list resumed>) = 0 [pid 5029] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7073] chdir("./337" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7073] <... chdir resumed>) = 0 [pid 7071] <... write resumed>) = 2097152 [pid 7070] munmap(0x7ff0df171000, 138412032 [pid 5029] openat(AT_FDCWD, "./337/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7073] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7072] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7073] <... prctl resumed>) = 0 [pid 7070] <... munmap resumed>) = 0 [pid 7069] <... mount resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 7069] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7073] setpgid(0, 0 [pid 7069] <... openat resumed>) = 3 [pid 5029] newfstatat(4, "", [pid 7073] <... setpgid resumed>) = 0 [pid 7069] chdir("./file0" [pid 7073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7073] <... openat resumed>) = 3 [pid 7069] <... chdir resumed>) = 0 [pid 7070] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] getdents64(4, [pid 7073] write(3, "1000", 4 [pid 7069] ioctl(4, LOOP_CLR_FD [pid 7073] <... write resumed>) = 4 [pid 7070] <... openat resumed>) = 4 [pid 7069] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7073] close(3 [pid 7070] ioctl(4, LOOP_SET_FD, 3 [pid 7069] close(4 [pid 5029] getdents64(4, [pid 7073] <... close resumed>) = 0 [pid 7069] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7073] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7071] munmap(0x7ff0df171000, 138412032 [pid 7069] exit_group(0 [pid 5029] close(4 [pid 7069] <... exit_group resumed>) = ? [pid 7073] memfd_create("syzkaller", 0 [pid 5029] <... close resumed>) = 0 [pid 7071] <... munmap resumed>) = 0 [pid 5029] rmdir("./337/file0") = 0 [pid 5029] getdents64(3, [pid 7073] <... memfd_create resumed>) = 3 [pid 7073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7069] +++ exited with 0 +++ [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7071] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] close(3 [pid 7071] <... openat resumed>) = 4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7069, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 7071] ioctl(4, LOOP_SET_FD, 3 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 7071] <... ioctl resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./337" [pid 7070] <... ioctl resumed>) = 0 [pid 7070] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 7070] <... close resumed>) = 0 [pid 5029] mkdir("./338", 0777) = 0 [pid 5033] umount2("./331", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./331", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7070] mkdir("./file0", 0777 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] newfstatat(3, "", [pid 7070] <... mkdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 7070] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 280.202635][ T7070] loop1: detected capacity change from 0 to 4096 [ 280.224349][ T7071] loop3: detected capacity change from 0 to 4096 ./strace-static-x86_64: Process 7074 attached [pid 7072] <... write resumed>) = 2097152 [pid 5033] umount2("./331/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7074 [pid 5033] newfstatat(AT_FDCWD, "./331/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7074] set_robust_list(0x55555635e660, 24 [pid 7071] close(3 [pid 5033] unlink("./331/binderfs" [pid 7071] <... close resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7071] mkdir("./file0", 0777 [pid 5033] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7074] <... set_robust_list resumed>) = 0 [pid 7071] <... mkdir resumed>) = 0 [pid 7074] chdir("./338" [pid 7071] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7074] <... chdir resumed>) = 0 [pid 7074] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7072] munmap(0x7ff0df171000, 138412032 [pid 7074] <... prctl resumed>) = 0 [pid 7074] setpgid(0, 0) = 0 [pid 7074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... umount2 resumed>) = 0 [pid 7074] <... openat resumed>) = 3 [pid 7070] <... mount resumed>) = 0 [pid 5033] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7074] write(3, "1000", 4 [pid 7070] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7074] <... write resumed>) = 4 [pid 7070] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./331/file0", [pid 7074] close(3 [pid 7070] chdir("./file0" [pid 7074] <... close resumed>) = 0 [pid 7072] <... munmap resumed>) = 0 [pid 7070] <... chdir resumed>) = 0 [pid 7074] symlink("/dev/binderfs", "./binderfs" [pid 7070] ioctl(4, LOOP_CLR_FD [pid 7072] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7074] <... symlink resumed>) = 0 [pid 7072] <... openat resumed>) = 4 [pid 7071] <... mount resumed>) = 0 [pid 7070] <... ioctl resumed>) = 0 [pid 5033] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7070] close(4) = 0 [ 280.251179][ T7070] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 280.272219][ T7071] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7072] ioctl(4, LOOP_SET_FD, 3 [pid 7070] exit_group(0 [pid 7074] memfd_create("syzkaller", 0 [pid 7071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7070] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7071] <... openat resumed>) = 3 [pid 7074] <... memfd_create resumed>) = 3 [pid 7073] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7072] <... ioctl resumed>) = 0 [pid 7070] +++ exited with 0 +++ [pid 5033] openat(AT_FDCWD, "./331/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7072] close(3 [pid 5033] <... openat resumed>) = 4 [pid 7074] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7072] <... close resumed>) = 0 [pid 7071] chdir("./file0" [pid 5033] newfstatat(4, "", [pid 7074] <... mmap resumed>) = 0x7ff0df171000 [pid 7072] mkdir("./file0", 0777 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7070, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7072] <... mkdir resumed>) = 0 [pid 7072] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7071] <... chdir resumed>) = 0 [pid 5033] getdents64(4, [pid 5030] umount2("./339", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7071] ioctl(4, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7071] <... ioctl resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "./339", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7071] close(4 [pid 5033] close(4 [pid 7073] <... write resumed>) = 2097152 [pid 7071] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7071] exit_group(0 [pid 5033] rmdir("./331/file0" [pid 5030] newfstatat(3, "", [pid 7071] <... exit_group resumed>) = ? [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 280.321464][ T7072] loop5: detected capacity change from 0 to 4096 [ 280.356566][ T7072] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7074] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7073] munmap(0x7ff0df171000, 138412032 [pid 7072] <... mount resumed>) = 0 [pid 7071] +++ exited with 0 +++ [pid 5033] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7071, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 7072] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7072] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 5030] umount2("./339/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./339", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7072] chdir("./file0" [pid 5033] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7072] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./339", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./339/binderfs", [pid 7073] <... munmap resumed>) = 0 [pid 7072] ioctl(4, LOOP_CLR_FD [pid 5033] rmdir("./331" [pid 5032] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7073] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7072] <... ioctl resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5030] unlink("./339/binderfs" [pid 7072] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 7073] <... openat resumed>) = 4 [pid 5033] mkdir("./332", 0777 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... unlink resumed>) = 0 [pid 5032] umount2("./339/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./339/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] unlink("./339/binderfs" [pid 5030] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7072] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 7072] exit_group(0 [pid 5032] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7072] <... exit_group resumed>) = ? [pid 7073] ioctl(4, LOOP_SET_FD, 3 [pid 7072] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7072, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./331", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./331", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./331/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./331/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./331/binderfs") = 0 [pid 5034] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7073] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7075 [pid 5034] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 7075 attached [pid 7075] set_robust_list(0x55555635e660, 24) = 0 [pid 7073] close(3 [pid 5034] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 280.433519][ T7073] loop2: detected capacity change from 0 to 4096 [pid 7075] chdir("./332" [pid 7074] <... write resumed>) = 2097152 [pid 7073] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./331/file0", [pid 7075] <... chdir resumed>) = 0 [pid 7073] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./331/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7075] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7073] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./331/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 7075] <... prctl resumed>) = 0 [pid 7074] munmap(0x7ff0df171000, 138412032 [pid 7073] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] rmdir("./331/file0" [pid 7075] setpgid(0, 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./331") = 0 [pid 5034] mkdir("./332", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7075] <... setpgid resumed>) = 0 [pid 7074] <... munmap resumed>) = 0 [pid 7075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] <... openat resumed>) = 3 [pid 7074] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7075] write(3, "1000", 4 [pid 7074] <... openat resumed>) = 4 [pid 5034] ioctl(3, LOOP_CLR_FD) = 0 [pid 7075] <... write resumed>) = 4 [pid 7074] ioctl(4, LOOP_SET_FD, 3 [pid 7075] close(3 [pid 7074] <... ioctl resumed>) = 0 [pid 5034] close(3) = 0 [pid 7075] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7075] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 7076 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7076 [pid 7076] set_robust_list(0x55555635e660, 24) = 0 [pid 7076] chdir("./332") = 0 [pid 7076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7075] <... symlink resumed>) = 0 [pid 7076] setpgid(0, 0) = 0 [pid 7076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7075] memfd_create("syzkaller", 0) = 3 [pid 7074] close(3 [pid 7075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7074] <... close resumed>) = 0 [pid 7075] <... mmap resumed>) = 0x7ff0df171000 [pid 7074] mkdir("./file0", 0777 [pid 5032] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7076] <... openat resumed>) = 3 [pid 7076] write(3, "1000", 4) = 4 [pid 7076] close(3) = 0 [pid 7076] symlink("/dev/binderfs", "./binderfs") = 0 [ 280.507684][ T7073] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 280.533634][ T7074] loop0: detected capacity change from 0 to 4096 [pid 7074] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7074] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] newfstatat(AT_FDCWD, "./339/file0", [pid 7076] memfd_create("syzkaller", 0 [pid 5030] <... umount2 resumed>) = 0 [pid 7076] <... memfd_create resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7076] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7076] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./339/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./339/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./339/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./339" [pid 5032] openat(AT_FDCWD, "./339/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./340", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 280.576978][ T7074] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5032] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] close(4) = 0 [pid 5032] rmdir("./339/file0"./strace-static-x86_64: Process 7077 attached ) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7077 [pid 5032] getdents64(3, [pid 7077] set_robust_list(0x55555635e660, 24 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7077] <... set_robust_list resumed>) = 0 [pid 7077] chdir("./340") = 0 [pid 5032] close(3 [pid 7077] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... close resumed>) = 0 [pid 7077] <... prctl resumed>) = 0 [pid 5032] rmdir("./339" [pid 7077] setpgid(0, 0) = 0 [pid 7077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... rmdir resumed>) = 0 [pid 7077] <... openat resumed>) = 3 [pid 7077] write(3, "1000", 4 [pid 7073] <... mount resumed>) = 0 [pid 5032] mkdir("./340", 0777 [pid 7077] <... write resumed>) = 4 [pid 7073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7077] close(3) = 0 [pid 7077] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... mkdir resumed>) = 0 [pid 7073] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7077] <... symlink resumed>) = 0 [pid 7073] chdir("./file0" [pid 5032] <... openat resumed>) = 3 [pid 7073] <... chdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7073] ioctl(4, LOOP_CLR_FD [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7077] memfd_create("syzkaller", 0 [pid 7073] <... ioctl resumed>) = 0 [pid 5032] close(3 [pid 7073] close(4 [pid 7077] <... memfd_create resumed>) = 3 [pid 7077] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... close resumed>) = 0 [pid 7073] <... close resumed>) = 0 [pid 7077] <... mmap resumed>) = 0x7ff0df171000 [pid 7074] <... mount resumed>) = 0 [pid 7073] exit_group(0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7075] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7074] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7073] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 7078 attached [pid 7076] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7078] set_robust_list(0x55555635e660, 24) = 0 [pid 7078] chdir("./340" [pid 7073] +++ exited with 0 +++ [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7078 [pid 7074] <... openat resumed>) = 3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7073, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7074] chdir("./file0") = 0 [pid 5031] umount2("./337", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7074] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7074] <... ioctl resumed>) = 0 [pid 7078] <... chdir resumed>) = 0 [pid 7078] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7075] <... write resumed>) = 2097152 [pid 7074] close(4 [pid 5031] openat(AT_FDCWD, "./337", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7078] <... prctl resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 7075] munmap(0x7ff0df171000, 138412032 [pid 7074] <... close resumed>) = 0 [pid 7078] setpgid(0, 0 [pid 7074] exit_group(0 [pid 5031] newfstatat(3, "", [pid 7074] <... exit_group resumed>) = ? [pid 7078] <... setpgid resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] getdents64(3, [pid 7078] <... openat resumed>) = 3 [pid 7074] +++ exited with 0 +++ [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7078] write(3, "1000", 4 [pid 5031] umount2("./337/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7074, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./337/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./337/binderfs" [pid 5029] umount2("./338", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7078] <... write resumed>) = 4 [pid 7075] <... munmap resumed>) = 0 [pid 5031] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7078] close(3 [pid 7075] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7078] <... close resumed>) = 0 [pid 7075] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./338", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7075] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./338/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7078] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7078] <... symlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./338/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./338/binderfs" [pid 7078] memfd_create("syzkaller", 0 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7076] <... write resumed>) = 2097152 [pid 7075] <... ioctl resumed>) = 0 [pid 7076] munmap(0x7ff0df171000, 138412032 [pid 7075] close(3) = 0 [pid 7078] <... memfd_create resumed>) = 3 [pid 7078] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7076] <... munmap resumed>) = 0 [pid 7075] mkdir("./file0", 0777 [pid 7077] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7076] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7075] <... mkdir resumed>) = 0 [ 280.756262][ T7075] loop4: detected capacity change from 0 to 4096 [pid 7075] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7076] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = 0 [pid 7076] ioctl(4, LOOP_SET_FD, 3 [pid 7078] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7076] <... ioctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5031] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./337/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./337/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(4, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(AT_FDCWD, "./338/file0", [pid 5031] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] openat(AT_FDCWD, "./338/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7076] close(3 [pid 5031] close(4 [pid 5029] <... openat resumed>) = 4 [pid 7076] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 7076] mkdir("./file0", 0777 [pid 5031] rmdir("./337/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7076] <... mkdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] getdents64(4, [pid 5031] getdents64(3, [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 5031] close(3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] close(4 [pid 5031] rmdir("./337" [pid 5029] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [ 280.814891][ T7075] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 280.832957][ T7076] loop5: detected capacity change from 0 to 4096 [pid 5029] rmdir("./338/file0" [pid 7076] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5031] mkdir("./338", 0777 [pid 5029] <... rmdir resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] close(3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] <... close resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] rmdir("./338" [pid 7077] <... write resumed>) = 2097152 [pid 7075] <... mount resumed>) = 0 [pid 7077] munmap(0x7ff0df171000, 138412032 [pid 7075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 7075] chdir("./file0") = 0 [pid 5029] mkdir("./339", 0777 [pid 7075] ioctl(4, LOOP_CLR_FD [pid 5029] <... mkdir resumed>) = 0 [pid 7075] <... ioctl resumed>) = 0 [pid 5031] close(3 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7075] close(4 [pid 5031] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7075] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7075] exit_group(0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7075] <... exit_group resumed>) = ? [pid 5029] close(3) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7079 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7080 attached [pid 7080] set_robust_list(0x55555635e660, 24 [pid 7075] +++ exited with 0 +++ [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7080 ./strace-static-x86_64: Process 7079 attached [pid 7079] set_robust_list(0x55555635e660, 24) = 0 [pid 7079] chdir("./338") = 0 [pid 7079] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7079] setpgid(0, 0) = 0 [pid 7079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7080] <... set_robust_list resumed>) = 0 [pid 7079] write(3, "1000", 4 [pid 7080] chdir("./339") = 0 [pid 7079] <... write resumed>) = 4 [pid 7077] <... munmap resumed>) = 0 [pid 7080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7080] setpgid(0, 0 [pid 7079] close(3 [pid 7077] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7076] <... mount resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7075, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 7080] <... setpgid resumed>) = 0 [pid 7077] <... openat resumed>) = 4 [ 280.877132][ T7076] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7076] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7079] <... close resumed>) = 0 [pid 7080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7079] symlink("/dev/binderfs", "./binderfs" [pid 7078] <... write resumed>) = 2097152 [pid 7077] ioctl(4, LOOP_SET_FD, 3 [pid 7076] <... openat resumed>) = 3 [pid 5033] umount2("./332", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7080] <... openat resumed>) = 3 [pid 7079] <... symlink resumed>) = 0 [pid 7079] memfd_create("syzkaller", 0) = 3 [pid 7079] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7080] write(3, "1000", 4 [pid 7076] chdir("./file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7080] <... write resumed>) = 4 [pid 7076] <... chdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./332", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7080] close(3 [pid 7076] ioctl(4, LOOP_CLR_FD) = 0 [pid 7080] <... close resumed>) = 0 [pid 7076] close(4 [pid 7080] symlink("/dev/binderfs", "./binderfs" [pid 7078] munmap(0x7ff0df171000, 138412032 [pid 7076] <... close resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 7080] <... symlink resumed>) = 0 [pid 7078] <... munmap resumed>) = 0 [pid 7076] exit_group(0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7076] <... exit_group resumed>) = ? [pid 7076] +++ exited with 0 +++ [pid 5033] getdents64(3, [pid 7077] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7080] memfd_create("syzkaller", 0 [pid 7077] close(3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7076, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 7080] <... memfd_create resumed>) = 3 [pid 7077] <... close resumed>) = 0 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5033] umount2("./332/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7080] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7078] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7077] mkdir("./file0", 0777 [pid 5034] <... restart_syscall resumed>) = 0 [pid 7080] <... mmap resumed>) = 0x7ff0df171000 [pid 7078] <... openat resumed>) = 4 [pid 7077] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7077] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./332", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./332", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 280.942147][ T7077] loop1: detected capacity change from 0 to 4096 [pid 7078] ioctl(4, LOOP_SET_FD, 3 [pid 5034] newfstatat(3, "", [pid 5033] newfstatat(AT_FDCWD, "./332/binderfs", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./332/binderfs") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./332/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./332/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./332/binderfs") = 0 [pid 5034] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7078] <... ioctl resumed>) = 0 [pid 7078] close(3) = 0 [pid 7079] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7078] mkdir("./file0", 0777) = 0 [ 280.988151][ T7077] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 280.989460][ T7078] loop3: detected capacity change from 0 to 4096 [pid 7078] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./332/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./332/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7080] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] getdents64(4, [pid 7078] <... mount resumed>) = 0 [pid 7078] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7078] chdir("./file0") = 0 [pid 7078] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7078] close(4 [pid 5034] getdents64(4, [pid 7078] <... close resumed>) = 0 [pid 7078] exit_group(0) = ? [pid 7078] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7078, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7079] <... write resumed>) = 2097152 [ 281.045896][ T7078] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7079] munmap(0x7ff0df171000, 138412032 [pid 5034] close(4) = 0 [pid 5034] rmdir("./332/file0") = 0 [pid 5032] umount2("./340", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./340", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(3, [pid 5032] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(3, "", [pid 5034] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] getdents64(3, [pid 7077] <... mount resumed>) = 0 [pid 5034] rmdir("./332" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7079] <... munmap resumed>) = 0 [pid 5032] umount2("./340/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7077] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7077] chdir("./file0") = 0 [pid 5032] newfstatat(AT_FDCWD, "./340/binderfs", [pid 7077] ioctl(4, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7077] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] unlink("./340/binderfs" [pid 7077] close(4 [pid 5034] mkdir("./333", 0777 [pid 5032] <... unlink resumed>) = 0 [pid 7079] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7077] <... close resumed>) = 0 [pid 5032] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7079] <... openat resumed>) = 4 [pid 7077] exit_group(0) = ? [pid 7079] ioctl(4, LOOP_SET_FD, 3 [pid 7077] +++ exited with 0 +++ [pid 5034] <... mkdir resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7077, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] umount2("./340", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./340", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 7080] <... write resumed>) = 2097152 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./340/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./340/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5030] newfstatat(AT_FDCWD, "./340/binderfs", [pid 5032] openat(AT_FDCWD, "./340/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] unlink("./340/binderfs" [pid 5032] newfstatat(4, "", [pid 7079] <... ioctl resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 7079] close(3) = 0 [pid 5032] getdents64(4, [pid 7079] mkdir("./file0", 0777 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7079] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7081 attached [pid 7079] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7081] set_robust_list(0x55555635e660, 24 [pid 5032] close(4) = 0 [ 281.130696][ T7079] loop2: detected capacity change from 0 to 4096 [pid 5032] rmdir("./340/file0" [pid 7080] munmap(0x7ff0df171000, 138412032 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7081 [pid 5033] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7081] <... set_robust_list resumed>) = 0 [pid 7080] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7081] chdir("./333" [pid 5032] <... rmdir resumed>) = 0 [pid 7081] <... chdir resumed>) = 0 [pid 7081] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 7081] <... prctl resumed>) = 0 [pid 5032] rmdir("./340" [pid 7081] setpgid(0, 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7081] <... setpgid resumed>) = 0 [pid 5032] mkdir("./341", 0777) = 0 [pid 7081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7081] write(3, "1000", 4) = 4 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7081] close(3 [pid 5032] <... openat resumed>) = 3 [pid 7081] <... close resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7081] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7081] <... symlink resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./332/file0", [pid 5032] close(3 [pid 7081] memfd_create("syzkaller", 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... close resumed>) = 0 [pid 7081] <... memfd_create resumed>) = 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7081] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] umount2("./332/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7080] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 7082 attached ) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7082 [pid 7082] set_robust_list(0x55555635e660, 24) = 0 [pid 7082] chdir("./341") = 0 [pid 7082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7082] setpgid(0, 0) = 0 [pid 7082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 281.182399][ T7079] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7080] ioctl(4, LOOP_SET_FD, 3 [pid 5033] openat(AT_FDCWD, "./332/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 7082] write(3, "1000", 4) = 4 [pid 7082] close(3) = 0 [pid 7082] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7080] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", [pid 5030] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7082] memfd_create("syzkaller", 0 [pid 7080] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7082] <... memfd_create resumed>) = 3 [pid 7082] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7080] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./340/file0", [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(4, [pid 7080] mkdir("./file0", 0777 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7080] <... mkdir resumed>) = 0 [pid 5033] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7080] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./340/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] rmdir("./332/file0") = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [ 281.233688][ T7080] loop0: detected capacity change from 0 to 4096 [pid 5033] close(3) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] rmdir("./332" [pid 5030] getdents64(4, [pid 7079] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./333", 0777 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5033] <... mkdir resumed>) = 0 [pid 7079] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 7079] <... openat resumed>) = 3 [pid 7079] chdir("./file0") = 0 [pid 7079] ioctl(4, LOOP_CLR_FD) = 0 [pid 7079] close(4) = 0 [pid 7079] exit_group(0 [pid 5033] <... openat resumed>) = 3 [pid 5030] rmdir("./340/file0" [pid 7079] <... exit_group resumed>) = ? [pid 7079] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7079, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] <... rmdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(3, [pid 5031] umount2("./338", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./338", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] getdents64(3, [pid 5033] close(3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(3 [pid 5033] <... close resumed>) = 0 [pid 5031] umount2("./338/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./338/binderfs", [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 ./strace-static-x86_64: Process 7083 attached [pid 5031] unlink("./338/binderfs" [pid 5030] rmdir("./340" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7083 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./341", 0777 [pid 7083] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 7083] chdir("./333" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7083] <... chdir resumed>) = 0 [ 281.285577][ T7080] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7083] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7081] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... openat resumed>) = 3 [pid 7083] <... prctl resumed>) = 0 [pid 7083] setpgid(0, 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7083] <... setpgid resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] close(3) = 0 [pid 7083] <... openat resumed>) = 3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7083] write(3, "1000", 4./strace-static-x86_64: Process 7084 attached ) = 4 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7084 [pid 7084] set_robust_list(0x55555635e660, 24 [pid 7083] close(3) = 0 [pid 7083] symlink("/dev/binderfs", "./binderfs" [pid 7084] <... set_robust_list resumed>) = 0 [pid 7083] <... symlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 7084] chdir("./341" [pid 5031] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7084] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./338/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7084] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7083] memfd_create("syzkaller", 0 [pid 7082] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7084] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7084] setpgid(0, 0 [pid 5031] openat(AT_FDCWD, "./338/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 7084] <... setpgid resumed>) = 0 [pid 7083] <... memfd_create resumed>) = 3 [pid 7080] <... mount resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 7084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./338/file0" [pid 7084] <... openat resumed>) = 3 [pid 7083] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7080] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... rmdir resumed>) = 0 [pid 7084] write(3, "1000", 4 [pid 7083] <... mmap resumed>) = 0x7ff0df171000 [pid 7080] <... openat resumed>) = 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./338" [pid 7084] <... write resumed>) = 4 [pid 5031] <... rmdir resumed>) = 0 [pid 7084] close(3 [pid 7080] chdir("./file0") = 0 [pid 7084] <... close resumed>) = 0 [pid 7080] ioctl(4, LOOP_CLR_FD [pid 5031] mkdir("./339", 0777 [pid 7084] symlink("/dev/binderfs", "./binderfs" [pid 7080] <... ioctl resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7084] <... symlink resumed>) = 0 [pid 7080] close(4 [pid 5031] <... openat resumed>) = 3 [pid 7080] <... close resumed>) = 0 [pid 7080] exit_group(0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7080] <... exit_group resumed>) = ? [pid 5031] <... ioctl resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7085 attached , child_tidptr=0x55555635e650) = 7085 [pid 7085] set_robust_list(0x55555635e660, 24) = 0 [pid 7080] +++ exited with 0 +++ [pid 7085] chdir("./339" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7080, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7084] memfd_create("syzkaller", 0 [pid 5029] umount2("./339", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] <... chdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7085] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] openat(AT_FDCWD, "./339", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7085] <... prctl resumed>) = 0 [pid 7084] <... memfd_create resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 7085] setpgid(0, 0 [pid 5029] newfstatat(3, "", [pid 7085] <... setpgid resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7084] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] getdents64(3, [pid 7084] <... mmap resumed>) = 0x7ff0df171000 [pid 7085] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./339/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./339/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./339/binderfs" [pid 7085] write(3, "1000", 4 [pid 5029] <... unlink resumed>) = 0 [pid 7085] <... write resumed>) = 4 [pid 7085] close(3 [pid 5029] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] <... close resumed>) = 0 [pid 7085] symlink("/dev/binderfs", "./binderfs" [pid 7081] <... write resumed>) = 2097152 [pid 7085] <... symlink resumed>) = 0 [pid 7085] memfd_create("syzkaller", 0) = 3 [pid 7081] munmap(0x7ff0df171000, 138412032 [pid 7085] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7081] <... munmap resumed>) = 0 [pid 7081] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7081] ioctl(4, LOOP_SET_FD, 3 [pid 7082] <... write resumed>) = 2097152 [pid 7082] munmap(0x7ff0df171000, 138412032) = 0 [pid 7084] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7083] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7081] <... ioctl resumed>) = 0 [pid 7081] close(3) = 0 [pid 7082] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7081] mkdir("./file0", 0777 [pid 7082] <... openat resumed>) = 4 [pid 7082] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 7081] <... mkdir resumed>) = 0 [pid 7081] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] <... umount2 resumed>) = 0 [ 281.499182][ T7081] loop5: detected capacity change from 0 to 4096 [ 281.535184][ T7082] loop3: detected capacity change from 0 to 4096 [pid 5029] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7082] close(3) = 0 [pid 7082] mkdir("./file0", 0777) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./339/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7082] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7085] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7084] <... write resumed>) = 2097152 [pid 7083] <... write resumed>) = 2097152 [pid 5029] openat(AT_FDCWD, "./339/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7084] munmap(0x7ff0df171000, 138412032 [pid 7083] munmap(0x7ff0df171000, 138412032 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 7083] <... munmap resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 7081] <... mount resumed>) = 0 [pid 7083] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7085] <... write resumed>) = 2097152 [pid 7084] <... munmap resumed>) = 0 [pid 7083] <... openat resumed>) = 4 [ 281.557999][ T7081] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 281.582648][ T7082] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5029] close(4 [pid 7085] munmap(0x7ff0df171000, 138412032 [pid 7083] ioctl(4, LOOP_SET_FD, 3 [pid 7081] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./339/file0" [pid 7081] <... openat resumed>) = 3 [pid 7081] chdir("./file0") = 0 [pid 7081] ioctl(4, LOOP_CLR_FD) = 0 [pid 7082] <... mount resumed>) = 0 [pid 7081] close(4) = 0 [pid 7081] exit_group(0) = ? [pid 7081] +++ exited with 0 +++ [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7081, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7082] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5029] close(3 [pid 7082] chdir("./file0" [pid 7085] <... munmap resumed>) = 0 [pid 7084] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7082] <... chdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./339" [pid 7082] ioctl(4, LOOP_CLR_FD [pid 7084] <... openat resumed>) = 4 [pid 5029] <... rmdir resumed>) = 0 [pid 7082] <... ioctl resumed>) = 0 [pid 7084] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./333", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] mkdir("./340", 0777 [pid 7085] <... openat resumed>) = 4 [pid 7082] close(4) = 0 [pid 7082] exit_group(0) = ? [pid 5029] <... mkdir resumed>) = 0 [pid 7085] ioctl(4, LOOP_SET_FD, 3 [pid 7082] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7082, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5032] umount2("./341", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./341", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./341/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./341/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./341/binderfs") = 0 [pid 5032] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] <... ioctl resumed>) = 0 [pid 7084] <... ioctl resumed>) = 0 [pid 7083] <... ioctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./333", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7085] close(3 [pid 7084] close(3 [pid 7083] close(3 [pid 5034] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 7085] <... close resumed>) = 0 [pid 7084] <... close resumed>) = 0 [pid 7083] <... close resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7085] mkdir("./file0", 0777 [pid 7084] mkdir("./file0", 0777 [pid 7083] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7085] <... mkdir resumed>) = 0 [pid 7084] <... mkdir resumed>) = 0 [pid 7083] <... mkdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5029] close(3 [ 281.637690][ T7083] loop4: detected capacity change from 0 to 4096 [ 281.657126][ T7084] loop1: detected capacity change from 0 to 4096 [ 281.664075][ T7085] loop2: detected capacity change from 0 to 4096 [pid 7083] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7086 attached [pid 7084] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./333/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7086] set_robust_list(0x55555635e660, 24 [pid 7085] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./333/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./333/binderfs") = 0 [pid 7086] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7086 [pid 7086] chdir("./340") = 0 [pid 7086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7086] setpgid(0, 0) = 0 [pid 7086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7086] write(3, "1000", 4) = 4 [pid 7086] close(3) = 0 [pid 7086] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./333/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./333/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = 0 [pid 7086] memfd_create("syzkaller", 0 [pid 5032] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 4 [pid 5032] newfstatat(AT_FDCWD, "./341/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./341/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", [pid 5032] newfstatat(4, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5034] getdents64(4, [pid 5032] rmdir("./341/file0") = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(3, [pid 7086] <... memfd_create resumed>) = 3 [ 281.690963][ T7083] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 281.707081][ T7084] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 281.716251][ T7085] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7086] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(4, [pid 7086] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7083] <... mount resumed>) = 0 [pid 5034] close(4 [pid 5032] close(3 [pid 7083] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 7083] <... openat resumed>) = 3 [pid 7083] chdir("./file0" [pid 5034] rmdir("./333/file0" [pid 5032] rmdir("./341" [pid 7083] <... chdir resumed>) = 0 [pid 7083] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 7083] close(4) = 0 [pid 7083] exit_group(0 [pid 5032] <... rmdir resumed>) = 0 [pid 7083] <... exit_group resumed>) = ? [pid 7083] +++ exited with 0 +++ [pid 5032] mkdir("./342", 0777 [pid 5034] getdents64(3, [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7083, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5034] close(3 [pid 5033] umount2("./333", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./333" [pid 5033] openat(AT_FDCWD, "./333", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] mkdir("./334", 0777 [pid 5033] getdents64(3, [pid 5032] close(3) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] umount2("./333/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./333/binderfs", [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7087 [pid 5034] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 7087 attached [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7087] set_robust_list(0x55555635e660, 24 [pid 5033] unlink("./333/binderfs" [pid 7087] <... set_robust_list resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7087] chdir("./342" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7087] <... chdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 7087] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... close resumed>) = 0 [pid 7087] <... prctl resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7087] setpgid(0, 0) = 0 [pid 7087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7087] write(3, "1000", 4) = 4 [pid 7087] close(3./strace-static-x86_64: Process 7088 attached ) = 0 [pid 7088] set_robust_list(0x55555635e660, 24 [pid 7087] symlink("/dev/binderfs", "./binderfs" [pid 7088] <... set_robust_list resumed>) = 0 [pid 7087] <... symlink resumed>) = 0 [pid 7088] chdir("./334" [pid 7087] memfd_create("syzkaller", 0 [pid 7084] <... mount resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7088 [pid 7088] <... chdir resumed>) = 0 [pid 7084] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7088] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7084] <... openat resumed>) = 3 [pid 7088] <... prctl resumed>) = 0 [pid 7084] chdir("./file0" [pid 7088] setpgid(0, 0 [pid 7087] <... memfd_create resumed>) = 3 [pid 7088] <... setpgid resumed>) = 0 [pid 7087] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7084] <... chdir resumed>) = 0 [pid 7088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7087] <... mmap resumed>) = 0x7ff0df171000 [pid 7084] ioctl(4, LOOP_CLR_FD [pid 7088] <... openat resumed>) = 3 [pid 7085] <... mount resumed>) = 0 [pid 7086] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7085] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7088] write(3, "1000", 4) = 4 [pid 7084] <... ioctl resumed>) = 0 [pid 7088] close(3 [pid 7084] close(4) = 0 [pid 7084] exit_group(0) = ? [pid 7084] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7084, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] umount2("./341", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7088] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./341", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7088] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... openat resumed>) = 3 [pid 7088] <... symlink resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 7088] memfd_create("syzkaller", 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7088] <... memfd_create resumed>) = 3 [pid 5030] umount2("./341/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7088] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7088] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] newfstatat(AT_FDCWD, "./341/binderfs", [pid 7085] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7085] chdir("./file0" [pid 5030] unlink("./341/binderfs") = 0 [pid 5030] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] <... chdir resumed>) = 0 [pid 7085] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] close(4) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7085] exit_group(0) = ? [pid 5033] newfstatat(AT_FDCWD, "./333/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./333/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7085] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./333/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7085, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 4 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5033] newfstatat(4, "", [pid 5031] <... restart_syscall resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./341/file0", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(4, [pid 5030] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./339", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./341/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "./339", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5030] newfstatat(4, "", [pid 5031] newfstatat(3, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] getdents64(4, [pid 5033] close(4 [pid 5031] umount2("./339/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7087] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(4 [pid 5031] newfstatat(AT_FDCWD, "./339/binderfs", [pid 5030] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] rmdir("./341/file0" [pid 5031] unlink("./339/binderfs") = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./341") = 0 [pid 5030] mkdir("./342", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] rmdir("./333/file0") = 0 [pid 5033] getdents64(3, ./strace-static-x86_64: Process 7089 attached [pid 7089] set_robust_list(0x55555635e660, 24 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7089 [pid 7089] <... set_robust_list resumed>) = 0 [pid 5033] close(3 [pid 7088] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7089] chdir("./342" [pid 5033] <... close resumed>) = 0 [pid 7086] <... write resumed>) = 2097152 [pid 5033] rmdir("./333") = 0 [pid 7086] munmap(0x7ff0df171000, 138412032) = 0 [pid 5033] mkdir("./334", 0777 [pid 7089] <... chdir resumed>) = 0 [pid 7087] <... write resumed>) = 2097152 [pid 7086] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... umount2 resumed>) = 0 [pid 7087] munmap(0x7ff0df171000, 138412032 [pid 7089] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7086] <... openat resumed>) = 4 [pid 7089] <... prctl resumed>) = 0 [pid 7086] ioctl(4, LOOP_SET_FD, 3 [pid 7089] setpgid(0, 0 [pid 7087] <... munmap resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 7089] <... setpgid resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7087] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 7089] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7089] write(3, "1000", 4 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7088] <... write resumed>) = 2097152 [pid 7089] <... write resumed>) = 4 [pid 5033] close(3 [pid 7088] munmap(0x7ff0df171000, 138412032 [pid 7087] <... openat resumed>) = 4 [pid 7087] ioctl(4, LOOP_SET_FD, 3 [pid 7089] close(3 [pid 7087] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7089] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7090 attached [pid 7089] symlink("/dev/binderfs", "./binderfs" [pid 7088] <... munmap resumed>) = 0 [pid 7087] close(3 [pid 7086] <... ioctl resumed>) = 0 [pid 5031] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7090] set_robust_list(0x55555635e660, 24 [pid 7089] <... symlink resumed>) = 0 [pid 7088] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7087] <... close resumed>) = 0 [pid 7086] close(3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7090 [pid 7090] <... set_robust_list resumed>) = 0 [pid 7088] <... openat resumed>) = 4 [pid 7087] mkdir("./file0", 0777 [pid 7086] <... close resumed>) = 0 [pid 7090] chdir("./334" [pid 7089] memfd_create("syzkaller", 0 [pid 7088] ioctl(4, LOOP_SET_FD, 3 [pid 7087] <... mkdir resumed>) = 0 [pid 7086] mkdir("./file0", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7090] <... chdir resumed>) = 0 [pid 7086] <... mkdir resumed>) = 0 [pid 7090] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7089] <... memfd_create resumed>) = 3 [pid 7089] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7090] <... prctl resumed>) = 0 [pid 7088] <... ioctl resumed>) = 0 [pid 7087] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7086] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] newfstatat(AT_FDCWD, "./339/file0", [pid 7090] setpgid(0, 0 [pid 7088] close(3 [pid 7090] <... setpgid resumed>) = 0 [pid 7088] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7088] mkdir("./file0", 0777 [ 282.010739][ T7086] loop0: detected capacity change from 0 to 4096 [ 282.024297][ T7087] loop3: detected capacity change from 0 to 4096 [ 282.043362][ T7088] loop5: detected capacity change from 0 to 4096 [pid 5031] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7088] <... mkdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7090] <... openat resumed>) = 3 [pid 7088] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5031] openat(AT_FDCWD, "./339/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7090] write(3, "1000", 4 [pid 5031] <... openat resumed>) = 4 [pid 7090] <... write resumed>) = 4 [pid 5031] newfstatat(4, "", [pid 7090] close(3) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7090] symlink("/dev/binderfs", "./binderfs" [pid 5031] getdents64(4, [pid 7090] <... symlink resumed>) = 0 [pid 7090] memfd_create("syzkaller", 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7090] <... memfd_create resumed>) = 3 [pid 5031] getdents64(4, [pid 7090] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7090] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] close(4) = 0 [pid 5031] rmdir("./339/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./339") = 0 [ 282.054106][ T7087] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 282.063930][ T7086] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 282.074445][ T7088] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5031] mkdir("./340", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7091 attached [pid 7091] set_robust_list(0x55555635e660, 24) = 0 [pid 7086] <... mount resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7091 [pid 7091] chdir("./340" [pid 7086] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7091] <... chdir resumed>) = 0 [pid 7086] <... openat resumed>) = 3 [pid 7091] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7086] chdir("./file0" [pid 7091] <... prctl resumed>) = 0 [pid 7086] <... chdir resumed>) = 0 [pid 7086] ioctl(4, LOOP_CLR_FD) = 0 [pid 7091] setpgid(0, 0 [pid 7086] close(4 [pid 7091] <... setpgid resumed>) = 0 [pid 7088] <... mount resumed>) = 0 [pid 7087] <... mount resumed>) = 0 [pid 7086] <... close resumed>) = 0 [pid 7091] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7088] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7087] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7086] exit_group(0) = ? [pid 7089] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7086] +++ exited with 0 +++ [pid 7091] <... openat resumed>) = 3 [pid 7091] write(3, "1000", 4 [pid 7087] <... openat resumed>) = 3 [pid 7091] <... write resumed>) = 4 [pid 7088] <... openat resumed>) = 3 [pid 7087] chdir("./file0" [pid 7091] close(3 [pid 7088] chdir("./file0" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7086, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 7091] <... close resumed>) = 0 [pid 7088] <... chdir resumed>) = 0 [pid 7091] symlink("/dev/binderfs", "./binderfs" [pid 7088] ioctl(4, LOOP_CLR_FD [pid 7087] <... chdir resumed>) = 0 [pid 7088] <... ioctl resumed>) = 0 [pid 5029] umount2("./340", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7088] close(4 [pid 7091] <... symlink resumed>) = 0 [pid 7087] ioctl(4, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7091] memfd_create("syzkaller", 0 [pid 7090] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7088] <... close resumed>) = 0 [pid 7087] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./340", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7091] <... memfd_create resumed>) = 3 [pid 7088] exit_group(0 [pid 7087] close(4 [pid 5029] getdents64(3, [pid 7091] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7088] <... exit_group resumed>) = ? [pid 7087] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./340/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7091] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./340/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7088] +++ exited with 0 +++ [pid 5029] unlink("./340/binderfs" [pid 7087] exit_group(0 [pid 5029] <... unlink resumed>) = 0 [pid 7087] <... exit_group resumed>) = ? [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7088, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 7087] +++ exited with 0 +++ [pid 5034] <... restart_syscall resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7087, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./334", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./342", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./334", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./342", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] newfstatat(3, "", [pid 5032] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(3, "", [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5034] umount2("./334/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./334/binderfs", [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./342/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./342/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./342/binderfs") = 0 [pid 5032] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] unlink("./334/binderfs" [pid 5029] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./340/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./340/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 7090] <... write resumed>) = 2097152 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7091] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7090] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7089] <... write resumed>) = 2097152 [pid 5034] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(4 [pid 7089] munmap(0x7ff0df171000, 138412032) = 0 [pid 5029] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./340/file0" [pid 7089] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 7089] ioctl(4, LOOP_SET_FD, 3 [pid 7090] <... munmap resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./334/file0", [pid 5029] <... rmdir resumed>) = 0 [pid 7090] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] getdents64(3, [pid 7090] <... openat resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7090] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... close resumed>) = 0 [pid 5034] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./340") = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] mkdir("./341", 0777 [pid 7091] <... write resumed>) = 2097152 [pid 7090] <... ioctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./334/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... mkdir resumed>) = 0 [pid 7091] munmap(0x7ff0df171000, 138412032 [pid 7090] close(3 [pid 5034] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7090] <... close resumed>) = 0 [pid 7090] mkdir("./file0", 0777 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7089] <... ioctl resumed>) = 0 [pid 5032] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7090] <... mkdir resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7089] close(3 [pid 7091] <... munmap resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7091] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7090] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 7091] <... openat resumed>) = 4 [pid 7091] ioctl(4, LOOP_SET_FD, 3 [pid 7089] <... close resumed>) = 0 [pid 5034] getdents64(4, [ 282.312459][ T7089] loop1: detected capacity change from 0 to 4096 [ 282.323122][ T7090] loop4: detected capacity change from 0 to 4096 [ 282.348552][ T7091] loop2: detected capacity change from 0 to 4096 [pid 5032] newfstatat(AT_FDCWD, "./342/file0", [pid 5029] <... close resumed>) = 0 [pid 7089] mkdir("./file0", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7089] <... mkdir resumed>) = 0 [pid 5032] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7089] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7091] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] openat(AT_FDCWD, "./342/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./342/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5034] getdents64(4, [pid 5032] rmdir("./342" [pid 7091] close(3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./343", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 7092 attached [pid 5032] close(3 [pid 7092] set_robust_list(0x55555635e660, 24 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7093 attached [pid 7091] <... close resumed>) = 0 [pid 5034] close(4 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7092 [pid 5034] <... close resumed>) = 0 [pid 7093] set_robust_list(0x55555635e660, 24 [pid 7092] <... set_robust_list resumed>) = 0 [pid 7091] mkdir("./file0", 0777 [pid 5034] rmdir("./334/file0" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7093 [pid 7093] <... set_robust_list resumed>) = 0 [pid 7092] chdir("./341" [pid 7093] chdir("./343" [pid 7092] <... chdir resumed>) = 0 [pid 7091] <... mkdir resumed>) = 0 [pid 7093] <... chdir resumed>) = 0 [pid 7092] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... rmdir resumed>) = 0 [pid 7093] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7092] <... prctl resumed>) = 0 [pid 7091] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] getdents64(3, [pid 7093] <... prctl resumed>) = 0 [pid 7092] setpgid(0, 0 [pid 7093] setpgid(0, 0 [pid 7092] <... setpgid resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7093] <... setpgid resumed>) = 0 [pid 7092] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7092] <... openat resumed>) = 3 [pid 7093] <... openat resumed>) = 3 [pid 7092] write(3, "1000", 4 [pid 7093] write(3, "1000", 4 [pid 7092] <... write resumed>) = 4 [pid 7093] <... write resumed>) = 4 [pid 7092] close(3 [pid 7093] close(3 [pid 7092] <... close resumed>) = 0 [pid 7093] <... close resumed>) = 0 [pid 7092] symlink("/dev/binderfs", "./binderfs" [pid 7093] symlink("/dev/binderfs", "./binderfs" [pid 7092] <... symlink resumed>) = 0 [pid 5034] close(3 [pid 7093] <... symlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./334") = 0 [pid 7092] memfd_create("syzkaller", 0 [pid 5034] mkdir("./335", 0777) = 0 [pid 7092] <... memfd_create resumed>) = 3 [pid 7089] <... mount resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7093] memfd_create("syzkaller", 0 [pid 7092] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7089] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... openat resumed>) = 3 [pid 7093] <... memfd_create resumed>) = 3 [pid 7092] <... mmap resumed>) = 0x7ff0df171000 [pid 7089] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7093] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7093] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] close(3 [pid 7089] chdir("./file0" [pid 5034] <... close resumed>) = 0 [ 282.351679][ T7089] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 282.366321][ T7090] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 282.390234][ T7091] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7094 attached [pid 7089] <... chdir resumed>) = 0 [pid 7089] ioctl(4, LOOP_CLR_FD) = 0 [pid 7089] close(4) = 0 [pid 7089] exit_group(0) = ? [pid 7089] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7089, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] umount2("./342", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./342", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7094] set_robust_list(0x55555635e660, 24 [pid 5030] newfstatat(3, "", [pid 7094] <... set_robust_list resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7094 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7094] chdir("./335" [pid 5030] getdents64(3, [pid 7094] <... chdir resumed>) = 0 [pid 7094] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7094] <... prctl resumed>) = 0 [pid 7094] setpgid(0, 0 [pid 5030] umount2("./342/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7094] <... setpgid resumed>) = 0 [pid 7094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./342/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./342/binderfs") = 0 [pid 7094] <... openat resumed>) = 3 [pid 5030] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7094] write(3, "1000", 4) = 4 [pid 7094] close(3) = 0 [pid 7094] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7090] <... mount resumed>) = 0 [pid 7094] memfd_create("syzkaller", 0 [pid 7090] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7094] <... memfd_create resumed>) = 3 [pid 7090] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 7094] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7090] chdir("./file0" [pid 7094] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./342/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7090] <... chdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./342/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7090] ioctl(4, LOOP_CLR_FD [pid 5030] <... openat resumed>) = 4 [pid 7093] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7090] <... ioctl resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7091] <... mount resumed>) = 0 [pid 7090] close(4 [pid 7092] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7090] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7091] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] getdents64(4, [pid 7091] <... openat resumed>) = 3 [pid 7090] exit_group(0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./342/file0" [pid 7091] chdir("./file0" [pid 7090] <... exit_group resumed>) = ? [pid 5030] <... rmdir resumed>) = 0 [pid 7091] <... chdir resumed>) = 0 [pid 5030] getdents64(3, [pid 7090] +++ exited with 0 +++ [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7090, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] close(3 [pid 7091] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... close resumed>) = 0 [pid 7091] close(4 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5030] rmdir("./342" [pid 7091] <... close resumed>) = 0 [pid 7091] exit_group(0 [pid 5030] <... rmdir resumed>) = 0 [pid 7091] <... exit_group resumed>) = ? [pid 5033] umount2("./334", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./334", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] mkdir("./343", 0777 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./334/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./334/binderfs", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5033] unlink("./334/binderfs" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7091] +++ exited with 0 +++ [pid 5033] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7091, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5031] umount2("./340", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./340", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7095 attached [pid 7094] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7093] <... write resumed>) = 2097152 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7095 [pid 7095] set_robust_list(0x55555635e660, 24 [pid 5031] newfstatat(3, "", [pid 7095] <... set_robust_list resumed>) = 0 [pid 7095] chdir("./343" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7095] <... chdir resumed>) = 0 [pid 5031] getdents64(3, [pid 7095] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... umount2 resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7095] <... prctl resumed>) = 0 [pid 5031] umount2("./340/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7095] setpgid(0, 0) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7095] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] newfstatat(AT_FDCWD, "./340/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7095] <... openat resumed>) = 3 [pid 5033] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./340/binderfs" [pid 7095] write(3, "1000", 4 [pid 7092] <... write resumed>) = 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... unlink resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./334/file0", [pid 7095] <... write resumed>) = 4 [pid 7092] munmap(0x7ff0df171000, 138412032 [pid 7095] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./334/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7095] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7095] symlink("/dev/binderfs", "./binderfs" [pid 5033] openat(AT_FDCWD, "./334/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7095] <... symlink resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 7092] <... munmap resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7093] munmap(0x7ff0df171000, 138412032) = 0 [pid 7092] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7092] ioctl(4, LOOP_SET_FD, 3 [pid 7093] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7095] memfd_create("syzkaller", 0 [pid 7093] <... openat resumed>) = 4 [pid 5033] getdents64(4, [pid 7095] <... memfd_create resumed>) = 3 [pid 7094] <... write resumed>) = 2097152 [pid 7093] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7095] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7094] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 7094] <... munmap resumed>) = 0 [pid 7092] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7095] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] rmdir("./334/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7092] close(3 [pid 5033] close(3 [pid 7092] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./334" [pid 7092] mkdir("./file0", 0777) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./335", 0777 [ 282.654898][ T7092] loop0: detected capacity change from 0 to 4096 [ 282.675076][ T7093] loop3: detected capacity change from 0 to 4096 [pid 7092] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = 0 [pid 7094] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7093] <... ioctl resumed>) = 0 [pid 7093] close(3 [pid 7094] ioctl(4, LOOP_SET_FD, 3 [pid 7093] <... close resumed>) = 0 [pid 7093] mkdir("./file0", 0777) = 0 [pid 7093] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5031] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./340/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 7096 attached [pid 5031] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7096] set_robust_list(0x55555635e660, 24 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7096] <... set_robust_list resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./340/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7096] chdir("./335" [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 7096] <... chdir resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7096 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7096] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7094] <... ioctl resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 7096] <... prctl resumed>) = 0 [pid 5031] rmdir("./340/file0" [pid 7094] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 7096] setpgid(0, 0 [pid 7094] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 7096] <... setpgid resumed>) = 0 [pid 7094] mkdir("./file0", 0777 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7096] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] close(3 [pid 7094] <... mkdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [ 282.700383][ T7092] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 282.714153][ T7094] loop5: detected capacity change from 0 to 4096 [ 282.716969][ T7093] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] rmdir("./340") = 0 [pid 7094] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5031] mkdir("./341", 0777 [pid 7096] <... openat resumed>) = 3 [pid 7092] <... mount resumed>) = 0 [pid 7095] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7092] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... mkdir resumed>) = 0 [pid 7092] <... openat resumed>) = 3 [pid 7096] write(3, "1000", 4) = 4 [pid 7092] chdir("./file0" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7096] close(3) = 0 [pid 7096] symlink("/dev/binderfs", "./binderfs" [pid 7092] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7092] ioctl(4, LOOP_CLR_FD [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7096] <... symlink resumed>) = 0 [pid 7092] <... ioctl resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7097 ./strace-static-x86_64: Process 7097 attached [pid 7092] close(4 [pid 7097] set_robust_list(0x55555635e660, 24 [pid 7092] <... close resumed>) = 0 [pid 7097] <... set_robust_list resumed>) = 0 [pid 7092] exit_group(0 [pid 7097] chdir("./341" [pid 7092] <... exit_group resumed>) = ? [pid 7097] <... chdir resumed>) = 0 [pid 7096] memfd_create("syzkaller", 0 [pid 7097] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7097] setpgid(0, 0 [pid 7096] <... memfd_create resumed>) = 3 [pid 7092] +++ exited with 0 +++ [pid 7097] <... setpgid resumed>) = 0 [pid 7096] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7092, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=10 /* 0.10 s */} --- [pid 7097] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7096] <... mmap resumed>) = 0x7ff0df171000 [pid 7097] <... openat resumed>) = 3 [pid 7093] <... mount resumed>) = 0 [pid 7093] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7097] write(3, "1000", 4 [pid 7093] <... openat resumed>) = 3 [pid 5029] umount2("./341", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7097] <... write resumed>) = 4 [pid 7093] chdir("./file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7097] close(3 [pid 7093] <... chdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./341", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7097] <... close resumed>) = 0 [pid 7093] ioctl(4, LOOP_CLR_FD [pid 7097] symlink("/dev/binderfs", "./binderfs" [pid 7093] <... ioctl resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7093] close(4 [pid 5029] newfstatat(3, "", [pid 7097] <... symlink resumed>) = 0 [pid 7093] <... close resumed>) = 0 [ 282.773118][ T7094] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7097] memfd_create("syzkaller", 0 [pid 7093] exit_group(0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./341/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./341/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./341/binderfs" [pid 7093] <... exit_group resumed>) = ? [pid 7093] +++ exited with 0 +++ [pid 5029] <... unlink resumed>) = 0 [pid 7097] <... memfd_create resumed>) = 3 [pid 7097] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7093, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5029] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7097] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] umount2("./343", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./343", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./343/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./343/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./343/binderfs") = 0 [pid 7095] <... write resumed>) = 2097152 [pid 5032] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7095] munmap(0x7ff0df171000, 138412032) = 0 [pid 7095] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... umount2 resumed>) = 0 [pid 7095] <... openat resumed>) = 4 [pid 5032] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7095] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./343/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./343/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 7095] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5029] <... umount2 resumed>) = 0 [pid 7095] close(3 [pid 5032] <... close resumed>) = 0 [pid 7095] <... close resumed>) = 0 [pid 5032] rmdir("./343/file0" [pid 7095] mkdir("./file0", 0777 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 7095] <... mkdir resumed>) = 0 [pid 7094] <... mount resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7095] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7094] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7094] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./341/file0", [pid 7094] chdir("./file0" [pid 5032] rmdir("./343") = 0 [pid 5032] mkdir("./344", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = 0 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7094] <... chdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7094] ioctl(4, LOOP_CLR_FD./strace-static-x86_64: Process 7098 attached [pid 7096] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7094] <... ioctl resumed>) = 0 [pid 5029] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7098] set_robust_list(0x55555635e660, 24 [pid 7097] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7094] close(4 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7098 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./341/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 282.899430][ T7095] loop1: detected capacity change from 0 to 4096 [ 282.926358][ T7095] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5029] newfstatat(4, "", [pid 7094] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7098] <... set_robust_list resumed>) = 0 [pid 7094] exit_group(0 [pid 5029] getdents64(4, [pid 7098] chdir("./344" [pid 7094] <... exit_group resumed>) = ? [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./341/file0") = 0 [pid 7098] <... chdir resumed>) = 0 [pid 7094] +++ exited with 0 +++ [pid 5029] getdents64(3, [pid 7098] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7094, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 7098] <... prctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7098] setpgid(0, 0 [pid 5034] umount2("./335", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 7098] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./335", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5029] rmdir("./341" [pid 7098] <... openat resumed>) = 3 [pid 7097] <... write resumed>) = 2097152 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./342", 0777 [pid 7098] write(3, "1000", 4 [pid 5034] newfstatat(3, "", [pid 7098] <... write resumed>) = 4 [pid 7098] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7097] munmap(0x7ff0df171000, 138412032 [pid 5034] getdents64(3, [pid 5029] <... mkdir resumed>) = 0 [pid 7098] <... close resumed>) = 0 [pid 7098] symlink("/dev/binderfs", "./binderfs" [pid 7097] <... munmap resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7098] <... symlink resumed>) = 0 [pid 5034] umount2("./335/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./335/binderfs", [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] unlink("./335/binderfs" [pid 5029] close(3 [pid 7098] memfd_create("syzkaller", 0) = 3 [pid 7096] <... write resumed>) = 2097152 [pid 5034] <... unlink resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7098] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7096] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7098] <... mmap resumed>) = 0x7ff0df171000 [pid 7097] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7096] <... munmap resumed>) = 0 [pid 7097] <... openat resumed>) = 4 ./strace-static-x86_64: Process 7099 attached [pid 7097] ioctl(4, LOOP_SET_FD, 3 [pid 7099] set_robust_list(0x55555635e660, 24) = 0 [pid 7099] chdir("./342") = 0 [pid 7099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7099] setpgid(0, 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7099 [pid 7097] <... ioctl resumed>) = 0 [pid 7099] <... setpgid resumed>) = 0 [pid 7096] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7096] <... openat resumed>) = 4 [pid 7099] <... openat resumed>) = 3 [pid 7096] ioctl(4, LOOP_SET_FD, 3 [pid 7097] close(3) = 0 [pid 7097] mkdir("./file0", 0777 [pid 7099] write(3, "1000", 4) = 4 [pid 7099] close(3 [pid 7097] <... mkdir resumed>) = 0 [pid 7099] <... close resumed>) = 0 [pid 7099] symlink("/dev/binderfs", "./binderfs" [pid 7097] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7099] <... symlink resumed>) = 0 [pid 7099] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7096] <... ioctl resumed>) = 0 [pid 7096] close(3 [pid 7099] <... memfd_create resumed>) = 3 [pid 7099] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7096] <... close resumed>) = 0 [pid 5034] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7096] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7099] <... mmap resumed>) = 0x7ff0df171000 [pid 7096] <... mkdir resumed>) = 0 [ 283.035189][ T7097] loop2: detected capacity change from 0 to 4096 [ 283.053940][ T7096] loop4: detected capacity change from 0 to 4096 [ 283.072177][ T7097] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7096] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./335/file0", [pid 7095] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7098] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7095] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7095] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7095] chdir("./file0" [pid 5034] openat(AT_FDCWD, "./335/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7095] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 7095] ioctl(4, LOOP_CLR_FD [pid 5034] newfstatat(4, "", [pid 7095] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 7095] close(4) = 0 [pid 7097] <... mount resumed>) = 0 [pid 7095] exit_group(0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7095] <... exit_group resumed>) = ? [ 283.095721][ T7096] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7097] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7095] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7095, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7097] <... openat resumed>) = 3 [pid 7097] chdir("./file0" [pid 5034] close(4 [pid 5030] umount2("./343", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7097] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./335/file0" [pid 5030] openat(AT_FDCWD, "./343", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7097] ioctl(4, LOOP_CLR_FD [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", [pid 7097] <... ioctl resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7097] close(4) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./343/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7097] exit_group(0) = ? [pid 7097] +++ exited with 0 +++ [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7097, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5030] newfstatat(AT_FDCWD, "./343/binderfs", [pid 5034] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./341", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./341", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", [pid 5034] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 5030] unlink("./343/binderfs" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./341/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./341/binderfs", [pid 5034] rmdir("./335" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./341/binderfs") = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./336", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7096] <... mount resumed>) = 0 [pid 7096] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... openat resumed>) = 3 [pid 7098] <... write resumed>) = 2097152 [pid 7096] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7096] chdir("./file0") = 0 [pid 7096] ioctl(4, LOOP_CLR_FD) = 0 [pid 7096] close(4) = 0 [pid 7099] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7098] munmap(0x7ff0df171000, 138412032 [pid 7096] exit_group(0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7096] <... exit_group resumed>) = ? [pid 7096] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7096, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./335", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./335", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 5034] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./335/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./335/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./335/binderfs") = 0 [pid 5033] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7100 attached [pid 7098] <... munmap resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7100 [pid 5030] <... umount2 resumed>) = 0 [pid 7100] set_robust_list(0x55555635e660, 24) = 0 [pid 7100] chdir("./336") = 0 [pid 5030] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7100] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7100] setpgid(0, 0 [pid 7098] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./343/file0", [pid 7098] <... openat resumed>) = 4 [pid 7100] <... setpgid resumed>) = 0 [pid 7098] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7100] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] newfstatat(AT_FDCWD, "./341/file0", [pid 5030] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7100] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7100] write(3, "1000", 4 [pid 5031] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./343/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7100] <... write resumed>) = 4 [pid 7098] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 5031] openat(AT_FDCWD, "./341/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(4, "", [pid 7100] close(3 [pid 7098] close(3 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7100] <... close resumed>) = 0 [pid 7098] <... close resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5030] getdents64(4, [pid 7098] mkdir("./file0", 0777 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7098] <... mkdir resumed>) = 0 [pid 5030] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7098] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] getdents64(4, [pid 5030] close(4 [pid 7100] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./343/file0" [pid 5031] getdents64(4, [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(3, [pid 5031] close(4 [pid 7100] memfd_create("syzkaller", 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7100] <... memfd_create resumed>) = 3 [pid 5031] rmdir("./341/file0" [pid 5030] close(3 [pid 7100] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./343") = 0 [pid 5030] mkdir("./344", 0777 [pid 7099] <... write resumed>) = 2097152 [pid 5031] getdents64(3, [pid 5030] <... mkdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] close(3 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5031] rmdir("./341" [pid 5033] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./335/file0", [pid 5031] <... rmdir resumed>) = 0 [ 283.260973][ T7098] loop3: detected capacity change from 0 to 4096 [ 283.298800][ T7098] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] mkdir("./342", 0777 [pid 5033] umount2("./335/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] openat(AT_FDCWD, "./335/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5033] newfstatat(4, "", [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] getdents64(4, [pid 7099] munmap(0x7ff0df171000, 138412032) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] close(3 [pid 5033] getdents64(4, [pid 5031] <... close resumed>) = 0 [pid 7099] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7099] <... openat resumed>) = 4 [pid 7098] <... mount resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7099] ioctl(4, LOOP_SET_FD, 3 [pid 7100] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7099] <... ioctl resumed>) = 0 [pid 7098] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] close(4./strace-static-x86_64: Process 7101 attached ) = 0 [pid 7101] set_robust_list(0x55555635e660, 24 [pid 7099] close(3 [pid 7098] <... openat resumed>) = 3 [pid 5033] rmdir("./335/file0" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7101 [pid 7101] <... set_robust_list resumed>) = 0 [pid 7101] chdir("./342" [pid 5033] <... rmdir resumed>) = 0 [pid 7101] <... chdir resumed>) = 0 [pid 7098] chdir("./file0" [pid 7099] <... close resumed>) = 0 [pid 7101] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7098] <... chdir resumed>) = 0 [pid 7101] <... prctl resumed>) = 0 [pid 7099] mkdir("./file0", 0777 [pid 7098] ioctl(4, LOOP_CLR_FD [pid 7101] setpgid(0, 0) = 0 [pid 7101] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7099] <... mkdir resumed>) = 0 [pid 7098] <... ioctl resumed>) = 0 [pid 7101] <... openat resumed>) = 3 [pid 7099] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7098] close(4 [pid 5033] getdents64(3, [pid 7098] <... close resumed>) = 0 [pid 7098] exit_group(0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7101] write(3, "1000", 4) = 4 [pid 7101] close(3 [pid 7098] <... exit_group resumed>) = ? [pid 5033] close(3 [pid 7101] <... close resumed>) = 0 [pid 7101] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... close resumed>) = 0 [ 283.365710][ T7099] loop0: detected capacity change from 0 to 4096 [pid 7101] <... symlink resumed>) = 0 [pid 5033] rmdir("./335" [pid 7100] <... write resumed>) = 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 7098] +++ exited with 0 +++ [pid 5033] mkdir("./336", 0777 [pid 7101] memfd_create("syzkaller", 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7098, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... restart_syscall resumed>) = 0 [pid 7101] <... memfd_create resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./344", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... ioctl resumed>) = 0 [pid 7101] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 7101] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] openat(AT_FDCWD, "./344", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 5033] close(3 [pid 5032] <... openat resumed>) = 3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... close resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7102 [pid 5032] getdents64(3, [pid 7100] munmap(0x7ff0df171000, 138412032 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 7103 attached ./strace-static-x86_64: Process 7102 attached [pid 7100] <... munmap resumed>) = 0 [pid 5032] umount2("./344/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7103 [pid 7102] set_robust_list(0x55555635e660, 24) = 0 [pid 7103] set_robust_list(0x55555635e660, 24 [pid 7102] chdir("./344" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./344/binderfs", [pid 7102] <... chdir resumed>) = 0 [pid 7102] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7103] <... set_robust_list resumed>) = 0 [pid 7102] <... prctl resumed>) = 0 [pid 5032] unlink("./344/binderfs" [pid 7102] setpgid(0, 0) = 0 [pid 7103] chdir("./336" [ 283.421302][ T7099] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7100] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... unlink resumed>) = 0 [pid 7103] <... chdir resumed>) = 0 [pid 7103] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7103] setpgid(0, 0 [pid 7102] <... openat resumed>) = 3 [pid 7101] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7100] <... openat resumed>) = 4 [pid 7103] <... setpgid resumed>) = 0 [pid 7102] write(3, "1000", 4 [pid 7100] ioctl(4, LOOP_SET_FD, 3 [pid 7103] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7102] <... write resumed>) = 4 [pid 7102] close(3 [pid 7103] <... openat resumed>) = 3 [pid 7102] <... close resumed>) = 0 [pid 7103] write(3, "1000", 4 [pid 7102] symlink("/dev/binderfs", "./binderfs" [pid 7103] <... write resumed>) = 4 [pid 7103] close(3 [pid 7102] <... symlink resumed>) = 0 [pid 7103] <... close resumed>) = 0 [pid 7103] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7103] memfd_create("syzkaller", 0 [pid 7099] <... mount resumed>) = 0 [pid 7103] <... memfd_create resumed>) = 3 [pid 7099] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7099] chdir("./file0" [pid 7103] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7102] memfd_create("syzkaller", 0 [pid 7099] <... chdir resumed>) = 0 [pid 7103] <... mmap resumed>) = 0x7ff0df171000 [pid 7099] ioctl(4, LOOP_CLR_FD) = 0 [pid 7099] close(4) = 0 [pid 7099] exit_group(0) = ? [pid 7099] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7099, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7100] <... ioctl resumed>) = 0 [pid 7100] close(3 [pid 5029] umount2("./342", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7100] <... close resumed>) = 0 [pid 7100] mkdir("./file0", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7102] <... memfd_create resumed>) = 3 [pid 7100] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./342", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7100] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] newfstatat(3, "", [pid 7102] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [ 283.487518][ T7100] loop5: detected capacity change from 0 to 4096 [pid 7102] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7101] <... write resumed>) = 2097152 [pid 5029] umount2("./342/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./342/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7100] <... mount resumed>) = 0 [pid 7100] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7100] chdir("./file0") = 0 [pid 7100] ioctl(4, LOOP_CLR_FD) = 0 [pid 7100] close(4) = 0 [pid 7100] exit_group(0) = ? [pid 5029] unlink("./342/binderfs" [pid 7101] munmap(0x7ff0df171000, 138412032 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7101] <... munmap resumed>) = 0 [pid 7100] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7100, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5032] <... umount2 resumed>) = 0 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 7101] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... restart_syscall resumed>) = 0 [pid 7101] <... openat resumed>) = 4 [pid 7101] ioctl(4, LOOP_SET_FD, 3 [ 283.538395][ T7100] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./336", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./344/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./344/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./344/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5034] openat(AT_FDCWD, "./336", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 5032] rmdir("./344" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5032] mkdir("./345", 0777 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... mkdir resumed>) = 0 [pid 5034] umount2("./336/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./336/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./336/binderfs") = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 7101] <... ioctl resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7101] close(3 [pid 7103] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7102] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7101] <... close resumed>) = 0 ./strace-static-x86_64: Process 7104 attached [pid 7104] set_robust_list(0x55555635e660, 24) = 0 [pid 7104] chdir("./345" [pid 7101] mkdir("./file0", 0777 [pid 7104] <... chdir resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7104 [pid 7101] <... mkdir resumed>) = 0 [pid 7104] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7101] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7104] <... prctl resumed>) = 0 [pid 7104] setpgid(0, 0) = 0 [pid 7104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 283.592703][ T7101] loop2: detected capacity change from 0 to 4096 [pid 7104] write(3, "1000", 4) = 4 [pid 7104] close(3) = 0 [pid 7104] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7104] memfd_create("syzkaller", 0) = 3 [pid 7104] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./336/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./336/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./336/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5029] <... umount2 resumed>) = 0 [ 283.663383][ T7101] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] rmdir("./336") = 0 [pid 5029] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./342/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./337", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5029] openat(AT_FDCWD, "./342/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 4 [pid 7103] <... write resumed>) = 2097152 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7103] munmap(0x7ff0df171000, 138412032 [pid 7102] <... write resumed>) = 2097152 [pid 5029] newfstatat(4, "", [pid 5034] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 7104] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7103] <... munmap resumed>) = 0 [pid 7102] munmap(0x7ff0df171000, 138412032 [pid 5034] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] close(4) = 0 ./strace-static-x86_64: Process 7105 attached [pid 7101] <... mount resumed>) = 0 [pid 7101] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7105 [pid 7105] set_robust_list(0x55555635e660, 24) = 0 [pid 7103] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7102] <... munmap resumed>) = 0 [pid 7101] <... openat resumed>) = 3 [pid 5029] rmdir("./342/file0" [pid 7105] chdir("./337" [pid 7103] <... openat resumed>) = 4 [pid 7101] chdir("./file0" [pid 7105] <... chdir resumed>) = 0 [pid 7103] ioctl(4, LOOP_SET_FD, 3 [pid 7101] <... chdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7105] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7101] ioctl(4, LOOP_CLR_FD [pid 7105] <... prctl resumed>) = 0 [pid 7101] <... ioctl resumed>) = 0 [pid 5029] getdents64(3, [pid 7105] setpgid(0, 0 [pid 7101] close(4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7105] <... setpgid resumed>) = 0 [pid 7101] <... close resumed>) = 0 [pid 5029] close(3 [pid 7102] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 7105] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7102] <... openat resumed>) = 4 [pid 7101] exit_group(0 [pid 5029] rmdir("./342" [pid 7105] <... openat resumed>) = 3 [pid 7103] <... ioctl resumed>) = 0 [pid 7102] ioctl(4, LOOP_SET_FD, 3 [pid 7101] <... exit_group resumed>) = ? [pid 5029] <... rmdir resumed>) = 0 [pid 7105] write(3, "1000", 4 [pid 7103] close(3 [pid 7105] <... write resumed>) = 4 [pid 7103] <... close resumed>) = 0 [pid 7103] mkdir("./file0", 0777 [pid 7105] close(3 [pid 7103] <... mkdir resumed>) = 0 [pid 7103] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7101] +++ exited with 0 +++ [pid 5029] mkdir("./343", 0777 [pid 7105] <... close resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7101, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7105] symlink("/dev/binderfs", "./binderfs" [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... mkdir resumed>) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 7105] <... symlink resumed>) = 0 [pid 7104] <... write resumed>) = 2097152 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] umount2("./342", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7104] munmap(0x7ff0df171000, 138412032 [pid 5031] openat(AT_FDCWD, "./342", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7105] memfd_create("syzkaller", 0) = 3 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7105] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] newfstatat(3, "", [pid 7105] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 5031] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./342/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7102] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7106 attached [pid 7102] close(3 [pid 5031] newfstatat(AT_FDCWD, "./342/binderfs", [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7106 [pid 7102] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7102] mkdir("./file0", 0777 [pid 5031] unlink("./342/binderfs" [pid 7102] <... mkdir resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [ 283.767911][ T7103] loop4: detected capacity change from 0 to 4096 [ 283.782803][ T7102] loop1: detected capacity change from 0 to 4096 [ 283.797971][ T7103] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7102] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5031] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7106] set_robust_list(0x55555635e660, 24 [pid 7104] <... munmap resumed>) = 0 [pid 7106] <... set_robust_list resumed>) = 0 [pid 7104] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7106] chdir("./343" [pid 7104] <... openat resumed>) = 4 [pid 7106] <... chdir resumed>) = 0 [pid 7104] ioctl(4, LOOP_SET_FD, 3 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./342/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7106] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7106] <... prctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./342/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7106] setpgid(0, 0 [pid 5031] newfstatat(4, "", [pid 7106] <... setpgid resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7106] <... openat resumed>) = 3 [pid 7104] <... ioctl resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./342/file0" [pid 7106] write(3, "1000", 4 [pid 7104] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 7106] <... write resumed>) = 4 [pid 7104] <... close resumed>) = 0 [pid 7106] close(3 [pid 7104] mkdir("./file0", 0777 [pid 7106] <... close resumed>) = 0 [pid 7104] <... mkdir resumed>) = 0 [pid 7106] symlink("/dev/binderfs", "./binderfs" [pid 7104] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 283.829646][ T7102] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 283.847442][ T7104] loop3: detected capacity change from 0 to 4096 [pid 5031] getdents64(3, [pid 7106] <... symlink resumed>) = 0 [pid 7103] <... mount resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./342" [pid 7103] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5031] <... rmdir resumed>) = 0 [pid 7103] chdir("./file0" [pid 5031] mkdir("./343", 0777 [pid 7103] <... chdir resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 7103] ioctl(4, LOOP_CLR_FD) = 0 [pid 7103] close(4) = 0 [pid 7103] exit_group(0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7103] <... exit_group resumed>) = ? [pid 5031] <... openat resumed>) = 3 [pid 7103] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7103, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] umount2("./336", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./336", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./336/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./336/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 7107 attached [pid 7107] set_robust_list(0x55555635e660, 24 [pid 5033] unlink("./336/binderfs" [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7107 [pid 7106] memfd_create("syzkaller", 0 [pid 7105] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7106] <... memfd_create resumed>) = 3 [pid 7107] <... set_robust_list resumed>) = 0 [pid 7106] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... unlink resumed>) = 0 [pid 7107] chdir("./343" [pid 7106] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7107] <... chdir resumed>) = 0 [pid 7107] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7107] setpgid(0, 0) = 0 [pid 7107] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7102] <... mount resumed>) = 0 [pid 7107] write(3, "1000", 4 [pid 7102] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7107] <... write resumed>) = 4 [pid 7102] <... openat resumed>) = 3 [pid 7107] close(3 [pid 7102] chdir("./file0" [pid 7107] <... close resumed>) = 0 [pid 7102] <... chdir resumed>) = 0 [pid 7107] symlink("/dev/binderfs", "./binderfs" [pid 7102] ioctl(4, LOOP_CLR_FD [pid 7107] <... symlink resumed>) = 0 [pid 7102] <... ioctl resumed>) = 0 [pid 7102] close(4) = 0 [ 283.897822][ T7104] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7102] exit_group(0 [pid 7107] memfd_create("syzkaller", 0 [pid 7102] <... exit_group resumed>) = ? [pid 7102] +++ exited with 0 +++ [pid 5033] <... umount2 resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7102, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5033] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./344", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7107] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./344", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7107] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] newfstatat(AT_FDCWD, "./336/file0", [pid 5030] <... openat resumed>) = 3 [pid 7107] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 5033] umount2("./336/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 5033] openat(AT_FDCWD, "./336/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] getdents64(4, [pid 5030] umount2("./344/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./344/binderfs", [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] close(4 [pid 5030] unlink("./344/binderfs" [pid 5033] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5033] rmdir("./336/file0" [pid 5030] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./336" [pid 7105] <... write resumed>) = 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 7106] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7105] munmap(0x7ff0df171000, 138412032 [pid 5033] mkdir("./337", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7105] <... munmap resumed>) = 0 [pid 7105] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7105] ioctl(4, LOOP_SET_FD, 3 [pid 7104] <... mount resumed>) = 0 [pid 7104] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7104] chdir("./file0" [pid 5033] <... openat resumed>) = 3 [pid 7104] <... chdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7108 ./strace-static-x86_64: Process 7108 attached [pid 7108] set_robust_list(0x55555635e660, 24) = 0 [pid 7104] ioctl(4, LOOP_CLR_FD [pid 7108] chdir("./337" [pid 7104] <... ioctl resumed>) = 0 [pid 7108] <... chdir resumed>) = 0 [pid 7108] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7104] close(4 [pid 7108] setpgid(0, 0) = 0 [pid 7106] <... write resumed>) = 2097152 [pid 7105] <... ioctl resumed>) = 0 [pid 7104] <... close resumed>) = 0 [pid 7108] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7105] close(3 [pid 7108] <... openat resumed>) = 3 [pid 7108] write(3, "1000", 4 [pid 7105] <... close resumed>) = 0 [pid 7108] <... write resumed>) = 4 [pid 7108] close(3 [pid 7105] mkdir("./file0", 0777 [pid 7108] <... close resumed>) = 0 [pid 7105] <... mkdir resumed>) = 0 [pid 7104] exit_group(0 [pid 5030] <... umount2 resumed>) = 0 [pid 7108] symlink("/dev/binderfs", "./binderfs" [pid 7106] munmap(0x7ff0df171000, 138412032 [pid 7105] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7104] <... exit_group resumed>) = ? [pid 7108] <... symlink resumed>) = 0 [pid 7108] memfd_create("syzkaller", 0 [pid 5030] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7108] <... memfd_create resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7108] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [ 284.035626][ T7105] loop5: detected capacity change from 0 to 4096 [pid 5030] newfstatat(AT_FDCWD, "./344/file0", [pid 7108] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7107] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./344/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./344/file0" [pid 7106] <... munmap resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./344") = 0 [pid 5030] mkdir("./345", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [ 284.097486][ T7105] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7106] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7104] +++ exited with 0 +++ [pid 5030] close(3 [pid 7106] <... openat resumed>) = 4 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7104, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7106] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7109 [pid 5032] umount2("./345", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./345", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 ./strace-static-x86_64: Process 7109 attached [pid 7106] <... ioctl resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 7106] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7106] <... close resumed>) = 0 [pid 5032] umount2("./345/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7106] mkdir("./file0", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./345/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7109] set_robust_list(0x55555635e660, 24 [pid 7106] <... mkdir resumed>) = 0 [pid 7109] <... set_robust_list resumed>) = 0 [pid 7106] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7109] chdir("./345" [pid 7107] <... write resumed>) = 2097152 [pid 5032] unlink("./345/binderfs") = 0 [pid 5032] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7109] <... chdir resumed>) = 0 [pid 7109] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7109] setpgid(0, 0) = 0 [pid 7109] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = 0 [pid 7109] <... openat resumed>) = 3 [pid 5032] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./345/file0", [pid 7109] write(3, "1000", 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7109] <... write resumed>) = 4 [pid 7107] munmap(0x7ff0df171000, 138412032 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7109] close(3 [pid 7107] <... munmap resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./345/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7109] <... close resumed>) = 0 [pid 7109] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 7109] <... symlink resumed>) = 0 [pid 7108] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./345/file0" [ 284.145380][ T7106] loop0: detected capacity change from 0 to 4096 [ 284.164403][ T7106] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7107] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7105] <... mount resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7109] memfd_create("syzkaller", 0 [pid 7107] <... openat resumed>) = 4 [pid 7109] <... memfd_create resumed>) = 3 [pid 7107] ioctl(4, LOOP_SET_FD, 3 [pid 7105] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7109] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7106] <... mount resumed>) = 0 [pid 7105] <... openat resumed>) = 3 [pid 5032] getdents64(3, [pid 7105] chdir("./file0" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 7106] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7105] <... chdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./345") = 0 [pid 7105] ioctl(4, LOOP_CLR_FD [pid 7106] <... openat resumed>) = 3 [pid 7105] <... ioctl resumed>) = 0 [pid 5032] mkdir("./346", 0777 [pid 7105] close(4 [pid 5032] <... mkdir resumed>) = 0 [pid 7107] <... ioctl resumed>) = 0 [pid 7107] close(3 [pid 7105] <... close resumed>) = 0 [pid 7106] chdir("./file0") = 0 [pid 7106] ioctl(4, LOOP_CLR_FD) = 0 [pid 7106] close(4) = 0 [pid 7106] exit_group(0) = ? [pid 7106] +++ exited with 0 +++ [pid 7105] exit_group(0 [pid 7107] <... close resumed>) = 0 [pid 7105] <... exit_group resumed>) = ? [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7106, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 7107] mkdir("./file0", 0777) = 0 [pid 7107] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7108] <... write resumed>) = 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5029] umount2("./343", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7105] +++ exited with 0 +++ [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7105, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5029] openat(AT_FDCWD, "./343", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./337", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5029] getdents64(3, [pid 7108] munmap(0x7ff0df171000, 138412032 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] openat(AT_FDCWD, "./337", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... openat resumed>) = 3 [pid 5029] umount2("./343/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./343/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] newfstatat(3, "", [pid 5029] unlink("./343/binderfs"./strace-static-x86_64: Process 7110 attached [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5034] getdents64(3, [pid 5029] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7110] set_robust_list(0x55555635e660, 24 [pid 5034] umount2("./337/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7110] <... set_robust_list resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7110 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./337/binderfs", [pid 7110] chdir("./346") = 0 [pid 7108] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7110] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] unlink("./337/binderfs" [pid 7110] <... prctl resumed>) = 0 [pid 7108] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... unlink resumed>) = 0 [pid 7110] setpgid(0, 0 [pid 7108] <... openat resumed>) = 4 [pid 5034] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7110] <... setpgid resumed>) = 0 [ 284.231600][ T7107] loop2: detected capacity change from 0 to 4096 [ 284.262872][ T7107] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7108] ioctl(4, LOOP_SET_FD, 3 [pid 7110] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7110] write(3, "1000", 4 [pid 7109] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7108] <... ioctl resumed>) = 0 [pid 7110] <... write resumed>) = 4 [pid 7110] close(3 [pid 7108] close(3 [pid 7110] <... close resumed>) = 0 [pid 7108] <... close resumed>) = 0 [pid 7110] symlink("/dev/binderfs", "./binderfs" [pid 7108] mkdir("./file0", 0777 [pid 7110] <... symlink resumed>) = 0 [pid 7108] <... mkdir resumed>) = 0 [pid 7110] memfd_create("syzkaller", 0) = 3 [pid 5034] <... umount2 resumed>) = 0 [pid 7110] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7108] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7110] <... mmap resumed>) = 0x7ff0df171000 [ 284.311495][ T7108] loop4: detected capacity change from 0 to 4096 [pid 7107] <... mount resumed>) = 0 [pid 7107] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7107] chdir("./file0") = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 7107] ioctl(4, LOOP_CLR_FD [pid 5029] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7107] <... ioctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7107] close(4 [pid 5029] newfstatat(AT_FDCWD, "./343/file0", [pid 7107] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7107] exit_group(0 [pid 5029] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7107] <... exit_group resumed>) = ? [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7107] +++ exited with 0 +++ [pid 5029] openat(AT_FDCWD, "./343/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 4 [pid 5034] newfstatat(AT_FDCWD, "./337/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(4, "", [pid 5034] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5034] openat(AT_FDCWD, "./337/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... openat resumed>) = 4 [pid 5029] getdents64(4, [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] getdents64(4, [pid 5029] close(4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... close resumed>) = 0 [pid 5034] getdents64(4, [pid 5029] rmdir("./343/file0" [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5034] close(4) = 0 [pid 5029] getdents64(3, [pid 5034] rmdir("./337/file0") = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] getdents64(3, [pid 5029] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 5029] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5029] rmdir("./343" [pid 5034] rmdir("./337" [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7107, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5029] mkdir("./344", 0777 [pid 5034] mkdir("./338", 0777 [pid 5029] <... mkdir resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] umount2("./343", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./343", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 7111 attached [pid 5031] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(3, "", [pid 5029] close(3 [pid 7111] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7111 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... close resumed>) = 0 [pid 7111] <... set_robust_list resumed>) = 0 [pid 5031] getdents64(3, [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7111] chdir("./338" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 7112 attached [pid 7111] <... chdir resumed>) = 0 [pid 7111] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] umount2("./343/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7112] set_robust_list(0x55555635e660, 24 [pid 7111] <... prctl resumed>) = 0 [pid 7111] setpgid(0, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7112] <... set_robust_list resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7112 [pid 7112] chdir("./344" [pid 7111] <... setpgid resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./343/binderfs", [pid 7111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7112] <... chdir resumed>) = 0 [pid 7111] <... openat resumed>) = 3 [pid 5031] unlink("./343/binderfs" [pid 7112] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7111] write(3, "1000", 4 [pid 5031] <... unlink resumed>) = 0 [pid 7112] <... prctl resumed>) = 0 [pid 7111] <... write resumed>) = 4 [pid 5031] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7112] setpgid(0, 0 [pid 7111] close(3 [pid 7112] <... setpgid resumed>) = 0 [pid 7111] <... close resumed>) = 0 [pid 7112] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7111] symlink("/dev/binderfs", "./binderfs" [pid 7112] <... openat resumed>) = 3 [pid 7111] <... symlink resumed>) = 0 [ 284.383383][ T7108] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7112] write(3, "1000", 4) = 4 [pid 7111] memfd_create("syzkaller", 0 [pid 7112] close(3) = 0 [pid 7112] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7112] memfd_create("syzkaller", 0 [pid 7111] <... memfd_create resumed>) = 3 [pid 7111] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7112] <... memfd_create resumed>) = 3 [pid 7112] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7109] <... write resumed>) = 2097152 [pid 7109] munmap(0x7ff0df171000, 138412032 [pid 7110] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7108] <... mount resumed>) = 0 [pid 7109] <... munmap resumed>) = 0 [pid 7108] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = 0 [pid 7108] <... openat resumed>) = 3 [pid 7109] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7108] chdir("./file0" [pid 7109] <... openat resumed>) = 4 [pid 7108] <... chdir resumed>) = 0 [pid 7108] ioctl(4, LOOP_CLR_FD [pid 7109] ioctl(4, LOOP_SET_FD, 3 [pid 5031] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7108] <... ioctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./343/file0", [pid 7108] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7108] <... close resumed>) = 0 [pid 5031] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7108] exit_group(0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7111] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "./343/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7108] <... exit_group resumed>) = ? [pid 7110] <... write resumed>) = 2097152 [pid 7109] <... ioctl resumed>) = 0 [pid 7108] +++ exited with 0 +++ [pid 5031] newfstatat(4, "", [pid 7109] close(3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7108, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7110] munmap(0x7ff0df171000, 138412032 [pid 7109] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 7109] mkdir("./file0", 0777 [pid 5033] umount2("./337", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7109] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./337", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] getdents64(4, [pid 7109] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [ 284.512279][ T7109] loop1: detected capacity change from 0 to 4096 [pid 5033] newfstatat(3, "", [pid 7110] <... munmap resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] close(4 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./337/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./337/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7112] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7110] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] unlink("./337/binderfs" [pid 5031] <... close resumed>) = 0 [pid 7110] <... openat resumed>) = 4 [pid 7110] ioctl(4, LOOP_SET_FD, 3 [pid 5031] rmdir("./343/file0" [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./343") = 0 [pid 7110] <... ioctl resumed>) = 0 [pid 5031] mkdir("./344", 0777 [pid 7110] close(3 [pid 5031] <... mkdir resumed>) = 0 [pid 7110] <... close resumed>) = 0 [pid 7110] mkdir("./file0", 0777 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7110] <... mkdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 7110] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [ 284.560916][ T7109] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 284.583784][ T7110] loop3: detected capacity change from 0 to 4096 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./337/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./337/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./337/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7113 [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4./strace-static-x86_64: Process 7113 attached ) = 0 [pid 7113] set_robust_list(0x55555635e660, 24 [pid 5033] rmdir("./337/file0" [pid 7113] <... set_robust_list resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7113] chdir("./344") = 0 [pid 5033] getdents64(3, [pid 7113] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7113] setpgid(0, 0 [pid 5033] close(3 [pid 7113] <... setpgid resumed>) = 0 [ 284.613320][ T7110] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7113] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7112] <... write resumed>) = 2097152 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./337" [pid 7113] <... openat resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 7113] write(3, "1000", 4) = 4 [pid 7113] close(3 [pid 7111] <... write resumed>) = 2097152 [pid 5033] mkdir("./338", 0777 [pid 7113] <... close resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 7113] symlink("/dev/binderfs", "./binderfs" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7113] <... symlink resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 7111] munmap(0x7ff0df171000, 138412032 [pid 5033] <... close resumed>) = 0 [pid 7112] munmap(0x7ff0df171000, 138412032 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7113] memfd_create("syzkaller", 0) = 3 [pid 7111] <... munmap resumed>) = 0 [pid 7113] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7112] <... munmap resumed>) = 0 [pid 7113] <... mmap resumed>) = 0x7ff0df171000 ./strace-static-x86_64: Process 7114 attached [pid 7114] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7114 [pid 7114] <... set_robust_list resumed>) = 0 [pid 7112] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7111] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7114] chdir("./338" [pid 7112] <... openat resumed>) = 4 [pid 7109] <... mount resumed>) = 0 [pid 7111] <... openat resumed>) = 4 [pid 7112] ioctl(4, LOOP_SET_FD, 3 [pid 7109] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7114] <... chdir resumed>) = 0 [pid 7109] <... openat resumed>) = 3 [pid 7109] chdir("./file0" [pid 7114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7111] ioctl(4, LOOP_SET_FD, 3 [pid 7109] <... chdir resumed>) = 0 [pid 7114] setpgid(0, 0 [pid 7109] ioctl(4, LOOP_CLR_FD [pid 7114] <... setpgid resumed>) = 0 [pid 7109] <... ioctl resumed>) = 0 [pid 7109] close(4) = 0 [pid 7112] <... ioctl resumed>) = 0 [pid 7112] close(3) = 0 [pid 7112] mkdir("./file0", 0777 [pid 7111] <... ioctl resumed>) = 0 [pid 7112] <... mkdir resumed>) = 0 [pid 7109] exit_group(0 [pid 7114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7111] close(3 [pid 7109] <... exit_group resumed>) = ? [pid 7112] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7111] <... close resumed>) = 0 [pid 7111] mkdir("./file0", 0777) = 0 [pid 7114] <... openat resumed>) = 3 [pid 7110] <... mount resumed>) = 0 [pid 7109] +++ exited with 0 +++ [pid 7110] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7114] write(3, "1000", 4) = 4 [pid 7111] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7110] <... openat resumed>) = 3 [ 284.709333][ T7112] loop0: detected capacity change from 0 to 4096 [ 284.717065][ T7111] loop5: detected capacity change from 0 to 4096 [ 284.739584][ T7112] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7109, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7114] close(3 [pid 7110] chdir("./file0" [pid 7114] <... close resumed>) = 0 [pid 7110] <... chdir resumed>) = 0 [pid 7114] symlink("/dev/binderfs", "./binderfs" [pid 7110] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./345", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7114] <... symlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./345", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7114] memfd_create("syzkaller", 0) = 3 [pid 7110] <... ioctl resumed>) = 0 [pid 5030] getdents64(3, [pid 7114] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./345/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./345/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./345/binderfs" [pid 7110] close(4 [pid 5030] <... unlink resumed>) = 0 [pid 7110] <... close resumed>) = 0 [pid 5030] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7110] exit_group(0) = ? [pid 7110] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7110, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=1 /* 0.01 s */} --- [pid 5032] umount2("./346", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./346", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./346/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./346/binderfs", [pid 7113] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./346/binderfs") = 0 [ 284.752507][ T7111] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5032] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7112] <... mount resumed>) = 0 [pid 7112] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7112] chdir("./file0") = 0 [pid 7112] ioctl(4, LOOP_CLR_FD) = 0 [pid 7112] close(4) = 0 [pid 7112] exit_group(0) = ? [pid 7112] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7112, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] umount2("./344", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./344", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 7111] <... mount resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7111] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] umount2("./344/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7111] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./344/binderfs", [pid 7111] chdir("./file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7111] <... chdir resumed>) = 0 [pid 5029] unlink("./344/binderfs" [pid 7111] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 7111] close(4) = 0 [pid 7111] exit_group(0 [pid 5029] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7111] <... exit_group resumed>) = ? [pid 7111] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7111, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=9 /* 0.09 s */} --- [pid 5034] umount2("./338", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./338", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./338/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./338/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./346/file0", [pid 5034] unlink("./338/binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./346/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 7113] <... write resumed>) = 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 7113] munmap(0x7ff0df171000, 138412032 [pid 7114] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7113] <... munmap resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./345/file0", [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(4 [pid 5030] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7113] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 7113] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./346/file0" [pid 5030] openat(AT_FDCWD, "./345/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] getdents64(4, [pid 7113] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5030] close(4) = 0 [pid 5030] rmdir("./345/file0" [pid 5032] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5032] rmdir("./346" [pid 7113] close(3 [pid 5034] <... umount2 resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 7113] <... close resumed>) = 0 [pid 5034] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] mkdir("./347", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7113] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... mkdir resumed>) = 0 [pid 5030] close(3) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] rmdir("./345" [pid 7113] <... mkdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./338/file0", [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] mkdir("./346", 0777 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7113] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 284.934721][ T7113] loop2: detected capacity change from 0 to 4096 [pid 7114] <... write resumed>) = 2097152 [pid 5034] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... mkdir resumed>) = 0 [pid 5032] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./338/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./344/file0", [pid 5034] <... openat resumed>) = 4 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... close resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5029] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 5034] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./344/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... openat resumed>) = 4 [pid 5034] getdents64(4, [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] newfstatat(4, "", ./strace-static-x86_64: Process 7115 attached [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7115 [pid 7115] set_robust_list(0x55555635e660, 24 [pid 5034] close(4 [pid 5029] getdents64(4, [pid 5034] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7115] <... set_robust_list resumed>) = 0 [pid 7115] chdir("./346" [pid 7114] munmap(0x7ff0df171000, 138412032 [pid 5034] rmdir("./338/file0" [pid 5029] getdents64(4, [pid 7115] <... chdir resumed>) = 0 [pid 7115] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7115] <... prctl resumed>) = 0 [pid 5029] close(4 [pid 5034] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] rmdir("./344/file0" [pid 7115] setpgid(0, 0 [pid 5034] close(3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7116 [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5029] getdents64(3, [pid 5034] rmdir("./338" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 7116 attached [pid 7115] <... setpgid resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 7116] set_robust_list(0x55555635e660, 24 [pid 7115] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] mkdir("./339", 0777 [pid 5029] <... close resumed>) = 0 [pid 7116] <... set_robust_list resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5029] rmdir("./344") = 0 [pid 7114] <... munmap resumed>) = 0 [pid 7116] chdir("./347" [pid 7115] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] mkdir("./345", 0777 [pid 7116] <... chdir resumed>) = 0 [pid 7115] write(3, "1000", 4 [pid 7114] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... openat resumed>) = 3 [pid 5029] <... mkdir resumed>) = 0 [pid 7116] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7115] <... write resumed>) = 4 [pid 7114] <... openat resumed>) = 4 [ 284.977212][ T7113] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7116] <... prctl resumed>) = 0 [pid 7115] close(3 [pid 7114] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7115] <... close resumed>) = 0 [pid 5034] close(3) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7116] setpgid(0, 0 [pid 7115] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 7117 attached [pid 7116] <... setpgid resumed>) = 0 [pid 7115] <... symlink resumed>) = 0 [pid 7113] <... mount resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7117 [pid 7117] set_robust_list(0x55555635e660, 24 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7117] <... set_robust_list resumed>) = 0 [pid 7116] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] close(3 [pid 7117] chdir("./339" [pid 5029] <... close resumed>) = 0 [pid 7117] <... chdir resumed>) = 0 [pid 7117] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7117] <... prctl resumed>) = 0 [pid 7116] <... openat resumed>) = 3 [pid 7115] memfd_create("syzkaller", 0 [pid 7117] setpgid(0, 0) = 0 [pid 7113] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7117] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7113] <... openat resumed>) = 3 [pid 7116] write(3, "1000", 4 [pid 7115] <... memfd_create resumed>) = 3 [pid 7116] <... write resumed>) = 4 [pid 7116] close(3./strace-static-x86_64: Process 7118 attached [pid 7117] <... openat resumed>) = 3 [pid 7116] <... close resumed>) = 0 [pid 7115] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7114] <... ioctl resumed>) = 0 [pid 7113] chdir("./file0" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7118 [pid 7117] write(3, "1000", 4 [pid 7116] symlink("/dev/binderfs", "./binderfs" [pid 7114] close(3 [pid 7113] <... chdir resumed>) = 0 [pid 7118] set_robust_list(0x55555635e660, 24 [pid 7117] <... write resumed>) = 4 [pid 7115] <... mmap resumed>) = 0x7ff0df171000 [pid 7114] <... close resumed>) = 0 [pid 7113] ioctl(4, LOOP_CLR_FD [pid 7117] close(3 [pid 7116] <... symlink resumed>) = 0 [pid 7114] mkdir("./file0", 0777 [pid 7113] <... ioctl resumed>) = 0 [pid 7117] <... close resumed>) = 0 [pid 7113] close(4 [pid 7117] symlink("/dev/binderfs", "./binderfs" [pid 7113] <... close resumed>) = 0 [pid 7117] <... symlink resumed>) = 0 [pid 7114] <... mkdir resumed>) = 0 [pid 7113] exit_group(0 [pid 7118] <... set_robust_list resumed>) = 0 [pid 7117] memfd_create("syzkaller", 0 [pid 7113] <... exit_group resumed>) = ? [pid 7118] chdir("./345" [pid 7116] memfd_create("syzkaller", 0 [pid 7113] +++ exited with 0 +++ [pid 7118] <... chdir resumed>) = 0 [pid 7117] <... memfd_create resumed>) = 3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7113, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 7118] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7117] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7118] <... prctl resumed>) = 0 [pid 7116] <... memfd_create resumed>) = 3 [pid 7118] setpgid(0, 0 [pid 7114] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] umount2("./344", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7118] <... setpgid resumed>) = 0 [pid 7118] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7116] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./344", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7118] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 3 [ 285.042424][ T7114] loop4: detected capacity change from 0 to 4096 [ 285.082211][ T7114] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7118] write(3, "1000", 4 [pid 7116] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] getdents64(3, [pid 7118] <... write resumed>) = 4 [pid 7118] close(3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7118] <... close resumed>) = 0 [pid 5031] umount2("./344/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7118] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7118] <... symlink resumed>) = 0 [pid 7117] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] newfstatat(AT_FDCWD, "./344/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./344/binderfs" [pid 7118] memfd_create("syzkaller", 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7118] <... memfd_create resumed>) = 3 [pid 7118] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7115] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7114] <... mount resumed>) = 0 [pid 7117] <... write resumed>) = 2097152 [pid 7114] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7114] chdir("./file0") = 0 [pid 7114] ioctl(4, LOOP_CLR_FD) = 0 [pid 7117] munmap(0x7ff0df171000, 138412032 [pid 7114] close(4 [pid 7117] <... munmap resumed>) = 0 [pid 7114] <... close resumed>) = 0 [pid 7114] exit_group(0) = ? [pid 7114] +++ exited with 0 +++ [pid 5031] <... umount2 resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7114, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7117] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] umount2("./338", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7117] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7117] ioctl(4, LOOP_SET_FD, 3 [pid 5033] openat(AT_FDCWD, "./338", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7118] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7116] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... openat resumed>) = 3 [pid 5031] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7115] <... write resumed>) = 2097152 [pid 5033] newfstatat(3, "", [pid 5031] newfstatat(AT_FDCWD, "./344/file0", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./338/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./344/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(AT_FDCWD, "./338/binderfs", [pid 5031] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(4, "", [pid 5033] unlink("./338/binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5031] getdents64(4, [pid 5033] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./344/file0" [pid 7117] <... ioctl resumed>) = 0 [pid 7115] munmap(0x7ff0df171000, 138412032 [pid 7117] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 7117] <... close resumed>) = 0 [pid 7117] mkdir("./file0", 0777) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7117] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7115] <... munmap resumed>) = 0 [pid 5031] close(3) = 0 [ 285.220041][ T7117] loop5: detected capacity change from 0 to 4096 [pid 5031] rmdir("./344" [pid 7115] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./345", 0777 [pid 7115] <... openat resumed>) = 4 [pid 7115] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 7118] <... write resumed>) = 2097152 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7115] close(3) = 0 [pid 7115] mkdir("./file0", 0777 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7116] <... write resumed>) = 2097152 [pid 5031] close(3 [pid 7116] munmap(0x7ff0df171000, 138412032 [pid 5031] <... close resumed>) = 0 [pid 7115] <... mkdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7119 attached [pid 7118] munmap(0x7ff0df171000, 138412032 [pid 7116] <... munmap resumed>) = 0 [pid 5033] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7119 [pid 7119] set_robust_list(0x55555635e660, 24) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 285.267262][ T7117] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 285.285287][ T7115] loop1: detected capacity change from 0 to 4096 [pid 7115] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7119] chdir("./345" [pid 7116] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] newfstatat(AT_FDCWD, "./338/file0", [pid 7119] <... chdir resumed>) = 0 [pid 7118] <... munmap resumed>) = 0 [pid 7116] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7119] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7118] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7116] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./338/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7119] <... prctl resumed>) = 0 [pid 7118] <... openat resumed>) = 4 [pid 7119] setpgid(0, 0 [pid 7118] ioctl(4, LOOP_SET_FD, 3 [pid 7119] <... setpgid resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./338/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", [pid 7119] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7117] <... mount resumed>) = 0 [pid 5033] getdents64(4, [pid 7117] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7119] <... openat resumed>) = 3 [pid 7117] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7119] write(3, "1000", 4 [pid 7117] chdir("./file0" [pid 5033] getdents64(4, [pid 7119] <... write resumed>) = 4 [pid 7117] <... chdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7119] close(3 [pid 7117] ioctl(4, LOOP_CLR_FD [pid 5033] close(4 [pid 7119] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7119] symlink("/dev/binderfs", "./binderfs" [pid 5033] rmdir("./338/file0" [pid 7119] <... symlink resumed>) = 0 [pid 7118] <... ioctl resumed>) = 0 [pid 7117] <... ioctl resumed>) = 0 [pid 7116] <... ioctl resumed>) = 0 [pid 7115] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7119] memfd_create("syzkaller", 0 [pid 5033] getdents64(3, [pid 7119] <... memfd_create resumed>) = 3 [pid 7118] close(3 [pid 7117] close(4 [pid 7116] close(3 [pid 7115] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7119] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7117] <... close resumed>) = 0 [pid 7116] <... close resumed>) = 0 [pid 5033] close(3 [pid 7118] <... close resumed>) = 0 [pid 7119] <... mmap resumed>) = 0x7ff0df171000 [pid 7118] mkdir("./file0", 0777 [pid 7117] exit_group(0 [pid 7116] mkdir("./file0", 0777 [pid 7115] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./338") = 0 [pid 5033] mkdir("./339", 0777) = 0 [pid 7118] <... mkdir resumed>) = 0 [pid 7115] chdir("./file0" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7116] <... mkdir resumed>) = 0 [pid 7115] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [ 285.318655][ T7115] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 285.340041][ T7116] loop3: detected capacity change from 0 to 4096 [ 285.349302][ T7118] loop0: detected capacity change from 0 to 4096 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 7115] ioctl(4, LOOP_CLR_FD [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7118] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7117] <... exit_group resumed>) = ? [pid 7116] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7115] <... ioctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7120 [pid 7117] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7117, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 7115] close(4./strace-static-x86_64: Process 7120 attached ) = 0 [pid 7120] set_robust_list(0x55555635e660, 24) = 0 [pid 7120] chdir("./339") = 0 [pid 7120] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7120] setpgid(0, 0 [pid 7115] exit_group(0 [pid 7120] <... setpgid resumed>) = 0 [pid 7115] <... exit_group resumed>) = ? [pid 7120] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7120] write(3, "1000", 4) = 4 [pid 7120] close(3 [pid 7115] +++ exited with 0 +++ [pid 7120] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7115, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 7120] symlink("/dev/binderfs", "./binderfs" [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 7120] <... symlink resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5030] umount2("./346", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./339", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./346", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7120] memfd_create("syzkaller", 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7120] <... memfd_create resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./339", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./346/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7120] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] newfstatat(3, "", [pid 5030] newfstatat(AT_FDCWD, "./346/binderfs", [pid 7120] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] unlink("./346/binderfs" [pid 5034] umount2("./339/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./339/binderfs", [pid 5030] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7119] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] unlink("./339/binderfs") = 0 [ 285.409468][ T7116] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 285.419383][ T7118] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7116] <... mount resumed>) = 0 [pid 7119] <... write resumed>) = 2097152 [pid 7119] munmap(0x7ff0df171000, 138412032 [pid 7116] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 7116] <... openat resumed>) = 3 [pid 7120] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7119] <... munmap resumed>) = 0 [pid 7116] chdir("./file0" [pid 5030] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7116] <... chdir resumed>) = 0 [pid 7116] ioctl(4, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7116] <... ioctl resumed>) = 0 [pid 7116] close(4) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./346/file0", [pid 7116] exit_group(0) = ? [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7119] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 7118] <... mount resumed>) = 0 [pid 7116] +++ exited with 0 +++ [pid 5030] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7119] ioctl(4, LOOP_SET_FD, 3 [pid 7118] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7116, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7118] <... openat resumed>) = 3 [pid 5032] umount2("./347", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./347", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7119] <... ioctl resumed>) = 0 [pid 7118] chdir("./file0" [pid 5030] openat(AT_FDCWD, "./346/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7119] close(3 [pid 7118] <... chdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 7119] <... close resumed>) = 0 [pid 7118] ioctl(4, LOOP_CLR_FD [pid 5032] newfstatat(3, "", [pid 5030] <... openat resumed>) = 4 [pid 7119] mkdir("./file0", 0777 [pid 7118] <... ioctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(4, "", [pid 7118] close(4 [pid 5032] getdents64(3, [pid 7119] <... mkdir resumed>) = 0 [pid 7118] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7119] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7118] exit_group(0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7118] <... exit_group resumed>) = ? [pid 5034] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./347/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 7118] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./339/file0", [pid 5032] newfstatat(AT_FDCWD, "./347/binderfs", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./347/binderfs" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7118, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./339/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(4 [pid 5034] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 5029] umount2("./345", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] rmdir("./346/file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(4, [pid 5030] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./345", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5030] close(3 [pid 5029] newfstatat(3, "", [pid 5030] <... close resumed>) = 0 [pid 5034] close(4 [pid 5030] rmdir("./346" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5034] rmdir("./339/file0" [pid 5030] mkdir("./347", 0777 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 285.565687][ T7119] loop2: detected capacity change from 0 to 4096 [ 285.579788][ T7119] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] close(3 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] umount2("./345/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./339") = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./345/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] unlink("./345/binderfs" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] mkdir("./340", 0777) = 0 [pid 5030] close(3 [pid 5029] <... unlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7122 ./strace-static-x86_64: Process 7122 attached [pid 7122] set_robust_list(0x55555635e660, 24) = 0 [pid 7120] <... write resumed>) = 2097152 [pid 7122] chdir("./347"./strace-static-x86_64: Process 7121 attached ) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7121 [pid 7121] set_robust_list(0x55555635e660, 24) = 0 [pid 7121] chdir("./340" [pid 7122] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... umount2 resumed>) = 0 [pid 7121] <... chdir resumed>) = 0 [pid 7122] <... prctl resumed>) = 0 [pid 7120] munmap(0x7ff0df171000, 138412032 [pid 7121] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7122] setpgid(0, 0 [pid 7121] <... prctl resumed>) = 0 [pid 7121] setpgid(0, 0 [pid 7122] <... setpgid resumed>) = 0 [pid 7120] <... munmap resumed>) = 0 [pid 7119] <... mount resumed>) = 0 [pid 7122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7121] <... setpgid resumed>) = 0 [pid 7121] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7121] write(3, "1000", 4) = 4 [pid 7121] close(3) = 0 [pid 7121] symlink("/dev/binderfs", "./binderfs" [pid 7120] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7121] <... symlink resumed>) = 0 [pid 7120] <... openat resumed>) = 4 [pid 7122] <... openat resumed>) = 3 [pid 7122] write(3, "1000", 4 [pid 7119] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7121] memfd_create("syzkaller", 0 [pid 7122] <... write resumed>) = 4 [pid 7120] ioctl(4, LOOP_SET_FD, 3 [pid 7119] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./347/file0", [pid 7122] close(3 [pid 7119] chdir("./file0" [pid 7122] <... close resumed>) = 0 [pid 7122] symlink("/dev/binderfs", "./binderfs" [pid 7119] <... chdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 7122] <... symlink resumed>) = 0 [pid 7119] ioctl(4, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7121] <... memfd_create resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7121] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7119] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./347/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 7122] memfd_create("syzkaller", 0 [pid 7119] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7121] <... mmap resumed>) = 0x7ff0df171000 [pid 7119] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 5029] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7119] exit_group(0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7122] <... memfd_create resumed>) = 3 [pid 7119] <... exit_group resumed>) = ? [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7119] +++ exited with 0 +++ [pid 5032] close(4 [pid 5029] newfstatat(AT_FDCWD, "./345/file0", [pid 7122] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... close resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7119, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 7122] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] rmdir("./347/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5031] umount2("./345", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3) = 0 [pid 5031] openat(AT_FDCWD, "./345", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] rmdir("./347" [pid 5031] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 5032] mkdir("./348", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7120] <... ioctl resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 7120] close(3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7120] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] umount2("./345/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7120] mkdir("./file0", 0777 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7120] <... mkdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(AT_FDCWD, "./345/binderfs", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7120] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] openat(AT_FDCWD, "./345/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] unlink("./345/binderfs" [pid 5032] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 285.678105][ T7120] loop4: detected capacity change from 0 to 4096 [pid 5031] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(4, "", ./strace-static-x86_64: Process 7123 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7123] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7123 [pid 5029] getdents64(4, [pid 7123] <... set_robust_list resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7123] chdir("./348" [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7123] <... chdir resumed>) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./345/file0" [pid 7123] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7123] setpgid(0, 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7123] <... setpgid resumed>) = 0 [pid 7123] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7123] write(3, "1000", 4 [pid 5029] getdents64(3, [pid 7123] <... write resumed>) = 4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7123] close(3 [pid 5029] close(3 [pid 7123] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7123] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] rmdir("./345" [pid 7123] memfd_create("syzkaller", 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./346", 0777 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 7123] <... memfd_create resumed>) = 3 [pid 5031] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7123] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5031] newfstatat(AT_FDCWD, "./345/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5031] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 285.738345][ T7120] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] openat(AT_FDCWD, "./345/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 ./strace-static-x86_64: Process 7125 attached [pid 5031] newfstatat(4, "", [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7125 [pid 7125] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 7125] chdir("./346" [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7125] <... chdir resumed>) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7125] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] close(4 [pid 7125] setpgid(0, 0 [pid 7121] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... close resumed>) = 0 [pid 7125] <... setpgid resumed>) = 0 [pid 5031] rmdir("./345/file0" [pid 7125] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... rmdir resumed>) = 0 [pid 7122] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7125] <... openat resumed>) = 3 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 7125] write(3, "1000", 4 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./345") = 0 [pid 5031] mkdir("./346", 0777) = 0 [pid 7125] <... write resumed>) = 4 [pid 7125] close(3) = 0 [pid 7125] symlink("/dev/binderfs", "./binderfs" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7125] <... symlink resumed>) = 0 [pid 7125] memfd_create("syzkaller", 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7126 ./strace-static-x86_64: Process 7126 attached [pid 7126] set_robust_list(0x55555635e660, 24) = 0 [pid 7126] chdir("./346") = 0 [pid 7126] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7125] <... memfd_create resumed>) = 3 [pid 7125] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7126] <... prctl resumed>) = 0 [pid 7126] setpgid(0, 0) = 0 [pid 7126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7126] write(3, "1000", 4) = 4 [pid 7126] close(3 [pid 7121] <... write resumed>) = 2097152 [pid 7126] <... close resumed>) = 0 [pid 7120] <... mount resumed>) = 0 [pid 7120] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7126] symlink("/dev/binderfs", "./binderfs" [pid 7120] <... openat resumed>) = 3 [pid 7126] <... symlink resumed>) = 0 [pid 7120] chdir("./file0" [pid 7126] memfd_create("syzkaller", 0 [pid 7120] <... chdir resumed>) = 0 [pid 7120] ioctl(4, LOOP_CLR_FD) = 0 [pid 7120] close(4 [pid 7126] <... memfd_create resumed>) = 3 [pid 7123] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7120] <... close resumed>) = 0 [pid 7126] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7120] exit_group(0 [pid 7122] <... write resumed>) = 2097152 [pid 7120] <... exit_group resumed>) = ? [pid 7121] munmap(0x7ff0df171000, 138412032) = 0 [pid 7122] munmap(0x7ff0df171000, 138412032 [pid 7120] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7120, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./339", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./339", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7122] <... munmap resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./339/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./339/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7125] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7121] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7122] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] unlink("./339/binderfs" [pid 7121] <... openat resumed>) = 4 [pid 7121] ioctl(4, LOOP_SET_FD, 3 [pid 7122] <... openat resumed>) = 4 [pid 7122] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7121] <... ioctl resumed>) = 0 [pid 7121] close(3) = 0 [pid 7121] mkdir("./file0", 0777) = 0 [pid 7121] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7123] <... write resumed>) = 2097152 [pid 7122] <... ioctl resumed>) = 0 [pid 7122] close(3) = 0 [pid 7122] mkdir("./file0", 0777) = 0 [pid 7123] munmap(0x7ff0df171000, 138412032) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./339/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./339/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7122] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./339/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 7123] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 285.944682][ T7121] loop5: detected capacity change from 0 to 4096 [ 285.953371][ T7122] loop1: detected capacity change from 0 to 4096 [ 285.963942][ T7121] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7123] <... openat resumed>) = 4 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 7123] ioctl(4, LOOP_SET_FD, 3 [pid 5033] rmdir("./339/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 7126] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./339") = 0 [pid 5033] mkdir("./340", 0777 [pid 7125] <... write resumed>) = 2097152 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7127 [pid 7125] munmap(0x7ff0df171000, 138412032./strace-static-x86_64: Process 7127 attached [pid 7127] set_robust_list(0x55555635e660, 24) = 0 [pid 7127] chdir("./340") = 0 [pid 7127] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7123] <... ioctl resumed>) = 0 [pid 7127] setpgid(0, 0) = 0 [ 286.002739][ T7122] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 286.004602][ T7123] loop3: detected capacity change from 0 to 4096 [pid 7127] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7123] close(3) = 0 [pid 7123] mkdir("./file0", 0777 [pid 7127] write(3, "1000", 4 [pid 7123] <... mkdir resumed>) = 0 [pid 7121] <... mount resumed>) = 0 [pid 7127] <... write resumed>) = 4 [pid 7127] close(3) = 0 [pid 7127] symlink("/dev/binderfs", "./binderfs" [pid 7125] <... munmap resumed>) = 0 [pid 7127] <... symlink resumed>) = 0 [pid 7125] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7127] memfd_create("syzkaller", 0 [pid 7125] <... openat resumed>) = 4 [pid 7123] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7121] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7125] ioctl(4, LOOP_SET_FD, 3 [pid 7121] <... openat resumed>) = 3 [pid 7121] chdir("./file0") = 0 [pid 7121] ioctl(4, LOOP_CLR_FD) = 0 [pid 7121] close(4 [pid 7127] <... memfd_create resumed>) = 3 [pid 7126] <... write resumed>) = 2097152 [pid 7121] <... close resumed>) = 0 [pid 7122] <... mount resumed>) = 0 [pid 7127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7126] munmap(0x7ff0df171000, 138412032 [pid 7121] exit_group(0 [pid 7122] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7121] <... exit_group resumed>) = ? [pid 7121] +++ exited with 0 +++ [pid 7126] <... munmap resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7121, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 7122] <... openat resumed>) = 3 [pid 7122] chdir("./file0") = 0 [pid 7122] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./340", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7122] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./340", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 7122] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7122] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 7126] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7125] <... ioctl resumed>) = 0 [pid 7122] exit_group(0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7126] <... openat resumed>) = 4 [pid 7125] close(3 [pid 7122] <... exit_group resumed>) = ? [pid 5034] umount2("./340/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7126] ioctl(4, LOOP_SET_FD, 3 [pid 7125] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7122] +++ exited with 0 +++ [pid 5034] newfstatat(AT_FDCWD, "./340/binderfs", [pid 7125] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7122, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5034] unlink("./340/binderfs") = 0 [pid 5034] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7125] <... mkdir resumed>) = 0 [ 286.087093][ T7123] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 286.096735][ T7125] loop0: detected capacity change from 0 to 4096 [ 286.125100][ T7126] loop2: detected capacity change from 0 to 4096 [pid 7125] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7126] <... ioctl resumed>) = 0 [pid 7126] close(3) = 0 [pid 7126] mkdir("./file0", 0777) = 0 [pid 7126] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] umount2("./347", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./347", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./347/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./347/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./347/binderfs") = 0 [pid 5030] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 286.145323][ T7125] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 286.160793][ T7126] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7127] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7123] <... mount resumed>) = 0 [pid 7125] <... mount resumed>) = 0 [pid 7125] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7123] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7125] <... openat resumed>) = 3 [pid 7123] <... openat resumed>) = 3 [pid 7125] chdir("./file0") = 0 [pid 7123] chdir("./file0" [pid 5034] <... umount2 resumed>) = 0 [pid 7123] <... chdir resumed>) = 0 [pid 7123] ioctl(4, LOOP_CLR_FD) = 0 [pid 7123] close(4) = 0 [pid 7123] exit_group(0) = ? [pid 7123] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7123, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./348", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./348", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7125] ioctl(4, LOOP_CLR_FD [pid 7126] <... mount resumed>) = 0 [pid 7125] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./340/file0", [pid 5032] newfstatat(3, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7125] close(4 [pid 5034] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 7125] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] openat(AT_FDCWD, "./340/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./348/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7126] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7125] exit_group(0 [pid 5034] newfstatat(4, "", [pid 5032] newfstatat(AT_FDCWD, "./348/binderfs", [pid 7125] <... exit_group resumed>) = ? [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] unlink("./348/binderfs" [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... unlink resumed>) = 0 [pid 5034] getdents64(4, [pid 7126] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7126] chdir("./file0" [pid 5034] close(4 [pid 7126] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7126] ioctl(4, LOOP_CLR_FD [pid 5034] rmdir("./340/file0" [pid 7125] +++ exited with 0 +++ [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(3, [pid 7126] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(AT_FDCWD, "./347/file0", [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7125, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] close(3 [pid 7126] close(4 [pid 5034] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./346", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7126] <... close resumed>) = 0 [pid 5034] rmdir("./340" [pid 5030] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./346", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 7126] exit_group(0 [pid 5030] openat(AT_FDCWD, "./347/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(3, "", [pid 7126] <... exit_group resumed>) = ? [pid 5034] mkdir("./341", 0777 [pid 5030] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] newfstatat(4, "", [pid 5029] umount2("./346/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7127] <... write resumed>) = 2097152 [pid 7126] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 5029] newfstatat(AT_FDCWD, "./346/binderfs", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7126, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] close(3 [pid 5029] unlink("./346/binderfs" [pid 5034] <... close resumed>) = 0 [pid 5031] umount2("./346", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./346", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 5029] <... unlink resumed>) = 0 [pid 7127] munmap(0x7ff0df171000, 138412032 [pid 5031] <... openat resumed>) = 3 [pid 7127] <... munmap resumed>) = 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./346/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./346/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./346/binderfs") = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7128 [pid 5030] close(4./strace-static-x86_64: Process 7128 attached [pid 7128] set_robust_list(0x55555635e660, 24 [pid 5030] <... close resumed>) = 0 [pid 7127] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7128] <... set_robust_list resumed>) = 0 [pid 5030] rmdir("./347/file0" [pid 7127] <... openat resumed>) = 4 [pid 5030] <... rmdir resumed>) = 0 [pid 7128] chdir("./341" [pid 7127] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(3, [pid 7128] <... chdir resumed>) = 0 [pid 7128] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7128] <... prctl resumed>) = 0 [pid 5030] close(3 [pid 7128] setpgid(0, 0) = 0 [pid 5030] <... close resumed>) = 0 [pid 7128] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] rmdir("./347" [pid 7128] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 7128] write(3, "1000", 4 [pid 5030] mkdir("./348", 0777 [pid 7128] <... write resumed>) = 4 [pid 7128] close(3 [pid 5030] <... mkdir resumed>) = 0 [pid 7128] <... close resumed>) = 0 [pid 7128] symlink("/dev/binderfs", "./binderfs" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7128] <... symlink resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7128] memfd_create("syzkaller", 0 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] <... umount2 resumed>) = 0 [pid 5030] close(3 [pid 7128] <... memfd_create resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 5032] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7128] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7128] <... mmap resumed>) = 0x7ff0df171000 [pid 7127] <... ioctl resumed>) = 0 [pid 7127] close(3) = 0 [pid 7127] mkdir("./file0", 0777./strace-static-x86_64: Process 7129 attached ) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7129 [pid 5032] newfstatat(AT_FDCWD, "./348/file0", [pid 7129] set_robust_list(0x55555635e660, 24 [pid 7127] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7129] <... set_robust_list resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 286.327508][ T7127] loop4: detected capacity change from 0 to 4096 [pid 7129] chdir("./348" [pid 5032] openat(AT_FDCWD, "./348/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7129] <... chdir resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 7129] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] newfstatat(4, "", [pid 7129] <... prctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7129] setpgid(0, 0 [pid 5032] getdents64(4, [pid 7129] <... setpgid resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 7129] <... openat resumed>) = 3 [pid 5032] rmdir("./348/file0" [pid 5029] <... umount2 resumed>) = 0 [pid 7129] write(3, "1000", 4 [pid 5032] <... rmdir resumed>) = 0 [pid 7129] <... write resumed>) = 4 [pid 7129] close(3) = 0 [pid 7129] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] getdents64(3, [pid 7129] memfd_create("syzkaller", 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./346/file0", [pid 5032] <... close resumed>) = 0 [pid 7129] <... memfd_create resumed>) = 3 [pid 7129] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] rmdir("./348" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7129] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 286.373670][ T7127] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] openat(AT_FDCWD, "./346/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] mkdir("./349", 0777 [pid 5031] <... openat resumed>) = 4 [pid 7128] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] newfstatat(4, "", [pid 5029] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] getdents64(4, [pid 5029] newfstatat(AT_FDCWD, "./346/file0", [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] getdents64(4, [pid 5029] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] close(4 [pid 5029] openat(AT_FDCWD, "./346/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5032] close(3 [pid 5031] rmdir("./346/file0" [pid 5032] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] close(3 [pid 5029] getdents64(4, [pid 5031] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] rmdir("./346" [pid 5029] getdents64(4, ./strace-static-x86_64: Process 7130 attached [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7130] set_robust_list(0x55555635e660, 24 [pid 7127] <... mount resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7130 [pid 5031] mkdir("./347", 0777 [pid 5029] close(4 [pid 7130] <... set_robust_list resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] rmdir("./346/file0" [pid 7127] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 7127] chdir("./file0" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] getdents64(3, [pid 7127] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7127] ioctl(4, LOOP_CLR_FD [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 7127] <... ioctl resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 7127] close(4 [pid 5031] close(3 [pid 5029] rmdir("./346" [pid 7127] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7127] exit_group(0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] mkdir("./347", 0777 [pid 7130] chdir("./349" [pid 7127] <... exit_group resumed>) = ? [pid 5029] <... mkdir resumed>) = 0 [pid 7130] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 7131 attached [pid 7130] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7131 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7130] <... prctl resumed>) = 0 [pid 7131] set_robust_list(0x55555635e660, 24 [pid 7130] setpgid(0, 0 [pid 7127] +++ exited with 0 +++ [pid 5029] <... openat resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7127, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7131] <... set_robust_list resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7131] chdir("./347" [pid 5033] umount2("./340", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7131] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 5033] openat(AT_FDCWD, "./340", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7131] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 7130] <... setpgid resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 7130] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, ./strace-static-x86_64: Process 7132 attached [pid 7131] <... prctl resumed>) = 0 [pid 7130] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7132] set_robust_list(0x55555635e660, 24 [pid 7131] setpgid(0, 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7132 [pid 7132] <... set_robust_list resumed>) = 0 [pid 7131] <... setpgid resumed>) = 0 [pid 5033] umount2("./340/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7132] chdir("./347" [pid 7131] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7132] <... chdir resumed>) = 0 [pid 7131] <... openat resumed>) = 3 [pid 7132] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7131] write(3, "1000", 4 [pid 7130] write(3, "1000", 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7132] <... prctl resumed>) = 0 [pid 7131] <... write resumed>) = 4 [pid 7130] <... write resumed>) = 4 [pid 7129] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] newfstatat(AT_FDCWD, "./340/binderfs", [pid 7131] close(3 [pid 7130] close(3 [pid 7131] <... close resumed>) = 0 [pid 7130] <... close resumed>) = 0 [pid 7128] <... write resumed>) = 2097152 [pid 7131] symlink("/dev/binderfs", "./binderfs" [pid 7130] symlink("/dev/binderfs", "./binderfs" [pid 7132] setpgid(0, 0 [pid 7131] <... symlink resumed>) = 0 [pid 7130] <... symlink resumed>) = 0 [pid 7132] <... setpgid resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7132] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7131] memfd_create("syzkaller", 0 [pid 7128] munmap(0x7ff0df171000, 138412032 [pid 7132] <... openat resumed>) = 3 [pid 7130] memfd_create("syzkaller", 0 [pid 5033] unlink("./340/binderfs" [pid 7132] write(3, "1000", 4) = 4 [pid 7131] <... memfd_create resumed>) = 3 [pid 5033] <... unlink resumed>) = 0 [pid 7132] close(3 [pid 7131] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7130] <... memfd_create resumed>) = 3 [pid 5033] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7132] <... close resumed>) = 0 [pid 7131] <... mmap resumed>) = 0x7ff0df171000 [pid 7130] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7132] symlink("/dev/binderfs", "./binderfs" [pid 7128] <... munmap resumed>) = 0 [pid 7132] <... symlink resumed>) = 0 [pid 7132] memfd_create("syzkaller", 0) = 3 [pid 7132] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7128] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7128] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 7129] <... write resumed>) = 2097152 [pid 7128] close(3) = 0 [pid 7128] mkdir("./file0", 0777) = 0 [pid 7128] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [ 286.587452][ T7128] loop5: detected capacity change from 0 to 4096 [pid 7129] munmap(0x7ff0df171000, 138412032 [pid 7131] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7129] <... munmap resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 7130] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7129] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5033] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7129] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./340/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7132] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] umount2("./340/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7129] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7129] close(3 [pid 5033] openat(AT_FDCWD, "./340/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7129] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", [pid 7129] mkdir("./file0", 0777) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7129] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [ 286.631261][ T7128] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 286.663633][ T7129] loop1: detected capacity change from 0 to 4096 [pid 5033] rmdir("./340/file0" [pid 7130] <... write resumed>) = 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, [pid 7130] munmap(0x7ff0df171000, 138412032 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7130] <... munmap resumed>) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./340" [pid 7131] <... write resumed>) = 2097152 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./341", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7131] munmap(0x7ff0df171000, 138412032 [pid 7130] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7130] <... openat resumed>) = 4 [pid 7130] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [ 286.693668][ T7129] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7133 attached , child_tidptr=0x55555635e650) = 7133 [pid 7133] set_robust_list(0x55555635e660, 24 [pid 7132] <... write resumed>) = 2097152 [pid 7131] <... munmap resumed>) = 0 [pid 7133] <... set_robust_list resumed>) = 0 [pid 7133] chdir("./341" [pid 7129] <... mount resumed>) = 0 [pid 7129] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7131] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7129] chdir("./file0" [pid 7133] <... chdir resumed>) = 0 [pid 7131] <... openat resumed>) = 4 [pid 7130] <... ioctl resumed>) = 0 [pid 7129] <... chdir resumed>) = 0 [pid 7133] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7132] munmap(0x7ff0df171000, 138412032 [pid 7131] ioctl(4, LOOP_SET_FD, 3 [pid 7129] ioctl(4, LOOP_CLR_FD [pid 7133] <... prctl resumed>) = 0 [pid 7130] close(3 [pid 7129] <... ioctl resumed>) = 0 [pid 7128] <... mount resumed>) = 0 [pid 7130] <... close resumed>) = 0 [pid 7129] close(4 [pid 7128] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7129] <... close resumed>) = 0 [pid 7130] mkdir("./file0", 0777 [pid 7128] <... openat resumed>) = 3 [pid 7129] exit_group(0 [pid 7133] setpgid(0, 0) = 0 [pid 7133] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7130] <... mkdir resumed>) = 0 [pid 7129] <... exit_group resumed>) = ? [pid 7128] chdir("./file0" [pid 7133] <... openat resumed>) = 3 [pid 7128] <... chdir resumed>) = 0 [pid 7132] <... munmap resumed>) = 0 [pid 7132] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7129] +++ exited with 0 +++ [pid 7133] write(3, "1000", 4 [pid 7132] <... openat resumed>) = 4 [pid 7128] ioctl(4, LOOP_CLR_FD [pid 7133] <... write resumed>) = 4 [pid 7128] <... ioctl resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7129, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=2 /* 0.02 s */} --- [pid 7133] close(3 [ 286.750705][ T7130] loop3: detected capacity change from 0 to 4096 [ 286.783688][ T7131] loop2: detected capacity change from 0 to 4096 [pid 7132] ioctl(4, LOOP_SET_FD, 3 [pid 7128] close(4 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 7133] <... close resumed>) = 0 [pid 7130] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7128] <... close resumed>) = 0 [pid 7133] symlink("/dev/binderfs", "./binderfs" [pid 7131] <... ioctl resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 7131] close(3) = 0 [pid 7131] mkdir("./file0", 0777 [pid 5030] umount2("./348", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7131] <... mkdir resumed>) = 0 [pid 7128] exit_group(0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7128] <... exit_group resumed>) = ? [pid 5030] openat(AT_FDCWD, "./348", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7133] <... symlink resumed>) = 0 [pid 7131] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./348/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./348/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7133] memfd_create("syzkaller", 0 [pid 7128] +++ exited with 0 +++ [pid 5030] unlink("./348/binderfs" [pid 7132] <... ioctl resumed>) = 0 [pid 7132] close(3) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7128, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5030] <... unlink resumed>) = 0 [pid 7132] mkdir("./file0", 0777 [pid 5030] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7133] <... memfd_create resumed>) = 3 [pid 7132] <... mkdir resumed>) = 0 [pid 7133] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] umount2("./341", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7132] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./341", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 286.801988][ T7132] loop0: detected capacity change from 0 to 4096 [ 286.812423][ T7130] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 286.818470][ T7131] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] umount2("./341/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./341/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./341/binderfs") = 0 [pid 5034] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./348/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./348/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", [pid 5034] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] newfstatat(AT_FDCWD, "./341/file0", [pid 5030] getdents64(4, [pid 7130] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(4 [pid 7130] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 7130] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./341/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] rmdir("./348/file0" [pid 7130] chdir("./file0" [pid 5034] <... openat resumed>) = 4 [pid 5030] <... rmdir resumed>) = 0 [pid 7130] <... chdir resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 7130] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 7130] <... ioctl resumed>) = 0 [pid 7131] <... mount resumed>) = 0 [pid 7130] close(4 [pid 5034] getdents64(4, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7130] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] close(3 [pid 5034] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] rmdir("./348" [pid 5034] close(4) = 0 [pid 5034] rmdir("./341/file0") = 0 [pid 5034] getdents64(3, [pid 7130] exit_group(0 [pid 7131] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7130] <... exit_group resumed>) = ? [ 286.850893][ T7132] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] <... rmdir resumed>) = 0 [pid 7131] <... openat resumed>) = 3 [pid 5034] close(3 [pid 7131] chdir("./file0" [pid 5034] <... close resumed>) = 0 [pid 5030] mkdir("./349", 0777 [pid 7131] <... chdir resumed>) = 0 [pid 5034] rmdir("./341" [pid 5030] <... mkdir resumed>) = 0 [pid 7131] ioctl(4, LOOP_CLR_FD [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./342", 0777 [pid 7130] +++ exited with 0 +++ [pid 5034] <... mkdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7130, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 7131] <... ioctl resumed>) = 0 [pid 5032] umount2("./349", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./349", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7131] close(4 [pid 5032] <... openat resumed>) = 3 [pid 7131] <... close resumed>) = 0 [pid 7131] exit_group(0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] getdents64(3, [pid 7131] <... exit_group resumed>) = ? [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... ioctl resumed>) = 0 [pid 5032] umount2("./349/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./349/binderfs", [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] close(3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7131] +++ exited with 0 +++ [pid 5032] unlink("./349/binderfs" [pid 5034] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7131, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5032] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7134 ./strace-static-x86_64: Process 7134 attached [pid 5031] umount2("./347", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7135 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7135 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7135] set_robust_list(0x55555635e660, 24 [pid 7134] set_robust_list(0x55555635e660, 24 [pid 5031] openat(AT_FDCWD, "./347", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7135] <... set_robust_list resumed>) = 0 [pid 7134] <... set_robust_list resumed>) = 0 [pid 7133] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... openat resumed>) = 3 [pid 7135] chdir("./342" [pid 7134] chdir("./349" [pid 7135] <... chdir resumed>) = 0 [pid 7134] <... chdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 7135] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7134] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7135] <... prctl resumed>) = 0 [pid 7134] <... prctl resumed>) = 0 [pid 5031] getdents64(3, [pid 7135] setpgid(0, 0 [pid 7134] setpgid(0, 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7135] <... setpgid resumed>) = 0 [pid 7134] <... setpgid resumed>) = 0 [pid 7132] <... mount resumed>) = 0 [pid 5031] umount2("./347/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7134] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7132] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7135] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7134] <... openat resumed>) = 3 [pid 7132] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./347/binderfs", [pid 7132] chdir("./file0" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7135] <... openat resumed>) = 3 [pid 7132] <... chdir resumed>) = 0 [pid 5031] unlink("./347/binderfs" [pid 7134] write(3, "1000", 4 [pid 7132] ioctl(4, LOOP_CLR_FD [pid 5031] <... unlink resumed>) = 0 [pid 7135] write(3, "1000", 4 [pid 7134] <... write resumed>) = 4 [pid 7132] <... ioctl resumed>) = 0 [pid 5031] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7135] <... write resumed>) = 4 [pid 7132] close(4) = 0 [pid 7135] close(3 [pid 7132] exit_group(0 [pid 7135] <... close resumed>) = 0 [pid 7134] close(3) = 0 [pid 7132] <... exit_group resumed>) = ? [pid 7134] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7135] symlink("/dev/binderfs", "./binderfs" [pid 7134] memfd_create("syzkaller", 0 [pid 7132] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7132, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7135] <... symlink resumed>) = 0 [pid 5029] umount2("./347", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./347", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7135] memfd_create("syzkaller", 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7134] <... memfd_create resumed>) = 3 [pid 5029] getdents64(3, [pid 7134] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7134] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] umount2("./347/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7135] <... memfd_create resumed>) = 3 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7135] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7135] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./349/file0", [pid 5029] newfstatat(AT_FDCWD, "./347/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./347/binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5032] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./349/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7133] <... write resumed>) = 2097152 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 7133] munmap(0x7ff0df171000, 138412032 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 7133] <... munmap resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./349/file0" [pid 7133] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 7133] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./349") = 0 [pid 5032] mkdir("./350", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7133] <... ioctl resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 7133] close(3) = 0 [pid 7133] mkdir("./file0", 0777 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7136 attached [pid 7136] set_robust_list(0x55555635e660, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7136 [pid 7136] <... set_robust_list resumed>) = 0 [pid 7136] chdir("./350" [pid 7134] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7133] <... mkdir resumed>) = 0 [pid 5031] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./347/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./347/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 7136] <... chdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7136] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 7136] <... prctl resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 7136] setpgid(0, 0 [pid 5031] rmdir("./347/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7133] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [ 287.054761][ T7133] loop4: detected capacity change from 0 to 4096 [pid 5031] close(3 [pid 7136] <... setpgid resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./347") = 0 [pid 7136] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7135] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] mkdir("./348", 0777 [pid 7136] write(3, "1000", 4 [pid 5031] <... mkdir resumed>) = 0 [pid 7136] <... write resumed>) = 4 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... umount2 resumed>) = 0 [pid 7136] close(3) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7136] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7137 [pid 7136] <... symlink resumed>) = 0 [pid 5029] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./347/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./347/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, ./strace-static-x86_64: Process 7137 attached 0x555556367730 /* 2 entries */, 32768) = 48 [ 287.116026][ T7133] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] getdents64(4, [pid 7137] set_robust_list(0x55555635e660, 24 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./347/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7137] <... set_robust_list resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./347") = 0 [pid 7137] chdir("./348" [pid 7136] memfd_create("syzkaller", 0 [pid 5029] mkdir("./348", 0777 [pid 7137] <... chdir resumed>) = 0 [pid 7136] <... memfd_create resumed>) = 3 [pid 7135] <... write resumed>) = 2097152 [pid 5029] <... mkdir resumed>) = 0 [pid 7136] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7137] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7136] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7137] setpgid(0, 0 [pid 5029] <... openat resumed>) = 3 [pid 7137] <... setpgid resumed>) = 0 [pid 7135] munmap(0x7ff0df171000, 138412032 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7137] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7133] <... mount resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7138 [pid 7137] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7138 attached [pid 7137] write(3, "1000", 4 [pid 7138] set_robust_list(0x55555635e660, 24) = 0 [pid 7137] <... write resumed>) = 4 [pid 7135] <... munmap resumed>) = 0 [pid 7137] close(3) = 0 [pid 7137] symlink("/dev/binderfs", "./binderfs" [pid 7138] chdir("./348" [pid 7133] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7138] <... chdir resumed>) = 0 [pid 7133] <... openat resumed>) = 3 [pid 7138] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7133] chdir("./file0" [pid 7138] <... prctl resumed>) = 0 [pid 7133] <... chdir resumed>) = 0 [pid 7134] <... write resumed>) = 2097152 [pid 7133] ioctl(4, LOOP_CLR_FD [pid 7138] setpgid(0, 0 [pid 7133] <... ioctl resumed>) = 0 [pid 7138] <... setpgid resumed>) = 0 [pid 7137] <... symlink resumed>) = 0 [pid 7135] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7133] close(4 [pid 7138] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7134] munmap(0x7ff0df171000, 138412032 [pid 7133] <... close resumed>) = 0 [pid 7138] <... openat resumed>) = 3 [pid 7137] memfd_create("syzkaller", 0 [pid 7135] <... openat resumed>) = 4 [pid 7134] <... munmap resumed>) = 0 [pid 7133] exit_group(0 [pid 7138] write(3, "1000", 4) = 4 [pid 7138] close(3 [pid 7135] ioctl(4, LOOP_SET_FD, 3 [pid 7138] <... close resumed>) = 0 [pid 7138] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7133] <... exit_group resumed>) = ? [pid 7138] memfd_create("syzkaller", 0 [pid 7133] +++ exited with 0 +++ [pid 7138] <... memfd_create resumed>) = 3 [pid 7138] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7134] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7133, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 7137] <... memfd_create resumed>) = 3 [pid 7137] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7134] <... openat resumed>) = 4 [pid 7137] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./341", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7134] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./341", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 7135] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7135] close(3 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7135] <... close resumed>) = 0 [pid 5033] umount2("./341/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7135] mkdir("./file0", 0777) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./341/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./341/binderfs" [pid 7135] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7134] <... ioctl resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [ 287.234366][ T7135] loop5: detected capacity change from 0 to 4096 [ 287.245618][ T7134] loop1: detected capacity change from 0 to 4096 [pid 5033] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7134] close(3) = 0 [pid 7134] mkdir("./file0", 0777) = 0 [pid 7134] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7136] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7137] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./341/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./341/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./341/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 287.286598][ T7135] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 287.306955][ T7134] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 7135] <... mount resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7135] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] getdents64(4, [pid 7135] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7135] chdir("./file0" [pid 5033] close(4 [pid 7136] <... write resumed>) = 2097152 [pid 7135] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7136] munmap(0x7ff0df171000, 138412032 [pid 7135] ioctl(4, LOOP_CLR_FD [pid 5033] rmdir("./341/file0" [pid 7135] <... ioctl resumed>) = 0 [pid 7135] close(4 [pid 7136] <... munmap resumed>) = 0 [pid 7135] <... close resumed>) = 0 [pid 7135] exit_group(0) = ? [pid 5033] <... rmdir resumed>) = 0 [pid 7138] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7135] +++ exited with 0 +++ [pid 5033] getdents64(3, [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7135, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7137] <... write resumed>) = 2097152 [pid 7136] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5033] close(3 [pid 7136] <... openat resumed>) = 4 [pid 5034] <... restart_syscall resumed>) = 0 [pid 7137] munmap(0x7ff0df171000, 138412032 [pid 7136] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./341" [pid 7136] <... ioctl resumed>) = 0 [pid 7134] <... mount resumed>) = 0 [pid 5034] umount2("./342", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./342", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 7134] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7137] <... munmap resumed>) = 0 [pid 7134] <... openat resumed>) = 3 [pid 7134] chdir("./file0") = 0 [pid 5034] getdents64(3, [pid 7134] ioctl(4, LOOP_CLR_FD [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7134] <... ioctl resumed>) = 0 [pid 5034] umount2("./342/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7134] close(4 [pid 5033] mkdir("./342", 0777 [pid 7134] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7134] exit_group(0 [pid 5034] newfstatat(AT_FDCWD, "./342/binderfs", [pid 5033] <... mkdir resumed>) = 0 [pid 7134] <... exit_group resumed>) = ? [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7134] +++ exited with 0 +++ [pid 5034] unlink("./342/binderfs" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7137] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7136] close(3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7134, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... openat resumed>) = 3 [pid 5030] <... restart_syscall resumed>) = 0 [pid 7137] <... openat resumed>) = 4 [pid 7137] ioctl(4, LOOP_SET_FD, 3 [pid 7136] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7136] mkdir("./file0", 0777 [pid 5034] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] umount2("./349", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./349", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./349/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./349/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./349/binderfs" [pid 7136] <... mkdir resumed>) = 0 [pid 5033] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7136] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 287.416301][ T7136] loop3: detected capacity change from 0 to 4096 [ 287.450050][ T7137] loop2: detected capacity change from 0 to 4096 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7138] <... write resumed>) = 2097152 ./strace-static-x86_64: Process 7139 attached [pid 7137] <... ioctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7139 [pid 7139] set_robust_list(0x55555635e660, 24 [pid 7137] close(3 [pid 5034] <... umount2 resumed>) = 0 [pid 7139] <... set_robust_list resumed>) = 0 [pid 7137] <... close resumed>) = 0 [pid 7137] mkdir("./file0", 0777 [pid 7139] chdir("./342" [pid 7138] munmap(0x7ff0df171000, 138412032 [pid 7137] <... mkdir resumed>) = 0 [pid 5034] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./342/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./342/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./342/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./342" [pid 7139] <... chdir resumed>) = 0 [pid 7137] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7139] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./343", 0777 [pid 7139] <... prctl resumed>) = 0 [pid 7138] <... munmap resumed>) = 0 [pid 7139] setpgid(0, 0 [pid 7138] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7139] <... setpgid resumed>) = 0 [pid 7139] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7138] <... openat resumed>) = 4 [pid 5034] <... mkdir resumed>) = 0 [ 287.469837][ T7136] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 287.505275][ T7137] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7139] <... openat resumed>) = 3 [pid 7138] ioctl(4, LOOP_SET_FD, 3 [pid 7139] write(3, "1000", 4) = 4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7139] close(3 [pid 5034] close(3 [pid 7139] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 7139] symlink("/dev/binderfs", "./binderfs" [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7139] <... symlink resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7140 [pid 7139] memfd_create("syzkaller", 0./strace-static-x86_64: Process 7140 attached ) = 3 [pid 7138] <... ioctl resumed>) = 0 [pid 7139] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7138] close(3 [pid 7136] <... mount resumed>) = 0 [pid 7139] <... mmap resumed>) = 0x7ff0df171000 [pid 7138] <... close resumed>) = 0 [pid 7138] mkdir("./file0", 0777 [pid 7136] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7140] set_robust_list(0x55555635e660, 24) = 0 [pid 7140] chdir("./343" [pid 7136] <... openat resumed>) = 3 [pid 7140] <... chdir resumed>) = 0 [pid 7136] chdir("./file0" [pid 7140] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7136] <... chdir resumed>) = 0 [pid 7140] <... prctl resumed>) = 0 [pid 7136] ioctl(4, LOOP_CLR_FD [pid 7138] <... mkdir resumed>) = 0 [pid 7140] setpgid(0, 0 [pid 7136] <... ioctl resumed>) = 0 [pid 7140] <... setpgid resumed>) = 0 [pid 7136] close(4 [pid 7140] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7136] <... close resumed>) = 0 [pid 7136] exit_group(0 [pid 7140] <... openat resumed>) = 3 [pid 7136] <... exit_group resumed>) = ? [ 287.526917][ T7138] loop0: detected capacity change from 0 to 4096 [pid 7140] write(3, "1000", 4 [pid 7138] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7136] +++ exited with 0 +++ [pid 7140] <... write resumed>) = 4 [pid 7140] close(3) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7136, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5032] umount2("./350", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = 0 [pid 7140] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7140] memfd_create("syzkaller", 0) = 3 [pid 7140] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./350", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./349/file0", [pid 5032] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7137] <... mount resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7137] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./349/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 7137] <... openat resumed>) = 3 [pid 5032] umount2("./350/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7137] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, [pid 7137] <... chdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./350/binderfs", [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7137] ioctl(4, LOOP_CLR_FD [pid 5032] unlink("./350/binderfs" [pid 5030] close(4) = 0 [pid 5030] rmdir("./349/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./349") = 0 [pid 5030] mkdir("./350", 0777 [pid 7137] <... ioctl resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 7137] close(4 [pid 5032] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7137] <... close resumed>) = 0 [ 287.588396][ T7138] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7137] exit_group(0) = ? [pid 7137] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7137, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./348", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./348", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... openat resumed>) = 3 [pid 5030] close(3) = 0 [pid 5031] newfstatat(3, "", [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./348/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7141 [pid 5031] newfstatat(AT_FDCWD, "./348/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./348/binderfs") = 0 [pid 5031] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7141 attached [pid 7141] set_robust_list(0x55555635e660, 24) = 0 [pid 7141] chdir("./350") = 0 [pid 7141] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... umount2 resumed>) = 0 [pid 7141] <... prctl resumed>) = 0 [pid 7139] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7141] setpgid(0, 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7141] <... setpgid resumed>) = 0 [pid 7138] <... mount resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./350/file0", [pid 7141] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7138] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7141] <... openat resumed>) = 3 [pid 7138] <... openat resumed>) = 3 [pid 5032] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7141] write(3, "1000", 4 [pid 7138] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7141] <... write resumed>) = 4 [pid 5032] openat(AT_FDCWD, "./350/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7141] close(3 [pid 7138] <... chdir resumed>) = 0 [pid 7140] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7138] ioctl(4, LOOP_CLR_FD [pid 5032] <... openat resumed>) = 4 [pid 7141] <... close resumed>) = 0 [pid 7138] <... ioctl resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 7141] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7138] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7138] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 7138] exit_group(0) = ? [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7141] memfd_create("syzkaller", 0 [pid 5032] getdents64(4, [pid 5031] <... umount2 resumed>) = 0 [pid 7138] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7138, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 5032] <... close resumed>) = 0 [pid 7141] <... memfd_create resumed>) = 3 [pid 5032] rmdir("./350/file0" [pid 5029] umount2("./348", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7141] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./348", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./348/file0", [pid 5029] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(3, "", [pid 5032] close(3 [pid 5031] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7141] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] rmdir("./350" [pid 5031] openat(AT_FDCWD, "./348/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(3, [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] mkdir("./351", 0777 [pid 5031] newfstatat(4, "", [pid 5029] umount2("./348/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] newfstatat(AT_FDCWD, "./348/binderfs", [pid 5031] getdents64(4, [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] close(4 [pid 5029] unlink("./348/binderfs" [pid 5031] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] <... unlink resumed>) = 0 [pid 7139] <... write resumed>) = 2097152 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] rmdir("./348/file0" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... rmdir resumed>) = 0 [pid 5029] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7139] munmap(0x7ff0df171000, 138412032 [pid 5032] close(3 [pid 5031] getdents64(3, [pid 5032] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] close(3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7142 [pid 7139] <... munmap resumed>) = 0 [pid 5031] <... close resumed>) = 0 ./strace-static-x86_64: Process 7142 attached [pid 5031] rmdir("./348" [pid 7142] set_robust_list(0x55555635e660, 24 [pid 7139] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... rmdir resumed>) = 0 [pid 7142] <... set_robust_list resumed>) = 0 [pid 5031] mkdir("./349", 0777 [pid 7142] chdir("./351" [pid 7139] <... openat resumed>) = 4 [pid 5031] <... mkdir resumed>) = 0 [pid 7142] <... chdir resumed>) = 0 [pid 7139] ioctl(4, LOOP_SET_FD, 3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7142] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7140] <... write resumed>) = 2097152 [pid 7142] <... prctl resumed>) = 0 [pid 7140] munmap(0x7ff0df171000, 138412032 [pid 7142] setpgid(0, 0) = 0 [pid 7142] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7140] <... munmap resumed>) = 0 [pid 7139] <... ioctl resumed>) = 0 [pid 7140] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7141] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7140] <... openat resumed>) = 4 [pid 5031] close(3 [pid 7140] ioctl(4, LOOP_SET_FD, 3 [pid 7139] close(3 [pid 5031] <... close resumed>) = 0 [pid 7142] write(3, "1000", 4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7142] <... write resumed>) = 4 ./strace-static-x86_64: Process 7143 attached [pid 7142] close(3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7143 [pid 7143] set_robust_list(0x55555635e660, 24 [pid 7142] <... close resumed>) = 0 [pid 7143] <... set_robust_list resumed>) = 0 [pid 7142] symlink("/dev/binderfs", "./binderfs" [pid 7140] <... ioctl resumed>) = 0 [pid 7139] <... close resumed>) = 0 [pid 7142] <... symlink resumed>) = 0 [pid 7139] mkdir("./file0", 0777 [pid 7142] memfd_create("syzkaller", 0 [pid 7139] <... mkdir resumed>) = 0 [pid 7143] chdir("./349") = 0 [pid 7143] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 287.813442][ T7139] loop4: detected capacity change from 0 to 4096 [ 287.834772][ T7140] loop5: detected capacity change from 0 to 4096 [ 287.854753][ T7139] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7143] setpgid(0, 0) = 0 [pid 7142] <... memfd_create resumed>) = 3 [pid 7139] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7143] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7143] write(3, "1000", 4) = 4 [pid 7143] close(3) = 0 [pid 7143] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7143] memfd_create("syzkaller", 0 [pid 7142] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7140] close(3 [pid 7143] <... memfd_create resumed>) = 3 [pid 7140] <... close resumed>) = 0 [pid 7140] mkdir("./file0", 0777 [pid 7143] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7141] <... write resumed>) = 2097152 [pid 7140] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 7140] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7143] <... mmap resumed>) = 0x7ff0df171000 [pid 7141] munmap(0x7ff0df171000, 138412032 [pid 5029] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./348/file0", [pid 7141] <... munmap resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7141] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7141] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./348/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7141] ioctl(4, LOOP_SET_FD, 3 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 7141] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 7141] close(3 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./348/file0" [pid 7141] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7141] mkdir("./file0", 0777 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7141] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./348") = 0 [pid 5029] mkdir("./349", 0777 [pid 7141] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [ 287.878322][ T7140] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 287.913136][ T7141] loop1: detected capacity change from 0 to 4096 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7144 ./strace-static-x86_64: Process 7144 attached [pid 7144] set_robust_list(0x55555635e660, 24) = 0 [pid 7144] chdir("./349") = 0 [pid 7142] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7144] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7144] setpgid(0, 0) = 0 [pid 7144] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7144] write(3, "1000", 4) = 4 [pid 7144] close(3) = 0 [pid 7144] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7144] memfd_create("syzkaller", 0) = 3 [pid 7144] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7139] <... mount resumed>) = 0 [ 287.946183][ T7141] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7139] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7139] chdir("./file0") = 0 [pid 7139] ioctl(4, LOOP_CLR_FD [pid 7141] <... mount resumed>) = 0 [pid 7139] <... ioctl resumed>) = 0 [pid 7139] close(4 [pid 7143] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7141] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7139] <... close resumed>) = 0 [pid 7139] exit_group(0) = ? [pid 7141] <... openat resumed>) = 3 [pid 7139] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7139, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=5 /* 0.05 s */} --- [pid 7141] chdir("./file0") = 0 [pid 7141] ioctl(4, LOOP_CLR_FD [pid 5033] umount2("./342", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7141] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7141] close(4 [pid 5033] openat(AT_FDCWD, "./342", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7141] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 7141] exit_group(0 [pid 5033] newfstatat(3, "", [pid 7141] <... exit_group resumed>) = ? [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7142] <... write resumed>) = 2097152 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./342/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7141] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./342/binderfs", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7141, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./342/binderfs" [pid 5030] <... restart_syscall resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7144] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7142] munmap(0x7ff0df171000, 138412032 [pid 5033] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./350", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./350", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7140] <... mount resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7140] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] newfstatat(3, "", [pid 7140] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./350/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./350/binderfs", [pid 7140] chdir("./file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7140] <... chdir resumed>) = 0 [pid 5030] unlink("./350/binderfs") = 0 [pid 7143] <... write resumed>) = 2097152 [pid 7142] <... munmap resumed>) = 0 [pid 7140] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7140] <... ioctl resumed>) = 0 [pid 7140] close(4 [pid 7142] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7140] <... close resumed>) = 0 [pid 7143] munmap(0x7ff0df171000, 138412032 [pid 7142] <... openat resumed>) = 4 [pid 7140] exit_group(0 [pid 5033] <... umount2 resumed>) = 0 [pid 7142] ioctl(4, LOOP_SET_FD, 3 [pid 7140] <... exit_group resumed>) = ? [pid 5033] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./342/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./342/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./342/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7143] <... munmap resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 7140] +++ exited with 0 +++ [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7140, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] umount2("./343", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 7143] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7143] <... openat resumed>) = 4 [pid 7142] <... ioctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./343", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = 0 [pid 7143] ioctl(4, LOOP_SET_FD, 3 [pid 7142] close(3) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] close(4 [pid 5034] newfstatat(3, "", [pid 5033] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] rmdir("./342/file0" [pid 5034] getdents64(3, [pid 5033] <... rmdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] getdents64(3, [pid 5034] umount2("./343/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5034] newfstatat(AT_FDCWD, "./343/binderfs", [pid 5033] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] rmdir("./342") = 0 [pid 5033] mkdir("./343", 0777) = 0 [pid 7142] mkdir("./file0", 0777 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7144] <... write resumed>) = 2097152 [pid 7143] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5034] unlink("./343/binderfs" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7144] munmap(0x7ff0df171000, 138412032 [pid 7143] close(3 [pid 7142] <... mkdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7143] <... close resumed>) = 0 [pid 5033] close(3) = 0 [pid 5030] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7143] mkdir("./file0", 0777 [pid 5034] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7144] <... munmap resumed>) = 0 [pid 7143] <... mkdir resumed>) = 0 [ 288.113288][ T7142] loop3: detected capacity change from 0 to 4096 [ 288.142289][ T7143] loop2: detected capacity change from 0 to 4096 [pid 7142] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7144] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7143] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(AT_FDCWD, "./350/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./350/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7145 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./350/file0") = 0 ./strace-static-x86_64: Process 7145 attached [pid 5030] getdents64(3, [pid 7145] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7145] chdir("./343" [pid 5030] close(3 [pid 7145] <... chdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7145] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] rmdir("./350" [pid 7145] <... prctl resumed>) = 0 [pid 7145] setpgid(0, 0 [pid 5030] <... rmdir resumed>) = 0 [pid 7145] <... setpgid resumed>) = 0 [pid 7145] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7144] <... openat resumed>) = 4 [pid 7145] write(3, "1000", 4) = 4 [pid 7145] close(3 [pid 5030] mkdir("./351", 0777 [pid 7145] <... close resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7144] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7145] symlink("/dev/binderfs", "./binderfs" [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7145] <... symlink resumed>) = 0 ./strace-static-x86_64: Process 7146 attached [pid 7145] memfd_create("syzkaller", 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7146 [pid 7146] set_robust_list(0x55555635e660, 24) = 0 [pid 7146] chdir("./351") = 0 [pid 7145] <... memfd_create resumed>) = 3 [pid 7144] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7146] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7145] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7144] close(3 [pid 7142] <... mount resumed>) = 0 [pid 7142] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7144] <... close resumed>) = 0 [pid 7144] mkdir("./file0", 0777 [pid 7145] <... mmap resumed>) = 0x7ff0df171000 [pid 7146] setpgid(0, 0 [pid 7144] <... mkdir resumed>) = 0 [pid 7146] <... setpgid resumed>) = 0 [pid 7144] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7146] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7142] <... openat resumed>) = 3 [pid 7146] <... openat resumed>) = 3 [pid 7146] write(3, "1000", 4 [ 288.164006][ T7142] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 288.175314][ T7143] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 288.197875][ T7144] loop0: detected capacity change from 0 to 4096 [pid 7142] chdir("./file0" [pid 7146] <... write resumed>) = 4 [pid 7142] <... chdir resumed>) = 0 [pid 7146] close(3 [pid 7142] ioctl(4, LOOP_CLR_FD [pid 7146] <... close resumed>) = 0 [pid 7146] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7146] memfd_create("syzkaller", 0) = 3 [pid 5034] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7142] <... ioctl resumed>) = 0 [pid 7146] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7146] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] newfstatat(AT_FDCWD, "./343/file0", [pid 7143] <... mount resumed>) = 0 [pid 7142] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7143] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7142] <... close resumed>) = 0 [pid 5034] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7143] <... openat resumed>) = 3 [pid 7142] exit_group(0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7143] chdir("./file0" [pid 7142] <... exit_group resumed>) = ? [pid 7143] <... chdir resumed>) = 0 [pid 7142] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./343/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7143] ioctl(4, LOOP_CLR_FD [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7142, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5034] <... openat resumed>) = 4 [pid 5032] umount2("./351", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] openat(AT_FDCWD, "./351", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(4, [pid 5032] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] newfstatat(3, "", [pid 7143] <... ioctl resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] getdents64(3, [pid 7143] close(4 [pid 5034] close(4 [pid 7143] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7143] exit_group(0 [pid 5034] rmdir("./343/file0" [pid 5032] umount2("./351/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7143] <... exit_group resumed>) = ? [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./351/binderfs", [pid 7143] +++ exited with 0 +++ [pid 5034] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./351/binderfs" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7143, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5034] close(3 [pid 5032] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [ 288.240669][ T7144] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5034] rmdir("./343") = 0 [pid 5031] umount2("./349", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./349", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] mkdir("./344", 0777 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5034] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] umount2("./349/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./349/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./349/binderfs" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] <... unlink resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7147 [pid 7144] <... mount resumed>) = 0 ./strace-static-x86_64: Process 7147 attached [pid 7147] set_robust_list(0x55555635e660, 24) = 0 [pid 7147] chdir("./344" [pid 7144] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7147] <... chdir resumed>) = 0 [pid 7144] <... openat resumed>) = 3 [pid 7147] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7147] setpgid(0, 0) = 0 [pid 7147] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7145] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7144] chdir("./file0" [pid 7147] <... openat resumed>) = 3 [pid 7144] <... chdir resumed>) = 0 [pid 7144] ioctl(4, LOOP_CLR_FD) = 0 [pid 7144] close(4) = 0 [pid 7144] exit_group(0) = ? [pid 7144] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7144, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 7147] write(3, "1000", 4) = 4 [pid 7147] close(3) = 0 [pid 7147] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7147] memfd_create("syzkaller", 0 [pid 5029] umount2("./349", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7146] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./349", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] getdents64(3, [pid 7147] <... memfd_create resumed>) = 3 [pid 5032] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./349/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./349/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./351/file0", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7147] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./349/binderfs" [pid 7147] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] <... unlink resumed>) = 0 [pid 5032] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./351/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5031] <... umount2 resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./351/file0" [pid 5031] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./349/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./349/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 5032] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(4, [pid 5032] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./351" [pid 5031] getdents64(4, [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] mkdir("./352", 0777 [pid 5031] close(4 [pid 5029] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] rmdir("./349/file0" [pid 5029] newfstatat(AT_FDCWD, "./349/file0", [pid 5032] <... openat resumed>) = 3 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] getdents64(3, [pid 5029] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 5029] openat(AT_FDCWD, "./349/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5031] rmdir("./349" [pid 5029] newfstatat(4, "", [pid 5032] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] mkdir("./350", 0777 [pid 5029] getdents64(4, [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7145] <... write resumed>) = 2097152 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] getdents64(4, [pid 5031] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] close(4 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 5031] close(3 [pid 5029] rmdir("./349/file0" [pid 5031] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7148 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7148 ./strace-static-x86_64: Process 7149 attached [pid 7148] set_robust_list(0x55555635e660, 24 [pid 7145] munmap(0x7ff0df171000, 138412032 [pid 5029] getdents64(3, [pid 7149] set_robust_list(0x55555635e660, 24 [pid 7148] <... set_robust_list resumed>) = 0 [pid 7146] <... write resumed>) = 2097152 [pid 7145] <... munmap resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7149 [pid 7149] <... set_robust_list resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7149] chdir("./350" [pid 7148] chdir("./352" [pid 5029] close(3 [pid 7149] <... chdir resumed>) = 0 [pid 7148] <... chdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7149] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] rmdir("./349" [pid 7149] <... prctl resumed>) = 0 [pid 7149] setpgid(0, 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7149] <... setpgid resumed>) = 0 [pid 5029] mkdir("./350", 0777 [pid 7149] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7148] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7149] <... openat resumed>) = 3 [pid 7146] munmap(0x7ff0df171000, 138412032 [pid 7145] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5029] <... mkdir resumed>) = 0 [pid 7148] <... prctl resumed>) = 0 [pid 7146] <... munmap resumed>) = 0 [pid 7145] <... openat resumed>) = 4 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7149] write(3, "1000", 4 [pid 7145] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7148] setpgid(0, 0 [pid 7149] <... write resumed>) = 4 [pid 7149] close(3 [pid 7148] <... setpgid resumed>) = 0 [pid 7149] <... close resumed>) = 0 [pid 7148] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... ioctl resumed>) = 0 [pid 7149] symlink("/dev/binderfs", "./binderfs" [pid 5029] close(3 [pid 7149] <... symlink resumed>) = 0 [pid 7148] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7149] memfd_create("syzkaller", 0 [pid 7148] write(3, "1000", 4 [pid 7146] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7150 [pid 7146] <... openat resumed>) = 4 ./strace-static-x86_64: Process 7150 attached [pid 7146] ioctl(4, LOOP_SET_FD, 3 [pid 7148] <... write resumed>) = 4 [pid 7148] close(3 [pid 7150] set_robust_list(0x55555635e660, 24 [pid 7149] <... memfd_create resumed>) = 3 [pid 7148] <... close resumed>) = 0 [pid 7147] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7149] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7148] symlink("/dev/binderfs", "./binderfs" [pid 7150] <... set_robust_list resumed>) = 0 [pid 7149] <... mmap resumed>) = 0x7ff0df171000 [pid 7150] chdir("./350" [pid 7148] <... symlink resumed>) = 0 [pid 7150] <... chdir resumed>) = 0 [pid 7150] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7145] <... ioctl resumed>) = 0 [pid 7150] <... prctl resumed>) = 0 [pid 7145] close(3 [pid 7150] setpgid(0, 0 [pid 7145] <... close resumed>) = 0 [pid 7150] <... setpgid resumed>) = 0 [pid 7145] mkdir("./file0", 0777 [pid 7150] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7145] <... mkdir resumed>) = 0 [pid 7150] <... openat resumed>) = 3 [ 288.490802][ T7145] loop4: detected capacity change from 0 to 4096 [ 288.507997][ T7146] loop1: detected capacity change from 0 to 4096 [pid 7145] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7148] memfd_create("syzkaller", 0) = 3 [pid 7150] write(3, "1000", 4 [pid 7148] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7146] <... ioctl resumed>) = 0 [pid 7150] <... write resumed>) = 4 [pid 7148] <... mmap resumed>) = 0x7ff0df171000 [pid 7146] close(3) = 0 [pid 7150] close(3) = 0 [pid 7150] symlink("/dev/binderfs", "./binderfs" [pid 7146] mkdir("./file0", 0777 [pid 7150] <... symlink resumed>) = 0 [pid 7146] <... mkdir resumed>) = 0 [ 288.537263][ T7145] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7146] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7150] memfd_create("syzkaller", 0 [pid 7147] <... write resumed>) = 2097152 [pid 7150] <... memfd_create resumed>) = 3 [pid 7150] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7147] munmap(0x7ff0df171000, 138412032) = 0 [pid 7147] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [ 288.582115][ T7146] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7147] ioctl(4, LOOP_SET_FD, 3 [pid 7149] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7148] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7146] <... mount resumed>) = 0 [pid 7147] <... ioctl resumed>) = 0 [pid 7146] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7145] <... mount resumed>) = 0 [pid 7147] close(3 [pid 7145] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7150] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7147] <... close resumed>) = 0 [pid 7147] mkdir("./file0", 0777 [pid 7146] <... openat resumed>) = 3 [pid 7145] <... openat resumed>) = 3 [pid 7145] chdir("./file0") = 0 [pid 7145] ioctl(4, LOOP_CLR_FD [pid 7147] <... mkdir resumed>) = 0 [pid 7146] chdir("./file0") = 0 [pid 7146] ioctl(4, LOOP_CLR_FD [pid 7147] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7146] <... ioctl resumed>) = 0 [pid 7146] close(4) = 0 [pid 7146] exit_group(0) = ? [pid 7146] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7146, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5030] umount2("./351", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./351", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./351/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./351/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./351/binderfs" [pid 7145] <... ioctl resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7145] close(4) = 0 [pid 7145] exit_group(0 [pid 7149] <... write resumed>) = 2097152 [pid 7145] <... exit_group resumed>) = ? [pid 7149] munmap(0x7ff0df171000, 138412032 [pid 7145] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7145, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./343", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./343", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 288.625919][ T7147] loop5: detected capacity change from 0 to 4096 [ 288.660314][ T7147] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7150] <... write resumed>) = 2097152 [pid 7148] <... write resumed>) = 2097152 [pid 5033] umount2("./343/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7150] munmap(0x7ff0df171000, 138412032 [pid 7149] <... munmap resumed>) = 0 [pid 7148] munmap(0x7ff0df171000, 138412032 [pid 5033] newfstatat(AT_FDCWD, "./343/binderfs", [pid 7149] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 7149] ioctl(4, LOOP_SET_FD, 3 [pid 7150] <... munmap resumed>) = 0 [pid 7148] <... munmap resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./343/binderfs" [pid 7150] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5033] <... unlink resumed>) = 0 [pid 7150] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7148] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 7148] ioctl(4, LOOP_SET_FD, 3 [pid 7147] <... mount resumed>) = 0 [pid 7147] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7149] <... ioctl resumed>) = 0 [pid 7149] close(3) = 0 [pid 7149] mkdir("./file0", 0777) = 0 [pid 7149] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7147] <... openat resumed>) = 3 [pid 7150] <... ioctl resumed>) = 0 [pid 7148] <... ioctl resumed>) = 0 [pid 7150] close(3 [pid 7148] close(3 [pid 7150] <... close resumed>) = 0 [pid 7148] <... close resumed>) = 0 [pid 7150] mkdir("./file0", 0777 [pid 7148] mkdir("./file0", 0777 [pid 7147] chdir("./file0") = 0 [pid 7150] <... mkdir resumed>) = 0 [pid 7148] <... mkdir resumed>) = 0 [pid 7150] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7147] ioctl(4, LOOP_CLR_FD [pid 7148] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7147] <... ioctl resumed>) = 0 [ 288.714864][ T7149] loop2: detected capacity change from 0 to 4096 [ 288.727805][ T7150] loop0: detected capacity change from 0 to 4096 [ 288.736785][ T7148] loop3: detected capacity change from 0 to 4096 [ 288.748536][ T7149] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7147] close(4 [pid 5030] <... umount2 resumed>) = 0 [pid 7147] <... close resumed>) = 0 [pid 7147] exit_group(0 [pid 5030] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7147] <... exit_group resumed>) = ? [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7147] +++ exited with 0 +++ [pid 5030] newfstatat(AT_FDCWD, "./351/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7147, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./351/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] umount2("./344", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./344", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(4, "", [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./344/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./344/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./344/binderfs") = 0 [pid 5034] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./351/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./351") = 0 [pid 5030] mkdir("./352", 0777) = 0 [ 288.767039][ T7150] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 288.777439][ T7148] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5034] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7151 attached [pid 5034] newfstatat(AT_FDCWD, "./344/file0", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7151] set_robust_list(0x55555635e660, 24 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(AT_FDCWD, "./343/file0", [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7151 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./343/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./343/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 7151] <... set_robust_list resumed>) = 0 [pid 7150] <... mount resumed>) = 0 [pid 7148] <... mount resumed>) = 0 [pid 5034] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 7148] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7151] chdir("./352" [pid 7148] <... openat resumed>) = 3 [pid 7151] <... chdir resumed>) = 0 [pid 7150] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7149] <... mount resumed>) = 0 [pid 7148] chdir("./file0" [pid 5034] openat(AT_FDCWD, "./344/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7151] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7150] <... openat resumed>) = 3 [pid 7149] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7148] <... chdir resumed>) = 0 [pid 5033] rmdir("./343/file0" [pid 7151] <... prctl resumed>) = 0 [pid 7150] chdir("./file0" [pid 7149] <... openat resumed>) = 3 [pid 7148] ioctl(4, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 7151] setpgid(0, 0 [pid 7148] <... ioctl resumed>) = 0 [pid 7149] chdir("./file0" [pid 7151] <... setpgid resumed>) = 0 [pid 7150] <... chdir resumed>) = 0 [pid 7149] <... chdir resumed>) = 0 [pid 7148] close(4 [pid 5034] newfstatat(4, "", [pid 7151] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7150] ioctl(4, LOOP_CLR_FD [pid 7149] ioctl(4, LOOP_CLR_FD [pid 7148] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 7151] <... openat resumed>) = 3 [pid 7150] <... ioctl resumed>) = 0 [pid 7149] <... ioctl resumed>) = 0 [pid 7148] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7151] write(3, "1000", 4 [pid 7150] close(4 [pid 7149] close(4 [pid 7148] <... exit_group resumed>) = ? [pid 5034] getdents64(4, [pid 5033] close(3 [pid 7151] <... write resumed>) = 4 [pid 7150] <... close resumed>) = 0 [pid 7149] <... close resumed>) = 0 [pid 7148] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 7150] exit_group(0 [pid 7149] exit_group(0 [pid 7151] close(3 [pid 7150] <... exit_group resumed>) = ? [pid 7149] <... exit_group resumed>) = ? [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] rmdir("./343" [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7148, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 7151] <... close resumed>) = 0 [pid 7149] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5033] <... rmdir resumed>) = 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 7151] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7149, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7151] <... symlink resumed>) = 0 [pid 7150] +++ exited with 0 +++ [pid 5034] close(4 [pid 5033] mkdir("./344", 0777 [pid 7151] memfd_create("syzkaller", 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./344/file0" [pid 5032] umount2("./352", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7150, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=6 /* 0.06 s */} --- [pid 7151] <... memfd_create resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./350", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./350", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7151] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] getdents64(3, [pid 5032] openat(AT_FDCWD, "./352", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7151] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./350", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5031] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./350", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./344") = 0 [pid 5034] mkdir("./345", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] getdents64(3, [pid 5031] newfstatat(3, "", [pid 5029] <... openat resumed>) = 3 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] newfstatat(3, "", [pid 5033] close(3 [pid 5031] getdents64(3, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] getdents64(3, [pid 5032] umount2("./352/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./352/binderfs", ./strace-static-x86_64: Process 7152 attached [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./350/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7152] set_robust_list(0x55555635e660, 24 [pid 5034] <... openat resumed>) = 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7152 [pid 5032] unlink("./352/binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./350/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7152] <... set_robust_list resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./350/binderfs", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7152] chdir("./344" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] newfstatat(AT_FDCWD, "./350/binderfs", [pid 7152] <... chdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7152] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7152] <... prctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 7152] setpgid(0, 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] unlink("./350/binderfs"./strace-static-x86_64: Process 7153 attached [pid 7152] <... setpgid resumed>) = 0 [pid 5031] unlink("./350/binderfs" [pid 7153] set_robust_list(0x55555635e660, 24 [pid 7152] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5031] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7153] <... set_robust_list resumed>) = 0 [pid 7152] <... openat resumed>) = 3 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7153 [pid 5029] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7153] chdir("./345") = 0 [pid 7153] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7153] setpgid(0, 0) = 0 [pid 7153] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7152] write(3, "1000", 4 [pid 7153] <... openat resumed>) = 3 [pid 7152] <... write resumed>) = 4 [pid 7153] write(3, "1000", 4) = 4 [pid 7153] close(3 [pid 7152] close(3 [pid 7153] <... close resumed>) = 0 [pid 7153] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7152] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 7152] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7153] memfd_create("syzkaller", 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7152] memfd_create("syzkaller", 0 [pid 5032] newfstatat(AT_FDCWD, "./352/file0", [pid 7153] <... memfd_create resumed>) = 3 [pid 7153] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7152] <... memfd_create resumed>) = 3 [pid 7151] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./352/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 7152] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./352/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 7152] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] rmdir("./352") = 0 [pid 5032] mkdir("./353", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... umount2 resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 5031] newfstatat(AT_FDCWD, "./350/file0", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./350/file0", [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7154 [pid 5031] openat(AT_FDCWD, "./350/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "./350/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7154 attached [pid 7152] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... openat resumed>) = 4 [pid 5029] <... openat resumed>) = 4 [pid 7154] set_robust_list(0x55555635e660, 24 [pid 5031] newfstatat(4, "", [pid 5029] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7154] <... set_robust_list resumed>) = 0 [pid 7154] chdir("./353" [pid 5031] getdents64(4, [pid 5029] getdents64(4, [pid 7154] <... chdir resumed>) = 0 [pid 7153] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 7154] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 7154] <... prctl resumed>) = 0 [pid 5031] close(4 [pid 7154] setpgid(0, 0 [pid 5031] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7154] <... setpgid resumed>) = 0 [pid 5031] rmdir("./350/file0" [pid 5029] close(4 [pid 7154] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7151] <... write resumed>) = 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 5029] rmdir("./350/file0" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./350" [pid 5029] <... rmdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5031] mkdir("./351", 0777 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] close(3) = 0 [pid 7154] <... openat resumed>) = 3 [pid 5029] rmdir("./350" [pid 7154] write(3, "1000", 4 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7152] <... write resumed>) = 2097152 [pid 7151] munmap(0x7ff0df171000, 138412032 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./351", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7154] <... write resumed>) = 4 [pid 7152] munmap(0x7ff0df171000, 138412032 [pid 5031] <... openat resumed>) = 3 [pid 7154] close(3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5031] close(3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... close resumed>) = 0 [pid 5029] close(3 [pid 7154] <... close resumed>) = 0 [pid 7152] <... munmap resumed>) = 0 [pid 7151] <... munmap resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... close resumed>) = 0 [pid 7154] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7151] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 7156 attached [pid 7156] set_robust_list(0x55555635e660, 24) = 0 [pid 7156] chdir("./351" [pid 7151] <... openat resumed>) = 4 [pid 7156] <... chdir resumed>) = 0 [pid 7151] ioctl(4, LOOP_SET_FD, 3 [pid 7156] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7154] memfd_create("syzkaller", 0 [pid 7153] <... write resumed>) = 2097152 [pid 7151] <... ioctl resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7156 [pid 7154] <... memfd_create resumed>) = 3 [pid 7152] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7155 ./strace-static-x86_64: Process 7155 attached [pid 7156] <... prctl resumed>) = 0 [pid 7154] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7152] <... openat resumed>) = 4 [pid 7155] set_robust_list(0x55555635e660, 24 [pid 7156] setpgid(0, 0 [pid 7154] <... mmap resumed>) = 0x7ff0df171000 [pid 7152] ioctl(4, LOOP_SET_FD, 3 [pid 7155] <... set_robust_list resumed>) = 0 [pid 7156] <... setpgid resumed>) = 0 [pid 7155] chdir("./351" [pid 7156] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7155] <... chdir resumed>) = 0 [pid 7156] <... openat resumed>) = 3 [pid 7155] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7156] write(3, "1000", 4 [pid 7153] munmap(0x7ff0df171000, 138412032 [pid 7155] <... prctl resumed>) = 0 [pid 7156] <... write resumed>) = 4 [pid 7153] <... munmap resumed>) = 0 [pid 7155] setpgid(0, 0 [pid 7156] close(3 [pid 7155] <... setpgid resumed>) = 0 [pid 7156] <... close resumed>) = 0 [pid 7155] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7156] symlink("/dev/binderfs", "./binderfs" [pid 7152] <... ioctl resumed>) = 0 [pid 7155] <... openat resumed>) = 3 [pid 7156] <... symlink resumed>) = 0 [pid 7152] close(3 [pid 7155] write(3, "1000", 4 [pid 7156] memfd_create("syzkaller", 0 [pid 7152] <... close resumed>) = 0 [pid 7155] <... write resumed>) = 4 [pid 7155] close(3 [pid 7153] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7152] mkdir("./file0", 0777 [pid 7155] <... close resumed>) = 0 [pid 7153] <... openat resumed>) = 4 [pid 7155] symlink("/dev/binderfs", "./binderfs" [pid 7156] <... memfd_create resumed>) = 3 [pid 7153] ioctl(4, LOOP_SET_FD, 3 [pid 7152] <... mkdir resumed>) = 0 [pid 7151] close(3 [pid 7155] <... symlink resumed>) = 0 [pid 7156] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7153] <... ioctl resumed>) = 0 [pid 7152] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7151] <... close resumed>) = 0 [pid 7155] memfd_create("syzkaller", 0 [pid 7156] <... mmap resumed>) = 0x7ff0df171000 [pid 7151] mkdir("./file0", 0777) = 0 [ 289.154973][ T7151] loop1: detected capacity change from 0 to 4096 [ 289.164623][ T7152] loop4: detected capacity change from 0 to 4096 [ 289.183591][ T7153] loop5: detected capacity change from 0 to 4096 [pid 7155] <... memfd_create resumed>) = 3 [pid 7151] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7155] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7153] close(3) = 0 [pid 7153] mkdir("./file0", 0777) = 0 [pid 7153] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7154] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7152] <... mount resumed>) = 0 [pid 7152] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7152] chdir("./file0") = 0 [ 289.201513][ T7152] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 289.213134][ T7151] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 289.233110][ T7153] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7152] ioctl(4, LOOP_CLR_FD) = 0 [pid 7156] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7152] close(4) = 0 [pid 7155] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7152] exit_group(0) = ? [pid 7152] +++ exited with 0 +++ [pid 7154] <... write resumed>) = 2097152 [pid 7154] munmap(0x7ff0df171000, 138412032 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7152, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 7154] <... munmap resumed>) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 7151] <... mount resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 7151] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5033] umount2("./344", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./344", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7151] chdir("./file0" [pid 5033] <... openat resumed>) = 3 [pid 7151] <... chdir resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 7151] ioctl(4, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7151] <... ioctl resumed>) = 0 [pid 5033] getdents64(3, [pid 7151] close(4) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7151] exit_group(0) = ? [pid 7154] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7151] +++ exited with 0 +++ [pid 5033] umount2("./344/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./344/binderfs", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7151, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7154] <... openat resumed>) = 4 [pid 5033] unlink("./344/binderfs" [pid 5030] umount2("./352", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./352", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7154] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./352/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./352/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./352/binderfs") = 0 [pid 5030] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7153] <... mount resumed>) = 0 [pid 7153] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7153] chdir("./file0") = 0 [pid 7153] ioctl(4, LOOP_CLR_FD) = 0 [pid 7153] close(4) = 0 [pid 7153] exit_group(0) = ? [pid 7156] <... write resumed>) = 2097152 [pid 7153] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7153, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] umount2("./345", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./345", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 7154] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 7154] close(3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./345/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7154] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7154] mkdir("./file0", 0777 [pid 5034] newfstatat(AT_FDCWD, "./345/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./345/binderfs") = 0 [pid 7154] <... mkdir resumed>) = 0 [pid 5034] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7154] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7156] munmap(0x7ff0df171000, 138412032) = 0 [pid 7156] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 289.344472][ T7154] loop3: detected capacity change from 0 to 4096 [pid 7156] ioctl(4, LOOP_SET_FD, 3 [pid 7155] <... write resumed>) = 2097152 [pid 7155] munmap(0x7ff0df171000, 138412032) = 0 [pid 7155] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 7155] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./352/file0", [pid 5034] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./345/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./345/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7156] <... ioctl resumed>) = 0 [pid 7156] close(3 [pid 5034] close(4 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./352/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7155] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 7155] close(3 [pid 7156] <... close resumed>) = 0 [pid 5034] rmdir("./345/file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7155] <... close resumed>) = 0 [pid 7156] mkdir("./file0", 0777 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, [pid 7155] mkdir("./file0", 0777 [pid 7156] <... mkdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5033] newfstatat(AT_FDCWD, "./344/file0", [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7155] <... mkdir resumed>) = 0 [ 289.392306][ T7154] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 289.395854][ T7156] loop0: detected capacity change from 0 to 4096 [ 289.420863][ T7155] loop2: detected capacity change from 0 to 4096 [pid 7156] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(4, [pid 7155] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./344/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7154] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(4 [pid 7154] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] openat(AT_FDCWD, "./344/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 7154] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5030] rmdir("./352/file0" [pid 7154] chdir("./file0" [pid 5033] newfstatat(4, "", [pid 7154] <... chdir resumed>) = 0 [pid 7154] ioctl(4, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7154] <... ioctl resumed>) = 0 [pid 5034] rmdir("./345" [pid 5033] getdents64(4, [pid 5030] <... rmdir resumed>) = 0 [pid 7154] close(4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(3, [pid 7154] <... close resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 7154] exit_group(0) = ? [pid 7154] +++ exited with 0 +++ [pid 5034] mkdir("./346", 0777 [pid 5033] getdents64(4, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7154, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./352") = 0 [pid 5032] umount2("./353", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./353", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./353", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... openat resumed>) = 3 [pid 5032] getdents64(3, [pid 5030] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... close resumed>) = 0 [pid 5032] umount2("./353/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] close(3 [pid 5033] rmdir("./344/file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 289.466665][ T7156] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 289.490228][ T7155] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(AT_FDCWD, "./353/binderfs", [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 7158 attached ./strace-static-x86_64: Process 7157 attached [pid 5033] getdents64(3, [pid 5032] unlink("./353/binderfs") = 0 [pid 7157] set_robust_list(0x55555635e660, 24 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7158] set_robust_list(0x55555635e660, 24 [pid 7157] <... set_robust_list resumed>) = 0 [pid 5033] close(3 [pid 7158] <... set_robust_list resumed>) = 0 [pid 7157] chdir("./346" [pid 5033] <... close resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7158 [pid 7158] chdir("./353" [pid 5033] rmdir("./344" [pid 7158] <... chdir resumed>) = 0 [pid 7157] <... chdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7158] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7157] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7158] <... prctl resumed>) = 0 [pid 7157] setpgid(0, 0 [pid 7158] setpgid(0, 0) = 0 [pid 7157] <... setpgid resumed>) = 0 [pid 5033] mkdir("./345", 0777 [pid 7158] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7157] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7157 [pid 5033] <... mkdir resumed>) = 0 [pid 7158] <... openat resumed>) = 3 [pid 7157] <... openat resumed>) = 3 [pid 7158] write(3, "1000", 4 [pid 7157] write(3, "1000", 4 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7158] <... write resumed>) = 4 [pid 7158] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7158] <... close resumed>) = 0 [pid 7158] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 7158] <... symlink resumed>) = 0 [pid 7157] <... write resumed>) = 4 [pid 7156] <... mount resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7158] memfd_create("syzkaller", 0 [pid 7157] close(3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7157] <... close resumed>) = 0 [pid 7156] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7157] symlink("/dev/binderfs", "./binderfs" [pid 7156] chdir("./file0" [pid 7157] <... symlink resumed>) = 0 [pid 7156] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 7159 attached [pid 7158] <... memfd_create resumed>) = 3 [pid 7156] ioctl(4, LOOP_CLR_FD [pid 7159] set_robust_list(0x55555635e660, 24 [pid 7158] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7156] <... ioctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7159 [pid 7159] <... set_robust_list resumed>) = 0 [pid 7158] <... mmap resumed>) = 0x7ff0df171000 [pid 7157] memfd_create("syzkaller", 0 [pid 7156] close(4 [pid 7155] <... mount resumed>) = 0 [pid 7155] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7156] <... close resumed>) = 0 [pid 7159] chdir("./345" [pid 7155] <... openat resumed>) = 3 [pid 7156] exit_group(0 [pid 7159] <... chdir resumed>) = 0 [pid 7157] <... memfd_create resumed>) = 3 [pid 7155] chdir("./file0" [pid 7156] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = 0 [pid 7159] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7157] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7155] <... chdir resumed>) = 0 [pid 7156] +++ exited with 0 +++ [pid 5032] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7159] <... prctl resumed>) = 0 [pid 7157] <... mmap resumed>) = 0x7ff0df171000 [pid 7155] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7159] setpgid(0, 0 [pid 7155] <... ioctl resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7156, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5029] umount2("./351", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./351", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 7155] close(4 [pid 5032] newfstatat(AT_FDCWD, "./353/file0", [pid 7155] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 7155] exit_group(0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7159] <... setpgid resumed>) = 0 [pid 5029] umount2("./351/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7155] <... exit_group resumed>) = ? [pid 5032] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7159] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7159] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./351/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./351/binderfs" [pid 7159] write(3, "1000", 4 [pid 5029] <... unlink resumed>) = 0 [pid 7155] +++ exited with 0 +++ [pid 7159] <... write resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7155, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5029] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7159] close(3 [pid 5032] openat(AT_FDCWD, "./353/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7159] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 7159] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7159] memfd_create("syzkaller", 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5031] umount2("./351", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./351", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7159] <... memfd_create resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(3, "", [pid 7159] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7159] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] close(4 [pid 5031] umount2("./351/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./351/binderfs", [pid 5032] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./351/binderfs" [pid 5032] rmdir("./353/file0" [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./353") = 0 [pid 5032] mkdir("./354", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7158] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./351/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7160 attached [pid 7157] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7160] set_robust_list(0x55555635e660, 24 [pid 5031] openat(AT_FDCWD, "./351/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7160] <... set_robust_list resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7160 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 7160] chdir("./354" [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 5029] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7160] <... chdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7160] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] close(4) = 0 [pid 5031] rmdir("./351/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3) = 0 [pid 5029] newfstatat(AT_FDCWD, "./351/file0", [pid 5031] rmdir("./351") = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./352", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7160] <... prctl resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./351/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 7160] setpgid(0, 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7160] <... setpgid resumed>) = 0 [pid 7159] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] getdents64(4, [pid 7160] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7160] <... openat resumed>) = 3 [pid 5031] <... ioctl resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7160] write(3, "1000", 4) = 4 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7161 ./strace-static-x86_64: Process 7161 attached [pid 7160] close(3 [pid 5029] getdents64(4, [pid 7161] set_robust_list(0x55555635e660, 24 [pid 7160] <... close resumed>) = 0 [pid 7158] <... write resumed>) = 2097152 [pid 7161] <... set_robust_list resumed>) = 0 [pid 7160] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7161] chdir("./352") = 0 [pid 7160] <... symlink resumed>) = 0 [pid 5029] close(4 [pid 7161] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] <... close resumed>) = 0 [pid 7161] setpgid(0, 0) = 0 [pid 5029] rmdir("./351/file0" [pid 7161] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7160] memfd_create("syzkaller", 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7161] <... openat resumed>) = 3 [pid 7161] write(3, "1000", 4) = 4 [pid 7161] close(3) = 0 [pid 7161] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7160] <... memfd_create resumed>) = 3 [pid 7161] memfd_create("syzkaller", 0 [pid 7158] munmap(0x7ff0df171000, 138412032 [pid 7160] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7158] <... munmap resumed>) = 0 [pid 7160] <... mmap resumed>) = 0x7ff0df171000 [pid 7161] <... memfd_create resumed>) = 3 [pid 5029] getdents64(3, [pid 7161] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7161] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] close(3 [pid 7159] <... write resumed>) = 2097152 [pid 7158] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 7158] <... openat resumed>) = 4 [pid 5029] rmdir("./351" [pid 7157] <... write resumed>) = 2097152 [pid 5029] <... rmdir resumed>) = 0 [pid 7158] ioctl(4, LOOP_SET_FD, 3 [pid 5029] mkdir("./352", 0777 [pid 7157] munmap(0x7ff0df171000, 138412032 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7157] <... munmap resumed>) = 0 ./strace-static-x86_64: Process 7162 attached [pid 7159] munmap(0x7ff0df171000, 138412032 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7162 [pid 7162] set_robust_list(0x55555635e660, 24) = 0 [pid 7162] chdir("./352") = 0 [pid 7159] <... munmap resumed>) = 0 [pid 7162] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7162] setpgid(0, 0) = 0 [pid 7162] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7162] write(3, "1000", 4 [pid 7159] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7162] <... write resumed>) = 4 [pid 7159] <... openat resumed>) = 4 [pid 7162] close(3 [pid 7159] ioctl(4, LOOP_SET_FD, 3 [pid 7162] <... close resumed>) = 0 [pid 7157] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7162] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7157] <... openat resumed>) = 4 [pid 7157] ioctl(4, LOOP_SET_FD, 3 [pid 7162] memfd_create("syzkaller", 0 [pid 7158] <... ioctl resumed>) = 0 [pid 7158] close(3) = 0 [pid 7158] mkdir("./file0", 0777) = 0 [pid 7162] <... memfd_create resumed>) = 3 [pid 7162] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7158] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7160] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7157] <... ioctl resumed>) = 0 [pid 7157] close(3) = 0 [ 289.811209][ T7158] loop1: detected capacity change from 0 to 4096 [ 289.839531][ T7159] loop4: detected capacity change from 0 to 4096 [ 289.848626][ T7157] loop5: detected capacity change from 0 to 4096 [pid 7157] mkdir("./file0", 0777) = 0 [pid 7157] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7159] <... ioctl resumed>) = 0 [pid 7159] close(3) = 0 [pid 7159] mkdir("./file0", 0777) = 0 [pid 7159] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7161] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7160] <... write resumed>) = 2097152 [pid 7160] munmap(0x7ff0df171000, 138412032) = 0 [pid 7160] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 289.885851][ T7158] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 289.903094][ T7157] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 289.903679][ T7159] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7160] ioctl(4, LOOP_SET_FD, 3 [pid 7158] <... mount resumed>) = 0 [pid 7158] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7158] chdir("./file0") = 0 [pid 7158] ioctl(4, LOOP_CLR_FD) = 0 [pid 7158] close(4) = 0 [pid 7158] exit_group(0) = ? [pid 7158] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7158, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7160] <... ioctl resumed>) = 0 [pid 5030] umount2("./353", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7160] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7160] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./353", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7160] mkdir("./file0", 0777 [pid 5030] <... openat resumed>) = 3 [pid 7160] <... mkdir resumed>) = 0 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 7161] <... write resumed>) = 2097152 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7162] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] umount2("./353/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./353/binderfs", [pid 7161] munmap(0x7ff0df171000, 138412032 [pid 7157] <... mount resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./353/binderfs" [pid 7160] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 289.951444][ T7160] loop3: detected capacity change from 0 to 4096 [pid 7157] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 7161] <... munmap resumed>) = 0 [pid 7157] <... openat resumed>) = 3 [pid 5030] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7159] <... mount resumed>) = 0 [pid 7157] chdir("./file0" [pid 7161] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7159] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7157] <... chdir resumed>) = 0 [pid 7161] <... openat resumed>) = 4 [pid 7159] <... openat resumed>) = 3 [pid 7157] ioctl(4, LOOP_CLR_FD [pid 7161] ioctl(4, LOOP_SET_FD, 3 [pid 7159] chdir("./file0" [pid 7157] <... ioctl resumed>) = 0 [pid 7159] <... chdir resumed>) = 0 [pid 7159] ioctl(4, LOOP_CLR_FD) = 0 [pid 7159] close(4) = 0 [pid 7157] close(4) = 0 [pid 7159] exit_group(0 [pid 7157] exit_group(0 [pid 5030] <... umount2 resumed>) = 0 [pid 7161] <... ioctl resumed>) = 0 [pid 7157] <... exit_group resumed>) = ? [pid 7159] <... exit_group resumed>) = ? [pid 5030] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7157] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./353/file0", [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7157, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5030] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... restart_syscall resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./353/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7161] close(3) = 0 [pid 5030] <... openat resumed>) = 4 [pid 7161] mkdir("./file0", 0777 [pid 7159] +++ exited with 0 +++ [pid 5030] newfstatat(4, "", [pid 5034] umount2("./346", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7159, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 5030] getdents64(4, [pid 7161] <... mkdir resumed>) = 0 [pid 5033] umount2("./345", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7161] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 289.996296][ T7160] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 290.018735][ T7161] loop2: detected capacity change from 0 to 4096 [pid 5030] getdents64(4, [pid 7162] <... write resumed>) = 2097152 [pid 5034] openat(AT_FDCWD, "./346", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] openat(AT_FDCWD, "./345", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./353/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./353") = 0 [pid 5030] mkdir("./354", 0777 [pid 5033] <... openat resumed>) = 3 [pid 7162] munmap(0x7ff0df171000, 138412032 [pid 5034] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7162] <... munmap resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7162] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7160] <... mount resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5030] close(3 [pid 7160] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] getdents64(3, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7162] <... openat resumed>) = 4 [pid 7160] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./345/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7163 attached , child_tidptr=0x55555635e650) = 7163 [pid 7163] set_robust_list(0x55555635e660, 24) = 0 [pid 7163] chdir("./354" [pid 7162] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./346/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./345/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7163] <... chdir resumed>) = 0 [pid 7163] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7163] setpgid(0, 0) = 0 [pid 7163] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7163] write(3, "1000", 4) = 4 [pid 7163] close(3) = 0 [pid 7163] symlink("/dev/binderfs", "./binderfs" [pid 5034] newfstatat(AT_FDCWD, "./346/binderfs", [pid 5033] unlink("./345/binderfs" [pid 7163] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7163] memfd_create("syzkaller", 0 [pid 7160] chdir("./file0" [pid 5034] unlink("./346/binderfs" [pid 5033] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7161] <... mount resumed>) = 0 [pid 7160] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 7163] <... memfd_create resumed>) = 3 [pid 7161] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7160] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7163] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7160] <... ioctl resumed>) = 0 [pid 7161] <... openat resumed>) = 3 [pid 7160] close(4 [pid 7161] chdir("./file0" [pid 7160] <... close resumed>) = 0 [ 290.055872][ T7161] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 290.094907][ T7162] loop0: detected capacity change from 0 to 4096 [pid 7162] <... ioctl resumed>) = 0 [pid 7161] <... chdir resumed>) = 0 [pid 7160] exit_group(0 [pid 5033] <... umount2 resumed>) = 0 [pid 7162] close(3 [pid 7161] ioctl(4, LOOP_CLR_FD [pid 7160] <... exit_group resumed>) = ? [pid 5033] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7160] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7160, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7161] <... ioctl resumed>) = 0 [pid 5032] umount2("./354", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./345/file0", [pid 7161] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7161] <... close resumed>) = 0 [pid 5033] umount2("./345/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./354", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "./345/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(3, "", [pid 5033] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5033] getdents64(4, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] umount2("./354/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7162] <... close resumed>) = 0 [pid 7161] exit_group(0 [pid 5033] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7162] mkdir("./file0", 0777 [pid 5032] newfstatat(AT_FDCWD, "./354/binderfs", [pid 5033] close(4 [pid 7162] <... mkdir resumed>) = 0 [pid 7161] <... exit_group resumed>) = ? [pid 5033] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] rmdir("./345/file0" [pid 5032] unlink("./354/binderfs") = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./345") = 0 [pid 5033] mkdir("./346", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 7162] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7161] +++ exited with 0 +++ [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7161, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] umount2("./352", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./352", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7163] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./352/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./352/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./352/binderfs") = 0 [pid 5031] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7164 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7164 [pid 7164] set_robust_list(0x55555635e660, 24) = 0 [pid 7164] chdir("./346") = 0 [pid 7164] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 290.196049][ T7162] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7164] setpgid(0, 0) = 0 [pid 7164] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7164] write(3, "1000", 4 [pid 7163] <... write resumed>) = 2097152 [pid 7162] <... mount resumed>) = 0 [pid 7164] <... write resumed>) = 4 [pid 7162] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7162] chdir("./file0") = 0 [pid 7162] ioctl(4, LOOP_CLR_FD) = 0 [pid 7162] close(4) = 0 [pid 7162] exit_group(0 [pid 7164] close(3 [pid 7162] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = 0 [pid 7164] <... close resumed>) = 0 [pid 7164] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7164] memfd_create("syzkaller", 0 [pid 7162] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7162, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5032] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = 0 [pid 7164] <... memfd_create resumed>) = 3 [pid 7163] munmap(0x7ff0df171000, 138412032 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7164] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] umount2("./352", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./352", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 7164] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] newfstatat(AT_FDCWD, "./354/file0", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./352/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./352/binderfs", [pid 5032] openat(AT_FDCWD, "./354/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5029] unlink("./352/binderfs" [pid 5032] newfstatat(4, "", [pid 5029] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7163] <... munmap resumed>) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 5031] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(4 [pid 5031] newfstatat(AT_FDCWD, "./352/file0", [pid 5032] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] rmdir("./354/file0" [pid 5031] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./352/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(3, [pid 5031] getdents64(4, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5031] close(4 [pid 5032] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 7163] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... umount2 resumed>) = 0 [pid 5032] rmdir("./354" [pid 5031] rmdir("./352/file0" [pid 7163] <... openat resumed>) = 4 [pid 5034] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 7163] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] mkdir("./355", 0777) = 0 [pid 5034] newfstatat(AT_FDCWD, "./346/file0", [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] rmdir("./352" [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] mkdir("./353", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 7165 attached [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7165] set_robust_list(0x55555635e660, 24 [pid 5031] <... openat resumed>) = 3 [pid 7165] <... set_robust_list resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7165] chdir("./355" [pid 5034] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7165 [pid 7165] <... chdir resumed>) = 0 [pid 5031] close(3 [pid 7165] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... close resumed>) = 0 [pid 7165] <... prctl resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7165] setpgid(0, 0./strace-static-x86_64: Process 7166 attached ) = 0 [pid 7164] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7165] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./346/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7166] set_robust_list(0x55555635e660, 24 [pid 7165] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7166 [pid 7166] <... set_robust_list resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 7166] chdir("./353" [pid 7163] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 290.325479][ T7163] loop1: detected capacity change from 0 to 4096 [pid 7166] <... chdir resumed>) = 0 [pid 5034] getdents64(4, [pid 5029] <... umount2 resumed>) = 0 [pid 7166] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7165] write(3, "1000", 4 [pid 7163] close(3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7163] <... close resumed>) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7163] mkdir("./file0", 0777 [pid 5034] close(4 [pid 7166] <... prctl resumed>) = 0 [pid 7165] <... write resumed>) = 4 [pid 5034] <... close resumed>) = 0 [pid 7166] setpgid(0, 0 [pid 7165] close(3 [pid 5034] rmdir("./346/file0" [pid 7166] <... setpgid resumed>) = 0 [pid 7165] <... close resumed>) = 0 [pid 7165] symlink("/dev/binderfs", "./binderfs" [pid 7163] <... mkdir resumed>) = 0 [pid 7165] <... symlink resumed>) = 0 [pid 7163] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [pid 7165] memfd_create("syzkaller", 0 [pid 7166] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7166] write(3, "1000", 4) = 4 [pid 7166] close(3) = 0 [pid 7166] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7166] memfd_create("syzkaller", 0 [pid 7165] <... memfd_create resumed>) = 3 [pid 7165] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./352/file0", [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./346" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7166] <... memfd_create resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./352/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7166] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... openat resumed>) = 4 [pid 7166] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 5034] mkdir("./347", 0777 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 5034] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./352/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./352") = 0 [ 290.376281][ T7163] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5029] mkdir("./353", 0777 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7167 ./strace-static-x86_64: Process 7167 attached [pid 7167] set_robust_list(0x55555635e660, 24 [pid 5029] <... mkdir resumed>) = 0 [pid 7164] <... write resumed>) = 2097152 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 7167] <... set_robust_list resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7167] chdir("./347" [pid 7164] munmap(0x7ff0df171000, 138412032 [pid 7167] <... chdir resumed>) = 0 [pid 7167] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7164] <... munmap resumed>) = 0 [pid 7163] <... mount resumed>) = 0 [pid 7164] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7163] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7168 [pid 7165] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7164] <... openat resumed>) = 4 [pid 7163] <... openat resumed>) = 3 [pid 7167] setpgid(0, 0 [pid 7166] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7167] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 7168 attached [pid 7167] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7164] ioctl(4, LOOP_SET_FD, 3 [pid 7163] chdir("./file0" [pid 7168] set_robust_list(0x55555635e660, 24 [pid 7167] <... openat resumed>) = 3 [pid 7168] <... set_robust_list resumed>) = 0 [pid 7167] write(3, "1000", 4 [pid 7168] chdir("./353" [pid 7167] <... write resumed>) = 4 [pid 7167] close(3 [pid 7168] <... chdir resumed>) = 0 [pid 7167] <... close resumed>) = 0 [pid 7168] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7167] symlink("/dev/binderfs", "./binderfs" [pid 7168] setpgid(0, 0 [pid 7167] <... symlink resumed>) = 0 [pid 7168] <... setpgid resumed>) = 0 [pid 7168] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7168] write(3, "1000", 4) = 4 [pid 7168] close(3) = 0 [pid 7167] memfd_create("syzkaller", 0 [pid 7163] <... chdir resumed>) = 0 [pid 7168] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7163] ioctl(4, LOOP_CLR_FD [pid 7168] memfd_create("syzkaller", 0 [pid 7163] <... ioctl resumed>) = 0 [pid 7163] close(4 [pid 7167] <... memfd_create resumed>) = 3 [pid 7163] <... close resumed>) = 0 [pid 7167] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7163] exit_group(0) = ? [pid 7168] <... memfd_create resumed>) = 3 [pid 7168] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7163] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7163, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] umount2("./354", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7164] <... ioctl resumed>) = 0 [pid 7165] <... write resumed>) = 2097152 [pid 7164] close(3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7164] <... close resumed>) = 0 [pid 7164] mkdir("./file0", 0777 [pid 5030] openat(AT_FDCWD, "./354", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7166] <... write resumed>) = 2097152 [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", [pid 7166] munmap(0x7ff0df171000, 138412032 [pid 7165] munmap(0x7ff0df171000, 138412032 [pid 7164] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./354/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7164] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] newfstatat(AT_FDCWD, "./354/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 290.491617][ T7164] loop4: detected capacity change from 0 to 4096 [pid 5030] unlink("./354/binderfs") = 0 [pid 5030] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7166] <... munmap resumed>) = 0 [pid 7165] <... munmap resumed>) = 0 [pid 7166] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7165] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7166] <... openat resumed>) = 4 [ 290.550278][ T7164] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7166] ioctl(4, LOOP_SET_FD, 3 [pid 7165] <... openat resumed>) = 4 [pid 7165] ioctl(4, LOOP_SET_FD, 3 [pid 7167] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... umount2 resumed>) = 0 [pid 7166] <... ioctl resumed>) = 0 [pid 7165] <... ioctl resumed>) = 0 [pid 5030] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7166] close(3 [pid 7165] close(3 [pid 7166] <... close resumed>) = 0 [pid 7166] mkdir("./file0", 0777) = 0 [pid 7166] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7165] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7165] mkdir("./file0", 0777 [pid 5030] newfstatat(AT_FDCWD, "./354/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7168] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7165] <... mkdir resumed>) = 0 [pid 7165] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 290.595751][ T7165] loop3: detected capacity change from 0 to 4096 [ 290.605092][ T7166] loop2: detected capacity change from 0 to 4096 [ 290.628992][ T7166] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./354/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7164] <... mount resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 7164] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5030] newfstatat(4, "", [pid 7164] chdir("./file0") = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 290.642027][ T7165] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7164] ioctl(4, LOOP_CLR_FD [pid 7167] <... write resumed>) = 2097152 [pid 5030] getdents64(4, [pid 7164] <... ioctl resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./354/file0" [pid 7167] munmap(0x7ff0df171000, 138412032 [pid 7164] close(4) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./354" [pid 7164] exit_group(0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./355", 0777 [pid 7167] <... munmap resumed>) = 0 [pid 7164] <... exit_group resumed>) = ? [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7167] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7164] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7164, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7169 [pid 5033] umount2("./346", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./346", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7169 attached [pid 7167] <... openat resumed>) = 4 [pid 5033] <... openat resumed>) = 3 [pid 7169] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(3, "", [pid 7169] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7169] chdir("./355" [pid 5033] getdents64(3, [pid 7169] <... chdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7169] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] umount2("./346/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7169] <... prctl resumed>) = 0 [pid 7169] setpgid(0, 0 [pid 7167] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7168] <... write resumed>) = 2097152 [pid 7169] <... setpgid resumed>) = 0 [pid 7169] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7169] write(3, "1000", 4) = 4 [pid 7169] close(3) = 0 [pid 7169] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7168] munmap(0x7ff0df171000, 138412032 [pid 7167] <... ioctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./346/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./346/binderfs" [pid 7167] close(3 [pid 5033] <... unlink resumed>) = 0 [pid 7169] memfd_create("syzkaller", 0 [pid 7168] <... munmap resumed>) = 0 [pid 7167] <... close resumed>) = 0 [pid 5033] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7166] <... mount resumed>) = 0 [pid 7169] <... memfd_create resumed>) = 3 [pid 7166] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7169] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7167] mkdir("./file0", 0777 [pid 7166] <... openat resumed>) = 3 [pid 7169] <... mmap resumed>) = 0x7ff0df171000 [pid 7167] <... mkdir resumed>) = 0 [pid 7166] chdir("./file0" [pid 7168] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7167] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7168] <... openat resumed>) = 4 [pid 7166] <... chdir resumed>) = 0 [pid 7168] ioctl(4, LOOP_SET_FD, 3 [pid 7166] ioctl(4, LOOP_CLR_FD) = 0 [pid 7166] close(4) = 0 [pid 7166] exit_group(0) = ? [pid 7166] +++ exited with 0 +++ [pid 7165] <... mount resumed>) = 0 [pid 7165] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7166, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 7165] <... openat resumed>) = 3 [pid 7165] chdir("./file0") = 0 [pid 5031] umount2("./353", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7168] <... ioctl resumed>) = 0 [pid 7165] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7168] close(3 [pid 7165] <... ioctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./353", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7168] <... close resumed>) = 0 [pid 7165] close(4 [pid 5031] <... openat resumed>) = 3 [pid 7168] mkdir("./file0", 0777 [pid 7165] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 7168] <... mkdir resumed>) = 0 [pid 7165] exit_group(0 [pid 5033] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7168] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7165] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 290.716570][ T7167] loop5: detected capacity change from 0 to 4096 [ 290.748408][ T7168] loop0: detected capacity change from 0 to 4096 [ 290.756016][ T7167] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(3, [pid 7165] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./346/file0", [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./353/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7165, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./346/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./353/binderfs", [pid 5033] openat(AT_FDCWD, "./346/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./355", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7169] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... openat resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(4, "", [pid 5032] openat(AT_FDCWD, "./355", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] unlink("./353/binderfs" [pid 5033] getdents64(4, [pid 5031] <... unlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 5032] newfstatat(3, "", [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./346/file0" [pid 5032] getdents64(3, [pid 5033] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./355/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./355/binderfs", [pid 5033] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] unlink("./355/binderfs" [pid 5033] rmdir("./346" [pid 5032] <... unlink resumed>) = 0 [pid 7167] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 290.791730][ T7168] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7167] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] mkdir("./347", 0777 [pid 7167] <... openat resumed>) = 3 [pid 5033] <... mkdir resumed>) = 0 [pid 7169] <... write resumed>) = 2097152 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7167] chdir("./file0") = 0 [pid 7167] ioctl(4, LOOP_CLR_FD) = 0 [pid 7167] close(4) = 0 [pid 7167] exit_group(0) = ? [pid 7167] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7167, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5034] umount2("./347", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./347", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./347/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./347/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./347/binderfs") = 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7169] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 7169] <... munmap resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7170 attached [pid 7170] set_robust_list(0x55555635e660, 24) = 0 [pid 7170] chdir("./347" [pid 7169] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7170 [pid 5032] <... umount2 resumed>) = 0 [pid 7168] <... mount resumed>) = 0 [pid 7168] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7168] chdir("./file0" [pid 7169] <... openat resumed>) = 4 [pid 7170] <... chdir resumed>) = 0 [pid 7169] ioctl(4, LOOP_SET_FD, 3 [pid 7168] <... chdir resumed>) = 0 [pid 7168] ioctl(4, LOOP_CLR_FD [pid 5031] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7168] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7168] close(4 [pid 5031] newfstatat(AT_FDCWD, "./353/file0", [pid 7168] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7168] exit_group(0 [pid 5031] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7168] <... exit_group resumed>) = ? [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7170] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7168] +++ exited with 0 +++ [pid 5031] openat(AT_FDCWD, "./353/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7170] <... prctl resumed>) = 0 [pid 7170] setpgid(0, 0 [pid 5031] <... openat resumed>) = 4 [pid 7170] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7168, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 7170] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5029] umount2("./353", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7170] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7170] write(3, "1000", 4 [pid 5031] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7170] <... write resumed>) = 4 [pid 5031] close(4 [pid 5029] openat(AT_FDCWD, "./353", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./353/file0" [pid 5034] newfstatat(AT_FDCWD, "./347/file0", [pid 5031] <... rmdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7170] close(3 [pid 5034] openat(AT_FDCWD, "./347/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5031] close(3 [pid 7170] <... close resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5031] <... close resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./353" [pid 7170] symlink("/dev/binderfs", "./binderfs" [pid 7169] <... ioctl resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] newfstatat(AT_FDCWD, "./355/file0", [pid 7170] <... symlink resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] mkdir("./354", 0777 [pid 5029] getdents64(3, [pid 7169] close(3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7170] memfd_create("syzkaller", 0 [pid 5032] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7170] <... memfd_create resumed>) = 3 [pid 7169] <... close resumed>) = 0 [pid 5034] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./353/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7170] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7169] mkdir("./file0", 0777 [pid 5034] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./355/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7170] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] rmdir("./347/file0" [pid 5032] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7169] <... mkdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5031] <... openat resumed>) = 3 [pid 5034] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] getdents64(4, [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5034] close(3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] rmdir("./347" [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] close(4 [pid 5034] mkdir("./348", 0777 [pid 5032] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] rmdir("./355/file0" [pid 5029] newfstatat(AT_FDCWD, "./353/binderfs", [pid 7169] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [ 290.928546][ T7169] loop1: detected capacity change from 0 to 4096 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 7171 attached [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] unlink("./353/binderfs" [pid 5032] close(3 [pid 7171] set_robust_list(0x55555635e660, 24 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 7171] <... set_robust_list resumed>) = 0 [pid 5032] rmdir("./355" [pid 7171] chdir("./354" [pid 5032] <... rmdir resumed>) = 0 [pid 7171] <... chdir resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7171] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] mkdir("./356", 0777 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7171 [pid 7171] <... prctl resumed>) = 0 [pid 5034] close(3 [pid 5032] <... mkdir resumed>) = 0 [pid 7171] setpgid(0, 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7171] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 7172 attached [pid 7171] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7172 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... unlink resumed>) = 0 [pid 7172] set_robust_list(0x55555635e660, 24 [pid 7171] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5029] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7172] <... set_robust_list resumed>) = 0 [pid 7171] write(3, "1000", 4 [pid 7172] chdir("./348" [pid 7171] <... write resumed>) = 4 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7172] <... chdir resumed>) = 0 [pid 7171] close(3 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7172] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7171] <... close resumed>) = 0 [pid 7172] <... prctl resumed>) = 0 [pid 7171] symlink("/dev/binderfs", "./binderfs" [pid 5032] close(3) = 0 [pid 7172] setpgid(0, 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7172] <... setpgid resumed>) = 0 [pid 7171] <... symlink resumed>) = 0 ./strace-static-x86_64: Process 7173 attached [pid 7172] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7173] set_robust_list(0x55555635e660, 24 [pid 7172] <... openat resumed>) = 3 [pid 7171] memfd_create("syzkaller", 0 [pid 7173] <... set_robust_list resumed>) = 0 [pid 7172] write(3, "1000", 4 [pid 7173] chdir("./356" [pid 7172] <... write resumed>) = 4 [pid 7173] <... chdir resumed>) = 0 [pid 7172] close(3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7173 [pid 7173] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7172] <... close resumed>) = 0 [pid 7173] <... prctl resumed>) = 0 [pid 7172] symlink("/dev/binderfs", "./binderfs" [pid 7171] <... memfd_create resumed>) = 3 [pid 7173] setpgid(0, 0 [pid 7172] <... symlink resumed>) = 0 [pid 7171] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7173] <... setpgid resumed>) = 0 [pid 7172] memfd_create("syzkaller", 0 [pid 7171] <... mmap resumed>) = 0x7ff0df171000 [pid 7173] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7173] write(3, "1000", 4) = 4 [pid 7173] close(3 [pid 7172] <... memfd_create resumed>) = 3 [pid 7173] <... close resumed>) = 0 [pid 7173] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7172] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 290.978716][ T7169] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7173] memfd_create("syzkaller", 0) = 3 [pid 7173] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7170] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7169] <... mount resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7169] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5029] newfstatat(AT_FDCWD, "./353/file0", [pid 7169] chdir("./file0") = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7172] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7169] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7169] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./353/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7173] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7171] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7169] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 7169] exit_group(0 [pid 5029] newfstatat(4, "", [pid 7169] <... exit_group resumed>) = ? [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7169] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7169, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, [pid 7170] <... write resumed>) = 2097152 [pid 5030] umount2("./355", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./355", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] close(4 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 7170] munmap(0x7ff0df171000, 138412032 [pid 5030] newfstatat(3, "", [pid 5029] rmdir("./353/file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./355/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./355/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./355/binderfs") = 0 [pid 5029] getdents64(3, [pid 5030] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7170] <... munmap resumed>) = 0 [pid 5029] close(3 [pid 7170] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5029] <... close resumed>) = 0 [pid 7170] ioctl(4, LOOP_SET_FD, 3 [pid 5029] rmdir("./353") = 0 [pid 5029] mkdir("./354", 0777 [pid 7170] <... ioctl resumed>) = 0 [pid 7170] close(3 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 7171] <... write resumed>) = 2097152 [pid 7170] <... close resumed>) = 0 [pid 5030] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7170] mkdir("./file0", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./355/file0", [pid 5029] <... openat resumed>) = 3 [pid 7171] munmap(0x7ff0df171000, 138412032 [pid 7170] <... mkdir resumed>) = 0 [pid 7170] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [ 291.190692][ T7170] loop4: detected capacity change from 0 to 4096 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7172] <... write resumed>) = 2097152 [pid 7171] <... munmap resumed>) = 0 [pid 7171] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] openat(AT_FDCWD, "./355/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7173] <... write resumed>) = 2097152 [pid 7171] <... openat resumed>) = 4 [pid 5029] close(3 [pid 7172] munmap(0x7ff0df171000, 138412032 [pid 5030] <... openat resumed>) = 4 [pid 5029] <... close resumed>) = 0 [pid 7172] <... munmap resumed>) = 0 [pid 7171] ioctl(4, LOOP_SET_FD, 3 [pid 5030] newfstatat(4, "", [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7174 attached [pid 7173] munmap(0x7ff0df171000, 138412032 [pid 5030] getdents64(4, [pid 7174] set_robust_list(0x55555635e660, 24) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7174 [pid 5030] getdents64(4, [pid 7174] chdir("./354" [pid 7173] <... munmap resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7174] <... chdir resumed>) = 0 [pid 5030] close(4 [pid 7172] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 7174] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] rmdir("./355/file0" [pid 7172] <... openat resumed>) = 4 [pid 7174] <... prctl resumed>) = 0 [pid 7172] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... rmdir resumed>) = 0 [pid 7174] setpgid(0, 0 [pid 5030] getdents64(3, [pid 7174] <... setpgid resumed>) = 0 [pid 7174] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7174] <... openat resumed>) = 3 [pid 7173] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] close(3 [pid 7173] <... openat resumed>) = 4 [pid 5030] <... close resumed>) = 0 [pid 7173] ioctl(4, LOOP_SET_FD, 3 [pid 5030] rmdir("./355" [pid 7174] write(3, "1000", 4 [pid 5030] <... rmdir resumed>) = 0 [pid 7171] <... ioctl resumed>) = 0 [pid 7171] close(3) = 0 [pid 7171] mkdir("./file0", 0777 [pid 7174] <... write resumed>) = 4 [pid 7171] <... mkdir resumed>) = 0 [pid 5030] mkdir("./356", 0777 [ 291.235147][ T7170] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 291.253825][ T7171] loop2: detected capacity change from 0 to 4096 [ 291.267924][ T7172] loop5: detected capacity change from 0 to 4096 [ 291.278572][ T7173] loop3: detected capacity change from 0 to 4096 [pid 7174] close(3 [pid 7172] <... ioctl resumed>) = 0 [pid 7171] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7174] <... close resumed>) = 0 [pid 7172] close(3 [pid 7174] symlink("/dev/binderfs", "./binderfs" [pid 7172] <... close resumed>) = 0 [pid 7170] <... mount resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 7174] <... symlink resumed>) = 0 [pid 7172] mkdir("./file0", 0777) = 0 [pid 7173] <... ioctl resumed>) = 0 [pid 7172] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7173] close(3) = 0 [pid 7173] mkdir("./file0", 0777) = 0 [pid 7173] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7174] memfd_create("syzkaller", 0) = 3 [pid 7170] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7174] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7170] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 7174] <... mmap resumed>) = 0x7ff0df171000 [pid 7170] chdir("./file0" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7170] <... chdir resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7170] ioctl(4, LOOP_CLR_FD) = 0 [pid 7170] close(4) = 0 [pid 7170] exit_group(0) = ? [pid 7170] +++ exited with 0 +++ [pid 5030] close(3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7170, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... close resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] umount2("./347", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./347", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./347/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7175 attached ) = -1 EINVAL (Invalid argument) [pid 7175] set_robust_list(0x55555635e660, 24 [pid 5033] newfstatat(AT_FDCWD, "./347/binderfs", [pid 7175] <... set_robust_list resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7175 [pid 7175] chdir("./356" [pid 5033] unlink("./347/binderfs" [pid 7175] <... chdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7175] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7175] <... prctl resumed>) = 0 [pid 7175] setpgid(0, 0) = 0 [ 291.292343][ T7171] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 291.313184][ T7173] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 291.322957][ T7172] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7175] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7175] write(3, "1000", 4) = 4 [pid 7175] close(3) = 0 [pid 7174] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7175] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7175] memfd_create("syzkaller", 0) = 3 [pid 7175] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7171] <... mount resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./347/file0", [pid 7171] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7173] <... mount resumed>) = 0 [pid 7171] <... openat resumed>) = 3 [pid 5033] umount2("./347/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./347/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7171] chdir("./file0" [pid 5033] <... openat resumed>) = 4 [pid 7173] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7171] <... chdir resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 7173] <... openat resumed>) = 3 [pid 7171] ioctl(4, LOOP_CLR_FD) = 0 [pid 7173] chdir("./file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7173] <... chdir resumed>) = 0 [pid 7171] close(4 [pid 7173] ioctl(4, LOOP_CLR_FD [pid 7171] <... close resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7171] exit_group(0 [pid 5033] getdents64(4, [pid 7173] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7173] close(4) = 0 [pid 5033] close(4) = 0 [pid 7171] <... exit_group resumed>) = ? [pid 5033] rmdir("./347/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./347" [pid 7173] exit_group(0) = ? [pid 7172] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./348", 0777 [pid 7171] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7171, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 7173] +++ exited with 0 +++ [pid 7172] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... restart_syscall resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7173, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./356", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./354", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./354", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7174] <... write resumed>) = 2097152 [pid 7172] <... openat resumed>) = 3 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./356", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5032] newfstatat(3, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 7172] chdir("./file0" [pid 5032] getdents64(3, [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7172] <... chdir resumed>) = 0 [pid 7175] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7174] munmap(0x7ff0df171000, 138412032 [pid 7172] ioctl(4, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./354/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7172] <... ioctl resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./356/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7172] close(4 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7172] <... close resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] newfstatat(AT_FDCWD, "./356/binderfs", [pid 5031] newfstatat(AT_FDCWD, "./354/binderfs", [pid 5033] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] unlink("./356/binderfs" [pid 5031] unlink("./354/binderfs" [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5032] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7174] <... munmap resumed>) = 0 [pid 7172] exit_group(0 [pid 5031] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 7176 attached [pid 5031] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7176] set_robust_list(0x55555635e660, 24 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7176] <... set_robust_list resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./354/file0", [pid 7176] chdir("./348" [pid 5032] <... umount2 resumed>) = 0 [pid 7172] <... exit_group resumed>) = ? [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7176] <... chdir resumed>) = 0 [pid 5031] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7176] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7176] <... prctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./354/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7176] setpgid(0, 0 [pid 7174] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7172] +++ exited with 0 +++ [pid 5031] <... openat resumed>) = 4 [pid 7176] <... setpgid resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7176 [pid 5032] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7176] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(4, "", [pid 7176] <... openat resumed>) = 3 [pid 7174] <... openat resumed>) = 4 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7172, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5032] newfstatat(AT_FDCWD, "./356/file0", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7174] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./348", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7176] write(3, "1000", 4 [pid 5031] close(4 [pid 7176] <... write resumed>) = 4 [pid 5031] <... close resumed>) = 0 [pid 7176] close(3 [pid 5031] rmdir("./354/file0" [pid 7176] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 7176] symlink("/dev/binderfs", "./binderfs" [pid 5031] getdents64(3, [pid 7176] <... symlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7176] memfd_create("syzkaller", 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./354" [pid 7174] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 7176] <... memfd_create resumed>) = 3 [pid 5031] mkdir("./355", 0777 [pid 7176] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] openat(AT_FDCWD, "./348", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... mkdir resumed>) = 0 [pid 7176] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./356/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7174] close(3 [pid 5034] newfstatat(3, "", [pid 5032] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 7174] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(4, "", [pid 5031] close(3 [pid 7174] mkdir("./file0", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7174] <... mkdir resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] getdents64(4, [pid 7174] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./348/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [ 291.534630][ T7174] loop0: detected capacity change from 0 to 4096 [pid 7175] <... write resumed>) = 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7177 ./strace-static-x86_64: Process 7177 attached [pid 7177] set_robust_list(0x55555635e660, 24) = 0 [pid 7177] chdir("./355") = 0 [pid 7177] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7175] munmap(0x7ff0df171000, 138412032 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5034] newfstatat(AT_FDCWD, "./348/binderfs", [pid 7177] setpgid(0, 0 [pid 7175] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... close resumed>) = 0 [pid 7177] <... setpgid resumed>) = 0 [pid 7177] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] unlink("./348/binderfs" [pid 5032] rmdir("./356/file0" [pid 7177] <... openat resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [pid 7177] write(3, "1000", 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5034] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7177] <... write resumed>) = 4 [pid 7177] close(3) = 0 [pid 7177] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 7175] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7177] memfd_create("syzkaller", 0 [pid 7175] <... openat resumed>) = 4 [pid 5032] <... close resumed>) = 0 [pid 7175] ioctl(4, LOOP_SET_FD, 3 [pid 5032] rmdir("./356") = 0 [pid 5032] mkdir("./357", 0777) = 0 [pid 7177] <... memfd_create resumed>) = 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7177] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... openat resumed>) = 3 [pid 7177] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7176] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152./strace-static-x86_64: Process 7178 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7178 [ 291.575851][ T7174] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 291.611901][ T7175] loop1: detected capacity change from 0 to 4096 [pid 7178] set_robust_list(0x55555635e660, 24 [pid 7175] <... ioctl resumed>) = 0 [pid 7178] <... set_robust_list resumed>) = 0 [pid 7175] close(3) = 0 [pid 7175] mkdir("./file0", 0777 [pid 7178] chdir("./357" [pid 7175] <... mkdir resumed>) = 0 [pid 7178] <... chdir resumed>) = 0 [pid 7175] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7178] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... umount2 resumed>) = 0 [pid 7178] <... prctl resumed>) = 0 [pid 7174] <... mount resumed>) = 0 [pid 5034] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7178] setpgid(0, 0 [pid 7174] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7178] <... setpgid resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./348/file0", [pid 7174] <... openat resumed>) = 3 [pid 7178] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7174] chdir("./file0" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7174] <... chdir resumed>) = 0 [pid 7178] <... openat resumed>) = 3 [pid 7174] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7178] write(3, "1000", 4 [pid 7174] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7178] <... write resumed>) = 4 [pid 7174] close(4 [pid 5034] openat(AT_FDCWD, "./348/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7178] close(3 [pid 7174] <... close resumed>) = 0 [pid 7178] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 7174] exit_group(0 [pid 5034] newfstatat(4, "", [pid 7174] <... exit_group resumed>) = ? [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 7174] +++ exited with 0 +++ [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7174, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 7178] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(4, [pid 7178] <... symlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./354", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./354", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] rmdir("./348/file0" [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./354/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./354/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./354/binderfs") = 0 [pid 5029] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 7178] memfd_create("syzkaller", 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7178] <... memfd_create resumed>) = 3 [pid 5034] close(3) = 0 [ 291.677481][ T7175] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7178] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] rmdir("./348" [pid 7178] <... mmap resumed>) = 0x7ff0df171000 [pid 7177] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7176] <... write resumed>) = 2097152 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./349", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7176] munmap(0x7ff0df171000, 138412032 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7179 attached [pid 7179] set_robust_list(0x55555635e660, 24 [pid 7176] <... munmap resumed>) = 0 [pid 7179] <... set_robust_list resumed>) = 0 [pid 7179] chdir("./349") = 0 [pid 7179] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7179] setpgid(0, 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7179 [pid 7179] <... setpgid resumed>) = 0 [pid 7179] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7176] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7179] write(3, "1000", 4 [pid 7176] <... openat resumed>) = 4 [pid 7175] <... mount resumed>) = 0 [pid 7179] <... write resumed>) = 4 [pid 7175] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7179] close(3 [pid 7175] <... openat resumed>) = 3 [pid 7179] <... close resumed>) = 0 [pid 7175] chdir("./file0" [pid 7179] symlink("/dev/binderfs", "./binderfs" [pid 7175] <... chdir resumed>) = 0 [pid 7176] ioctl(4, LOOP_SET_FD, 3 [pid 7179] <... symlink resumed>) = 0 [pid 7175] ioctl(4, LOOP_CLR_FD) = 0 [pid 7175] close(4) = 0 [pid 7179] memfd_create("syzkaller", 0 [pid 7176] <... ioctl resumed>) = 0 [pid 7175] exit_group(0 [pid 7176] close(3 [pid 7175] <... exit_group resumed>) = ? [pid 7176] <... close resumed>) = 0 [pid 7179] <... memfd_create resumed>) = 3 [pid 7176] mkdir("./file0", 0777 [pid 7175] +++ exited with 0 +++ [pid 7179] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7175, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 7179] <... mmap resumed>) = 0x7ff0df171000 [pid 7176] <... mkdir resumed>) = 0 [pid 5030] umount2("./356", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./356", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./356/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./356/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./356/binderfs") = 0 [pid 5030] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7177] <... write resumed>) = 2097152 [pid 7176] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5029] <... umount2 resumed>) = 0 [pid 7177] munmap(0x7ff0df171000, 138412032) = 0 [pid 7178] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./354/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./354/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./354/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7177] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 7177] <... openat resumed>) = 4 [pid 5029] rmdir("./354") = 0 [pid 7177] ioctl(4, LOOP_SET_FD, 3 [ 291.794358][ T7176] loop4: detected capacity change from 0 to 4096 [ 291.832199][ T7176] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] mkdir("./355", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7180 ./strace-static-x86_64: Process 7180 attached [pid 7180] set_robust_list(0x55555635e660, 24) = 0 [pid 7180] chdir("./355") = 0 [pid 7179] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7180] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7180] setpgid(0, 0) = 0 [pid 7177] <... ioctl resumed>) = 0 [pid 7180] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7177] close(3 [pid 7180] <... openat resumed>) = 3 [pid 7177] <... close resumed>) = 0 [pid 7177] mkdir("./file0", 0777) = 0 [pid 7177] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7180] write(3, "1000", 4) = 4 [pid 7180] close(3) = 0 [pid 7180] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... umount2 resumed>) = 0 [pid 7180] <... symlink resumed>) = 0 [pid 7180] memfd_create("syzkaller", 0 [pid 5030] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./356/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7180] <... memfd_create resumed>) = 3 [pid 7180] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 291.870657][ T7177] loop2: detected capacity change from 0 to 4096 [ 291.909522][ T7177] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7176] <... mount resumed>) = 0 [pid 7178] <... write resumed>) = 2097152 [pid 7176] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7178] munmap(0x7ff0df171000, 138412032 [pid 7176] <... openat resumed>) = 3 [pid 5030] openat(AT_FDCWD, "./356/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7178] <... munmap resumed>) = 0 [pid 7176] chdir("./file0" [pid 7178] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7176] <... chdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 7178] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7178] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 7176] ioctl(4, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 7176] <... ioctl resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7179] <... write resumed>) = 2097152 [pid 7179] munmap(0x7ff0df171000, 138412032 [pid 5030] rmdir("./356/file0" [pid 7176] close(4) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 7179] <... munmap resumed>) = 0 [pid 7176] exit_group(0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7176] <... exit_group resumed>) = ? [pid 5030] close(3) = 0 [pid 5030] rmdir("./356" [pid 7179] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7176] +++ exited with 0 +++ [pid 5030] <... rmdir resumed>) = 0 [pid 7179] <... openat resumed>) = 4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7176, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5030] mkdir("./357", 0777 [pid 7179] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... mkdir resumed>) = 0 [pid 7180] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7179] <... ioctl resumed>) = 0 [pid 7178] <... ioctl resumed>) = 0 [pid 5033] umount2("./348", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7179] close(3 [pid 7178] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 7179] <... close resumed>) = 0 [pid 7178] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./348", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7179] mkdir("./file0", 0777 [pid 7178] mkdir("./file0", 0777 [pid 5033] <... openat resumed>) = 3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7179] <... mkdir resumed>) = 0 [pid 7178] <... mkdir resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5030] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 7179] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7178] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [ 291.980004][ T7178] loop3: detected capacity change from 0 to 4096 [ 292.004691][ T7179] loop5: detected capacity change from 0 to 4096 [pid 5033] getdents64(3, [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 7181 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7181 [pid 5033] umount2("./348/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./348/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7181] set_robust_list(0x55555635e660, 24 [pid 5033] unlink("./348/binderfs") = 0 [pid 5033] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7177] <... mount resumed>) = 0 [pid 7181] <... set_robust_list resumed>) = 0 [pid 7177] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7181] chdir("./357" [pid 7177] <... openat resumed>) = 3 [pid 7181] <... chdir resumed>) = 0 [pid 7177] chdir("./file0" [pid 7181] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7177] <... chdir resumed>) = 0 [pid 7181] <... prctl resumed>) = 0 [pid 7177] ioctl(4, LOOP_CLR_FD [pid 7181] setpgid(0, 0 [pid 7177] <... ioctl resumed>) = 0 [pid 7181] <... setpgid resumed>) = 0 [pid 7177] close(4 [pid 7181] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7177] <... close resumed>) = 0 [pid 7181] <... openat resumed>) = 3 [pid 7181] write(3, "1000", 4 [pid 7177] exit_group(0 [pid 7181] <... write resumed>) = 4 [pid 7177] <... exit_group resumed>) = ? [pid 7181] close(3 [pid 7177] +++ exited with 0 +++ [pid 7181] <... close resumed>) = 0 [pid 7181] symlink("/dev/binderfs", "./binderfs" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7177, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=2 /* 0.02 s */} --- [pid 5031] umount2("./355", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./355", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7181] <... symlink resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./355/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./348/file0", [pid 5031] newfstatat(AT_FDCWD, "./355/binderfs", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./348/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 292.031787][ T7179] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 292.041725][ T7178] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] openat(AT_FDCWD, "./348/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] unlink("./355/binderfs" [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5031] <... unlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, [pid 5031] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 7181] memfd_create("syzkaller", 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./348/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./348") = 0 [pid 5033] mkdir("./349", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7181] <... memfd_create resumed>) = 3 [pid 7180] <... write resumed>) = 2097152 [pid 7181] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7181] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... ioctl resumed>) = 0 [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7182 attached [pid 7182] set_robust_list(0x55555635e660, 24 [pid 7180] munmap(0x7ff0df171000, 138412032 [pid 7179] <... mount resumed>) = 0 [pid 7182] <... set_robust_list resumed>) = 0 [pid 7180] <... munmap resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7182 [pid 7182] chdir("./349") = 0 [pid 7179] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7182] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7179] <... openat resumed>) = 3 [pid 7179] chdir("./file0" [pid 7182] <... prctl resumed>) = 0 [pid 7182] setpgid(0, 0 [pid 7180] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7179] <... chdir resumed>) = 0 [pid 7182] <... setpgid resumed>) = 0 [pid 7179] ioctl(4, LOOP_CLR_FD [pid 7182] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7179] <... ioctl resumed>) = 0 [pid 7180] <... openat resumed>) = 4 [pid 7179] close(4 [pid 7182] <... openat resumed>) = 3 [pid 7180] ioctl(4, LOOP_SET_FD, 3 [pid 7179] <... close resumed>) = 0 [pid 7179] exit_group(0 [pid 7182] write(3, "1000", 4) = 4 [pid 7182] close(3) = 0 [pid 7182] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7182] memfd_create("syzkaller", 0) = 3 [pid 7182] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7180] <... ioctl resumed>) = 0 [pid 7179] <... exit_group resumed>) = ? [pid 7180] close(3) = 0 [pid 7180] mkdir("./file0", 0777) = 0 [pid 7180] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 292.145048][ T7180] loop0: detected capacity change from 0 to 4096 [pid 7179] +++ exited with 0 +++ [pid 7181] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7178] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 7178] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7179, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7178] chdir("./file0" [pid 5034] umount2("./349", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7178] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7178] ioctl(4, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "./349", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7178] <... ioctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 7178] close(4 [pid 5034] newfstatat(3, "", [pid 7178] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7178] exit_group(0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./349/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./349/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./349/binderfs") = 0 [pid 5034] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7178] <... exit_group resumed>) = ? [pid 5031] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7178] +++ exited with 0 +++ [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7178, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] newfstatat(AT_FDCWD, "./355/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./357", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./357", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "./355/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5031] <... openat resumed>) = 4 [pid 5032] newfstatat(3, "", [pid 5031] newfstatat(4, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [ 292.186447][ T7180] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] getdents64(4, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] umount2("./357/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./357/binderfs", [pid 5031] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... close resumed>) = 0 [pid 5032] unlink("./357/binderfs" [pid 5031] rmdir("./355/file0" [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5031] rmdir("./355") = 0 [pid 7181] <... write resumed>) = 2097152 [pid 5031] mkdir("./356", 0777 [pid 5034] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] newfstatat(AT_FDCWD, "./349/file0", [pid 5031] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5034] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 5034] openat(AT_FDCWD, "./349/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] newfstatat(4, "", [pid 7182] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7183 ./strace-static-x86_64: Process 7183 attached [pid 5034] getdents64(4, [pid 7183] set_robust_list(0x55555635e660, 24 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 7183] <... set_robust_list resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 7183] chdir("./356" [pid 5034] rmdir("./349/file0") = 0 [pid 7183] <... chdir resumed>) = 0 [pid 5034] getdents64(3, [pid 7183] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 7183] <... prctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 7183] setpgid(0, 0 [pid 5034] rmdir("./349" [pid 7183] <... setpgid resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 7183] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] mkdir("./350", 0777 [pid 7183] <... openat resumed>) = 3 [pid 5034] <... mkdir resumed>) = 0 [pid 7183] write(3, "1000", 4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7183] <... write resumed>) = 4 [pid 5034] <... openat resumed>) = 3 [pid 7183] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7183] <... close resumed>) = 0 [pid 5034] <... ioctl resumed>) = 0 [pid 7183] symlink("/dev/binderfs", "./binderfs" [pid 5034] close(3 [pid 7183] <... symlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 7183] memfd_create("syzkaller", 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7184 attached [pid 7183] <... memfd_create resumed>) = 3 [pid 7184] set_robust_list(0x55555635e660, 24 [pid 7183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7184 [pid 5032] <... umount2 resumed>) = 0 [pid 7184] <... set_robust_list resumed>) = 0 [pid 7184] chdir("./350" [pid 7183] <... mmap resumed>) = 0x7ff0df171000 [pid 7184] <... chdir resumed>) = 0 [pid 7181] munmap(0x7ff0df171000, 138412032 [pid 7184] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7184] setpgid(0, 0 [pid 5032] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7184] <... setpgid resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./357/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7184] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] openat(AT_FDCWD, "./357/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 7184] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7184] write(3, "1000", 4) = 4 [pid 5032] getdents64(4, [pid 7184] close(3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7184] <... close resumed>) = 0 [pid 5032] close(4 [pid 7184] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... close resumed>) = 0 [pid 7184] <... symlink resumed>) = 0 [pid 5032] rmdir("./357/file0" [pid 7184] memfd_create("syzkaller", 0 [pid 7181] <... munmap resumed>) = 0 [pid 7184] <... memfd_create resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 7184] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] getdents64(3, [pid 7184] <... mmap resumed>) = 0x7ff0df171000 [pid 7181] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 7181] <... openat resumed>) = 4 [pid 5032] rmdir("./357") = 0 [pid 5032] mkdir("./358", 0777) = 0 [pid 7181] ioctl(4, LOOP_SET_FD, 3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 7181] <... ioctl resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7181] close(3 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7181] <... close resumed>) = 0 [pid 7181] mkdir("./file0", 0777 [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7185 ./strace-static-x86_64: Process 7185 attached [pid 7185] set_robust_list(0x55555635e660, 24) = 0 [pid 7185] chdir("./358" [pid 7181] <... mkdir resumed>) = 0 [pid 7185] <... chdir resumed>) = 0 [pid 7181] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7185] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7182] <... write resumed>) = 2097152 [pid 7182] munmap(0x7ff0df171000, 138412032 [pid 7185] setpgid(0, 0 [pid 7182] <... munmap resumed>) = 0 [pid 7182] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7185] <... setpgid resumed>) = 0 [pid 7182] <... openat resumed>) = 4 [pid 7185] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7185] write(3, "1000", 4) = 4 [pid 7185] close(3 [ 292.379444][ T7181] loop1: detected capacity change from 0 to 4096 [ 292.406566][ T7181] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7182] ioctl(4, LOOP_SET_FD, 3 [pid 7180] <... mount resumed>) = 0 [pid 7185] <... close resumed>) = 0 [pid 7180] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7185] symlink("/dev/binderfs", "./binderfs" [pid 7180] <... openat resumed>) = 3 [pid 7180] chdir("./file0") = 0 [pid 7185] <... symlink resumed>) = 0 [pid 7180] ioctl(4, LOOP_CLR_FD [pid 7183] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7180] <... ioctl resumed>) = 0 [pid 7185] memfd_create("syzkaller", 0 [pid 7180] close(4) = 0 [pid 7185] <... memfd_create resumed>) = 3 [pid 7180] exit_group(0) = ? [pid 7185] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7180] +++ exited with 0 +++ [pid 7182] <... ioctl resumed>) = 0 [pid 7182] close(3) = 0 [pid 7182] mkdir("./file0", 0777) = 0 [pid 7182] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7180, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 7181] <... mount resumed>) = 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7181] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... restart_syscall resumed>) = 0 [pid 7184] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7181] <... openat resumed>) = 3 [pid 7181] chdir("./file0") = 0 [pid 7181] ioctl(4, LOOP_CLR_FD) = 0 [pid 7181] close(4 [pid 5029] umount2("./355", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7181] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7183] <... write resumed>) = 2097152 [pid 7181] exit_group(0 [pid 5029] openat(AT_FDCWD, "./355", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7181] <... exit_group resumed>) = ? [pid 5029] <... openat resumed>) = 3 [pid 7181] +++ exited with 0 +++ [ 292.438508][ T7182] loop4: detected capacity change from 0 to 4096 [ 292.478163][ T7182] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] newfstatat(3, "", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7181, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7184] <... write resumed>) = 2097152 [pid 7183] munmap(0x7ff0df171000, 138412032 [pid 5030] umount2("./357", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 7183] <... munmap resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] openat(AT_FDCWD, "./357", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./355/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 5029] newfstatat(AT_FDCWD, "./355/binderfs", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(3, [pid 5029] unlink("./355/binderfs" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./357/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./357/binderfs", [pid 7183] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7183] ioctl(4, LOOP_SET_FD, 3 [pid 7185] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7184] munmap(0x7ff0df171000, 138412032 [pid 5030] unlink("./357/binderfs" [pid 7184] <... munmap resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7184] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7184] ioctl(4, LOOP_SET_FD, 3 [pid 7183] <... ioctl resumed>) = 0 [pid 7183] close(3) = 0 [pid 7183] mkdir("./file0", 0777) = 0 [pid 7183] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7184] <... ioctl resumed>) = 0 [pid 7184] close(3) = 0 [pid 7184] mkdir("./file0", 0777) = 0 [ 292.545915][ T7183] loop2: detected capacity change from 0 to 4096 [ 292.561514][ T7184] loop5: detected capacity change from 0 to 4096 [ 292.583847][ T7183] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7184] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5029] <... umount2 resumed>) = 0 [pid 7182] <... mount resumed>) = 0 [pid 7182] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7182] chdir("./file0") = 0 [pid 7182] ioctl(4, LOOP_CLR_FD) = 0 [pid 7182] close(4 [pid 7183] <... mount resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7183] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7182] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7183] <... openat resumed>) = 3 [pid 7182] exit_group(0 [pid 7183] chdir("./file0" [pid 7182] <... exit_group resumed>) = ? [pid 5030] newfstatat(AT_FDCWD, "./357/file0", [pid 5029] newfstatat(AT_FDCWD, "./355/file0", [pid 7185] <... write resumed>) = 2097152 [pid 7183] <... chdir resumed>) = 0 [pid 7182] +++ exited with 0 +++ [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7185] munmap(0x7ff0df171000, 138412032 [pid 7183] ioctl(4, LOOP_CLR_FD [pid 5030] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7183] <... ioctl resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7183] close(4 [pid 5029] openat(AT_FDCWD, "./355/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7182, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7183] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 4 [pid 7183] exit_group(0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [ 292.616830][ T7184] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] newfstatat(4, "", [pid 7183] <... exit_group resumed>) = ? [pid 5033] <... restart_syscall resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./357/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7185] <... munmap resumed>) = 0 [pid 7183] +++ exited with 0 +++ [pid 5029] getdents64(4, [pid 7185] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7183, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 5030] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7185] <... openat resumed>) = 4 [pid 5033] umount2("./349", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(4, "", [pid 5029] getdents64(4, [pid 7185] ioctl(4, LOOP_SET_FD, 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./355/file0") = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./356", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... close resumed>) = 0 [pid 7184] <... mount resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./349", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] rmdir("./355" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 5033] newfstatat(3, "", [pid 5031] openat(AT_FDCWD, "./356", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7184] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] close(4 [pid 5029] <... rmdir resumed>) = 0 [pid 7185] <... ioctl resumed>) = 0 [pid 7184] <... openat resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 7185] close(3 [pid 5031] newfstatat(3, "", [pid 7185] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 5030] rmdir("./357/file0" [pid 7185] mkdir("./file0", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7185] <... mkdir resumed>) = 0 [pid 7184] chdir("./file0" [pid 5033] umount2("./349/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5030] <... rmdir resumed>) = 0 [pid 5029] mkdir("./356", 0777 [pid 7185] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7184] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] getdents64(3, [pid 5029] <... mkdir resumed>) = 0 [pid 7184] ioctl(4, LOOP_CLR_FD [pid 5031] umount2("./356/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 5031] newfstatat(AT_FDCWD, "./356/binderfs", [pid 5030] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] rmdir("./357" [pid 7184] <... ioctl resumed>) = 0 [pid 5031] unlink("./356/binderfs" [pid 5030] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7184] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5030] mkdir("./358", 0777 [pid 5029] <... openat resumed>) = 3 [pid 7184] <... close resumed>) = 0 [pid 5031] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... mkdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./349/binderfs", [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5033] unlink("./349/binderfs" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7184] exit_group(0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7184] <... exit_group resumed>) = ? [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7186 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3./strace-static-x86_64: Process 7186 attached [pid 7186] set_robust_list(0x55555635e660, 24 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7186] <... set_robust_list resumed>) = 0 [pid 5031] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./356/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7186] chdir("./358" [pid 5031] openat(AT_FDCWD, "./356/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7186] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 7186] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 7187 attached ) = 0 [pid 7184] +++ exited with 0 +++ [pid 7186] setpgid(0, 0 [pid 7187] set_robust_list(0x55555635e660, 24 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7184, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=3 /* 0.03 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5031] newfstatat(4, "", [pid 5034] <... restart_syscall resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5034] umount2("./350", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./350", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... openat resumed>) = 3 [pid 5031] getdents64(4, [pid 5034] newfstatat(3, "", [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 292.692313][ T7185] loop3: detected capacity change from 0 to 4096 [ 292.713995][ T7185] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] close(4 [pid 7187] <... set_robust_list resumed>) = 0 [pid 7186] <... setpgid resumed>) = 0 [pid 5034] getdents64(3, [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7187 [pid 7187] chdir("./356" [pid 7186] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7187] <... chdir resumed>) = 0 [pid 7186] write(3, "1000", 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... close resumed>) = 0 [pid 7187] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7186] <... write resumed>) = 4 [pid 5031] rmdir("./356/file0" [pid 7187] <... prctl resumed>) = 0 [pid 7186] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 7187] setpgid(0, 0 [pid 7186] <... close resumed>) = 0 [pid 7187] <... setpgid resumed>) = 0 [pid 7186] symlink("/dev/binderfs", "./binderfs" [pid 5034] umount2("./350/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 7187] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7186] <... symlink resumed>) = 0 [pid 7187] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./350/binderfs", [pid 5031] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... close resumed>) = 0 [pid 7187] write(3, "1000", 4 [pid 5034] unlink("./350/binderfs" [pid 5031] rmdir("./356" [pid 7186] memfd_create("syzkaller", 0 [pid 5034] <... unlink resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5034] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./357", 0777 [pid 7187] <... write resumed>) = 4 [pid 5031] <... mkdir resumed>) = 0 [pid 7187] close(3 [pid 5033] <... umount2 resumed>) = 0 [pid 7186] <... memfd_create resumed>) = 3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7187] <... close resumed>) = 0 [pid 7186] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 7187] symlink("/dev/binderfs", "./binderfs" [pid 7186] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7187] <... symlink resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7188 ./strace-static-x86_64: Process 7188 attached [pid 7185] <... mount resumed>) = 0 [pid 7188] set_robust_list(0x55555635e660, 24 [pid 7185] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7188] <... set_robust_list resumed>) = 0 [pid 7187] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7188] chdir("./357" [pid 7185] chdir("./file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7188] <... chdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./349/file0", [pid 7185] <... chdir resumed>) = 0 [pid 7185] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7185] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7188] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7185] close(4 [pid 5034] newfstatat(AT_FDCWD, "./350/file0", [pid 7188] <... prctl resumed>) = 0 [pid 7185] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7188] setpgid(0, 0 [pid 7185] exit_group(0 [pid 5034] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./349/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7188] <... setpgid resumed>) = 0 [pid 7185] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./350/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7188] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7185] +++ exited with 0 +++ [pid 5034] newfstatat(4, "", [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7185, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] umount2("./358", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./358", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7187] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 7188] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7188] write(3, "1000", 4 [pid 5034] getdents64(4, [pid 5032] umount2("./358/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7188] <... write resumed>) = 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(4, [pid 5032] newfstatat(AT_FDCWD, "./358/binderfs", [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] close(4 [pid 5032] unlink("./358/binderfs" [pid 7188] close(3 [pid 5034] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 7188] <... close resumed>) = 0 [pid 5034] rmdir("./350/file0" [pid 5032] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7188] symlink("/dev/binderfs", "./binderfs" [pid 7187] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./349/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7188] <... symlink resumed>) = 0 [pid 7187] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] getdents64(3, [pid 7188] memfd_create("syzkaller", 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5034] close(3 [pid 5033] newfstatat(4, "", [pid 5034] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7188] <... memfd_create resumed>) = 3 [pid 5033] getdents64(4, [pid 7188] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7188] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] rmdir("./350" [pid 5033] close(4 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5034] mkdir("./351", 0777) = 0 [pid 5033] rmdir("./349/file0" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7186] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... openat resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5033] getdents64(3, [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./349" [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7189 ./strace-static-x86_64: Process 7189 attached [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./350", 0777 [pid 7189] set_robust_list(0x55555635e660, 24 [pid 5033] <... mkdir resumed>) = 0 [pid 7189] <... set_robust_list resumed>) = 0 [pid 7189] chdir("./351" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7189] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 7189] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7189] <... prctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 7189] setpgid(0, 0 [pid 5033] <... close resumed>) = 0 [pid 7189] <... setpgid resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7189] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 7190 attached ) = 3 [pid 7189] write(3, "1000", 4 [pid 7190] set_robust_list(0x55555635e660, 24 [pid 7189] <... write resumed>) = 4 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7190 [pid 7190] <... set_robust_list resumed>) = 0 [pid 7189] close(3 [pid 7187] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7190] chdir("./350" [pid 7189] <... close resumed>) = 0 [pid 7189] symlink("/dev/binderfs", "./binderfs" [pid 7190] <... chdir resumed>) = 0 [pid 7190] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7189] <... symlink resumed>) = 0 [pid 7190] setpgid(0, 0) = 0 [pid 7190] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7189] memfd_create("syzkaller", 0 [pid 7188] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... umount2 resumed>) = 0 [pid 7190] <... openat resumed>) = 3 [pid 7190] write(3, "1000", 4) = 4 [pid 7190] close(3) = 0 [pid 7190] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7190] memfd_create("syzkaller", 0) = 3 [pid 7190] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7189] <... memfd_create resumed>) = 3 [pid 7190] <... mmap resumed>) = 0x7ff0df171000 [pid 7189] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7186] <... write resumed>) = 2097152 [pid 5032] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./358/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./358/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 7186] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 7188] <... write resumed>) = 2097152 [pid 7187] <... write resumed>) = 2097152 [pid 7186] <... munmap resumed>) = 0 [pid 7190] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7187] munmap(0x7ff0df171000, 138412032 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7186] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5032] getdents64(4, [pid 7186] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 7188] munmap(0x7ff0df171000, 138412032 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./358/file0" [pid 7188] <... munmap resumed>) = 0 [pid 7187] <... munmap resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7187] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7186] <... ioctl resumed>) = 0 [pid 5032] getdents64(3, [pid 7186] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7187] <... openat resumed>) = 4 [pid 7186] <... close resumed>) = 0 [pid 5032] close(3 [pid 7187] ioctl(4, LOOP_SET_FD, 3 [pid 7186] mkdir("./file0", 0777 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./358" [pid 7188] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7187] <... ioctl resumed>) = 0 [pid 7188] <... openat resumed>) = 4 [pid 7189] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7188] ioctl(4, LOOP_SET_FD, 3 [pid 7186] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7187] close(3 [pid 7186] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] mkdir("./359", 0777 [pid 7187] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 7187] mkdir("./file0", 0777 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [ 293.055280][ T7186] loop1: detected capacity change from 0 to 4096 [ 293.076537][ T7187] loop0: detected capacity change from 0 to 4096 [ 293.086952][ T7188] loop2: detected capacity change from 0 to 4096 [pid 7190] <... write resumed>) = 2097152 [pid 7188] <... ioctl resumed>) = 0 [pid 7187] <... mkdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7190] munmap(0x7ff0df171000, 138412032 [pid 7188] close(3 [pid 7187] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7191 ./strace-static-x86_64: Process 7191 attached [pid 7191] set_robust_list(0x55555635e660, 24) = 0 [pid 7191] chdir("./359") = 0 [pid 7191] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7191] setpgid(0, 0 [pid 7188] <... close resumed>) = 0 [pid 7191] <... setpgid resumed>) = 0 [pid 7191] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7188] mkdir("./file0", 0777 [pid 7191] write(3, "1000", 4) = 4 [pid 7191] close(3) = 0 [pid 7191] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7191] memfd_create("syzkaller", 0 [pid 7188] <... mkdir resumed>) = 0 [pid 7191] <... memfd_create resumed>) = 3 [pid 7191] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7188] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7190] <... munmap resumed>) = 0 [pid 7190] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7189] <... write resumed>) = 2097152 [pid 7190] <... openat resumed>) = 4 [pid 7189] munmap(0x7ff0df171000, 138412032) = 0 [ 293.104696][ T7186] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 293.125407][ T7187] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 293.144196][ T7188] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7190] ioctl(4, LOOP_SET_FD, 3 [pid 7189] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7189] ioctl(4, LOOP_SET_FD, 3 [pid 7186] <... mount resumed>) = 0 [pid 7186] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7186] chdir("./file0") = 0 [pid 7186] ioctl(4, LOOP_CLR_FD) = 0 [pid 7186] close(4 [pid 7190] <... ioctl resumed>) = 0 [pid 7189] <... ioctl resumed>) = 0 [pid 7186] <... close resumed>) = 0 [pid 7190] close(3 [pid 7189] close(3 [pid 7186] exit_group(0 [pid 7190] <... close resumed>) = 0 [pid 7189] <... close resumed>) = 0 [pid 7186] <... exit_group resumed>) = ? [pid 7190] mkdir("./file0", 0777 [pid 7189] mkdir("./file0", 0777 [pid 7186] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7186, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} --- [pid 5030] umount2("./358", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7189] <... mkdir resumed>) = 0 [pid 7190] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./358", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7189] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] <... openat resumed>) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./358/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./358/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./358/binderfs") = 0 [pid 5030] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 293.163588][ T7190] loop4: detected capacity change from 0 to 4096 [ 293.177483][ T7189] loop5: detected capacity change from 0 to 4096 [pid 7190] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5030] <... umount2 resumed>) = 0 [pid 7191] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7187] <... mount resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./358/file0", [pid 7187] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7187] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7187] chdir("./file0" [pid 5030] openat(AT_FDCWD, "./358/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 7187] <... chdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7187] ioctl(4, LOOP_CLR_FD [pid 7188] <... mount resumed>) = 0 [pid 7187] <... ioctl resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7187] close(4 [pid 5030] close(4 [pid 7191] <... write resumed>) = 2097152 [pid 7187] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./358/file0" [pid 7187] exit_group(0 [pid 7188] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7188] chdir("./file0") = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 7188] ioctl(4, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7187] <... exit_group resumed>) = ? [pid 5030] close(3 [pid 7188] <... ioctl resumed>) = 0 [pid 7188] close(4) = 0 [pid 7187] +++ exited with 0 +++ [pid 5030] <... close resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7187, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [ 293.219405][ T7190] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 293.236431][ T7189] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7188] exit_group(0 [pid 5030] rmdir("./358" [pid 5029] <... restart_syscall resumed>) = 0 [pid 7188] <... exit_group resumed>) = ? [pid 7191] munmap(0x7ff0df171000, 138412032 [pid 7188] +++ exited with 0 +++ [pid 5030] <... rmdir resumed>) = 0 [pid 5029] umount2("./356", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./359", 0777 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7188, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] umount2("./357", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./357", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7191] <... munmap resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./357/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./357/binderfs", [pid 5030] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./356", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7191] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] unlink("./357/binderfs" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... openat resumed>) = 3 [pid 7191] <... openat resumed>) = 4 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 7191] ioctl(4, LOOP_SET_FD, 3 [pid 5031] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7190] <... mount resumed>) = 0 [pid 7190] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7190] chdir("./file0" [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./356/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./356/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./356/binderfs" [pid 7190] <... chdir resumed>) = 0 [pid 7190] ioctl(4, LOOP_CLR_FD) = 0 [pid 7190] close(4 [pid 7189] <... mount resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... unlink resumed>) = 0 [pid 7190] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7190] exit_group(0 [pid 5030] close(3 [pid 5029] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7190] <... exit_group resumed>) = ? [pid 7189] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 7191] <... ioctl resumed>) = 0 [pid 7189] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7191] close(3 [pid 5031] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7190] +++ exited with 0 +++ [pid 7189] chdir("./file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7191] <... close resumed>) = 0 [pid 7189] <... chdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7190, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5031] newfstatat(AT_FDCWD, "./357/file0", [pid 7189] ioctl(4, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7192 [pid 5033] umount2("./350", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7189] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./350", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7192 attached [pid 7189] close(4 [pid 7191] mkdir("./file0", 0777 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7189] <... close resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5031] openat(AT_FDCWD, "./357/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 7191] <... mkdir resumed>) = 0 [pid 5033] getdents64(3, [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7192] set_robust_list(0x55555635e660, 24) = 0 [pid 7189] exit_group(0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] getdents64(4, [pid 7189] <... exit_group resumed>) = ? [pid 7192] chdir("./359" [pid 7189] +++ exited with 0 +++ [pid 5033] umount2("./350/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7192] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7192] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] newfstatat(AT_FDCWD, "./350/binderfs", [pid 5031] close(4 [pid 7191] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7189, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... close resumed>) = 0 [pid 7192] <... prctl resumed>) = 0 [pid 5034] umount2("./351", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./357/file0" [pid 7192] setpgid(0, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./350/binderfs" [pid 5031] <... rmdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./351", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] getdents64(3, [pid 7192] <... setpgid resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [ 293.319633][ T7191] loop3: detected capacity change from 0 to 4096 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(3, "", [pid 5033] <... unlink resumed>) = 0 [pid 5031] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 5031] rmdir("./357" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... rmdir resumed>) = 0 [pid 7192] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] umount2("./351/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./358", 0777 [pid 5033] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] newfstatat(AT_FDCWD, "./351/binderfs", [pid 5031] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD) = 0 [pid 7192] <... openat resumed>) = 3 [pid 5034] unlink("./351/binderfs" [pid 5031] close(3 [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] newfstatat(AT_FDCWD, "./356/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./356/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7193 attached [pid 5029] getdents64(4, [pid 7193] set_robust_list(0x55555635e660, 24 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7193] <... set_robust_list resumed>) = 0 [pid 5029] getdents64(4, [pid 7193] chdir("./358" [pid 7192] write(3, "1000", 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7193 [pid 7192] <... write resumed>) = 4 [pid 5029] close(4 [pid 7192] close(3 [pid 5029] <... close resumed>) = 0 [pid 7192] <... close resumed>) = 0 [pid 5029] rmdir("./356/file0") = 0 [pid 7193] <... chdir resumed>) = 0 [pid 7193] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] getdents64(3, [pid 7193] setpgid(0, 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7193] <... setpgid resumed>) = 0 [pid 7193] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] close(3) = 0 [pid 7193] <... openat resumed>) = 3 [pid 5029] rmdir("./356" [pid 7192] symlink("/dev/binderfs", "./binderfs" [pid 7193] write(3, "1000", 4) = 4 [pid 7193] close(3 [pid 7192] <... symlink resumed>) = 0 [pid 7193] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7193] symlink("/dev/binderfs", "./binderfs" [pid 7192] memfd_create("syzkaller", 0 [pid 7193] <... symlink resumed>) = 0 [pid 5029] mkdir("./357", 0777 [pid 7193] memfd_create("syzkaller", 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7192] <... memfd_create resumed>) = 3 [pid 7192] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... ioctl resumed>) = 0 [pid 7192] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] close(3) = 0 [pid 7193] <... memfd_create resumed>) = 3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7193] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [ 293.373808][ T7191] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). ./strace-static-x86_64: Process 7194 attached [pid 7194] set_robust_list(0x55555635e660, 24) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7194 [pid 7194] chdir("./357") = 0 [pid 7194] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7194] setpgid(0, 0) = 0 [pid 7194] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7194] write(3, "1000", 4) = 4 [pid 7194] close(3) = 0 [pid 7194] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7194] memfd_create("syzkaller", 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5033] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7194] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7194] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] newfstatat(AT_FDCWD, "./350/file0", [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./350/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./350/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./351/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7193] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] openat(AT_FDCWD, "./351/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] getdents64(4, [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7191] <... mount resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] getdents64(4, [pid 5034] close(4) = 0 [pid 5034] rmdir("./351/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./351" [pid 7192] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7191] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5034] mkdir("./352", 0777 [pid 7191] <... openat resumed>) = 3 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7191] chdir("./file0" [pid 5033] rmdir("./350/file0" [pid 7191] <... chdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... rmdir resumed>) = 0 [pid 7191] ioctl(4, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7191] <... ioctl resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] getdents64(3, [pid 5034] close(3) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7191] close(4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7195 attached [pid 7194] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7191] <... close resumed>) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./350" [pid 7195] set_robust_list(0x55555635e660, 24 [pid 7191] exit_group(0 [pid 5033] <... rmdir resumed>) = 0 [pid 7195] <... set_robust_list resumed>) = 0 [pid 7191] <... exit_group resumed>) = ? [pid 7195] chdir("./352") = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7195 [pid 7195] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7195] setpgid(0, 0) = 0 [pid 7195] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7195] write(3, "1000", 4 [pid 7191] +++ exited with 0 +++ [pid 5033] mkdir("./351", 0777 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7191, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=3 /* 0.03 s */} --- [pid 5033] <... mkdir resumed>) = 0 [pid 5032] umount2("./359", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./359", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5033] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] getdents64(3, [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] close(3 [pid 5032] umount2("./359/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7195] <... write resumed>) = 4 [pid 5033] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(AT_FDCWD, "./359/binderfs", ./strace-static-x86_64: Process 7196 attached [pid 7195] close(3 [pid 7193] <... write resumed>) = 2097152 [pid 7195] <... close resumed>) = 0 [pid 7193] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7196] set_robust_list(0x55555635e660, 24 [pid 7195] symlink("/dev/binderfs", "./binderfs" [pid 7193] <... munmap resumed>) = 0 [pid 7192] <... write resumed>) = 2097152 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7196 [pid 5032] unlink("./359/binderfs" [pid 7196] <... set_robust_list resumed>) = 0 [pid 7195] <... symlink resumed>) = 0 [pid 7196] chdir("./351" [pid 7195] memfd_create("syzkaller", 0 [pid 7193] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7192] munmap(0x7ff0df171000, 138412032 [pid 5032] <... unlink resumed>) = 0 [pid 7196] <... chdir resumed>) = 0 [pid 5032] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7196] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7194] <... write resumed>) = 2097152 [pid 7193] <... openat resumed>) = 4 [pid 7192] <... munmap resumed>) = 0 [pid 7196] setpgid(0, 0 [pid 7193] ioctl(4, LOOP_SET_FD, 3 [pid 7192] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7196] <... setpgid resumed>) = 0 [pid 7192] <... openat resumed>) = 4 [pid 7196] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7195] <... memfd_create resumed>) = 3 [pid 7194] munmap(0x7ff0df171000, 138412032 [pid 7193] <... ioctl resumed>) = 0 [pid 7196] <... openat resumed>) = 3 [pid 7195] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7194] <... munmap resumed>) = 0 [pid 7193] close(3 [pid 7192] ioctl(4, LOOP_SET_FD, 3 [pid 7196] write(3, "1000", 4 [pid 7195] <... mmap resumed>) = 0x7ff0df171000 [pid 7196] <... write resumed>) = 4 [pid 7196] close(3) = 0 [pid 7196] symlink("/dev/binderfs", "./binderfs" [pid 7193] <... close resumed>) = 0 [pid 7193] mkdir("./file0", 0777 [pid 7196] <... symlink resumed>) = 0 [pid 7196] memfd_create("syzkaller", 0 [pid 7193] <... mkdir resumed>) = 0 [pid 7193] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7196] <... memfd_create resumed>) = 3 [pid 7194] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7192] <... ioctl resumed>) = 0 [pid 7196] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7194] <... openat resumed>) = 4 [pid 7192] close(3 [pid 7196] <... mmap resumed>) = 0x7ff0df171000 [pid 7194] ioctl(4, LOOP_SET_FD, 3 [pid 7192] <... close resumed>) = 0 [pid 7192] mkdir("./file0", 0777 [pid 7194] <... ioctl resumed>) = 0 [pid 7192] <... mkdir resumed>) = 0 [ 293.660184][ T7193] loop2: detected capacity change from 0 to 4096 [ 293.672903][ T7192] loop1: detected capacity change from 0 to 4096 [ 293.690088][ T7193] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 293.703397][ T7194] loop0: detected capacity change from 0 to 4096 [pid 7192] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7194] close(3) = 0 [pid 7194] mkdir("./file0", 0777) = 0 [pid 7194] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = 0 [pid 5032] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./359/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7195] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7193] <... mount resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./359/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 7193] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7193] chdir("./file0") = 0 [pid 7193] ioctl(4, LOOP_CLR_FD) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 7193] close(4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7193] <... close resumed>) = 0 [ 293.721912][ T7192] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 293.742013][ T7194] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7193] exit_group(0) = ? [pid 5032] getdents64(4, [pid 7193] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7193, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5031] umount2("./358", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./358", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7196] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7192] <... mount resumed>) = 0 [pid 5032] close(4 [pid 5031] getdents64(3, [pid 7192] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7192] <... openat resumed>) = 3 [pid 5031] umount2("./358/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7192] chdir("./file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7192] <... chdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./358/binderfs", [pid 7192] ioctl(4, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7192] <... ioctl resumed>) = 0 [pid 5031] unlink("./358/binderfs" [pid 7192] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./359/file0" [pid 7192] <... close resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7192] exit_group(0 [pid 5032] getdents64(3, [pid 7192] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7195] <... write resumed>) = 2097152 [pid 7192] +++ exited with 0 +++ [pid 5032] close(3 [pid 7195] munmap(0x7ff0df171000, 138412032 [pid 5032] <... close resumed>) = 0 [pid 7194] <... mount resumed>) = 0 [pid 5032] rmdir("./359" [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7192, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] umount2("./359", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./359", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", [pid 5032] mkdir("./360", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./359/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./359/binderfs", [pid 7195] <... munmap resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7194] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] unlink("./359/binderfs" [pid 7195] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7194] <... openat resumed>) = 3 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 7196] <... write resumed>) = 2097152 [pid 7195] <... openat resumed>) = 4 [pid 7194] chdir("./file0" [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7194] <... chdir resumed>) = 0 [pid 7194] ioctl(4, LOOP_CLR_FD [pid 5032] close(3 [pid 7194] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7194] close(4 [pid 7195] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7197 ./strace-static-x86_64: Process 7197 attached [pid 7194] <... close resumed>) = 0 [pid 7196] munmap(0x7ff0df171000, 138412032) = 0 [pid 7196] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7197] set_robust_list(0x55555635e660, 24) = 0 [pid 7194] exit_group(0 [pid 7197] chdir("./360" [pid 7196] <... openat resumed>) = 4 [pid 7196] ioctl(4, LOOP_SET_FD, 3 [pid 7195] <... ioctl resumed>) = 0 [pid 7197] <... chdir resumed>) = 0 [pid 7194] <... exit_group resumed>) = ? [pid 7195] close(3) = 0 [pid 7195] mkdir("./file0", 0777 [pid 7194] +++ exited with 0 +++ [pid 7197] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7194, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 7197] <... prctl resumed>) = 0 [pid 7197] setpgid(0, 0) = 0 [pid 7197] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] umount2("./357", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7197] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./357", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 293.857212][ T7195] loop5: detected capacity change from 0 to 4096 [ 293.888710][ T7196] loop4: detected capacity change from 0 to 4096 [pid 7195] <... mkdir resumed>) = 0 [pid 7195] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7197] write(3, "1000", 4 [pid 5029] newfstatat(3, "", [pid 7197] <... write resumed>) = 4 [pid 7196] <... ioctl resumed>) = 0 [pid 7196] close(3 [pid 7197] close(3 [pid 7196] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7197] <... close resumed>) = 0 [pid 5031] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7197] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 5031] newfstatat(AT_FDCWD, "./358/file0", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7196] mkdir("./file0", 0777 [pid 5030] newfstatat(AT_FDCWD, "./359/file0", [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7196] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./357/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./358/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./359/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7196] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] <... openat resumed>) = 4 [pid 5029] newfstatat(AT_FDCWD, "./357/binderfs", [pid 7197] <... symlink resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5030] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(4, "", [pid 5029] unlink("./357/binderfs" [pid 7197] memfd_create("syzkaller", 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 7197] <... memfd_create resumed>) = 3 [pid 5031] getdents64(4, [pid 5030] getdents64(4, [pid 5029] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7197] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7197] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 5030] getdents64(4, [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5030] close(4) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] rmdir("./359/file0" [pid 5031] rmdir("./358/file0") = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 5031] getdents64(3, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 293.900444][ T7195] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 293.927217][ T7196] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5029] <... umount2 resumed>) = 0 [pid 5029] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3 [pid 5030] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5030] rmdir("./359" [pid 5031] rmdir("./358" [pid 5030] <... rmdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./357/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] mkdir("./360", 0777 [pid 5029] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./359", 0777 [pid 7195] <... mount resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7195] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "./357/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7195] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 4 [pid 7195] chdir("./file0" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] newfstatat(4, "", [pid 7195] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7195] ioctl(4, LOOP_CLR_FD [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... close resumed>) = 0 [pid 5029] getdents64(4, [pid 7195] <... ioctl resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7195] close(4 [pid 5031] close(3 [pid 7195] <... close resumed>) = 0 [pid 5029] getdents64(4, [pid 5031] <... close resumed>) = 0 [pid 7195] exit_group(0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7195] <... exit_group resumed>) = ? [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7198 ./strace-static-x86_64: Process 7198 attached [pid 7197] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7196] <... mount resumed>) = 0 [pid 7195] +++ exited with 0 +++ [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] close(4 [pid 7198] set_robust_list(0x55555635e660, 24 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7195, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 7198] <... set_robust_list resumed>) = 0 [pid 7196] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 7198] chdir("./360" [pid 7196] <... openat resumed>) = 3 [pid 5029] rmdir("./357/file0" [pid 7196] chdir("./file0"./strace-static-x86_64: Process 7199 attached [pid 7198] <... chdir resumed>) = 0 [pid 7196] <... chdir resumed>) = 0 [pid 5034] umount2("./352", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7199 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./357") = 0 [pid 5029] mkdir("./358", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 7198] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7199] set_robust_list(0x55555635e660, 24 [pid 5034] openat(AT_FDCWD, "./352", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7199] <... set_robust_list resumed>) = 0 [pid 7199] chdir("./359" [pid 5034] <... openat resumed>) = 3 [pid 7198] <... prctl resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 7199] <... chdir resumed>) = 0 [pid 7198] setpgid(0, 0 [pid 7196] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7199] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7198] <... setpgid resumed>) = 0 [pid 5034] getdents64(3, ./strace-static-x86_64: Process 7200 attached [pid 7199] <... prctl resumed>) = 0 [pid 7198] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7196] <... ioctl resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7199] setpgid(0, 0 [pid 7200] set_robust_list(0x55555635e660, 24 [pid 7199] <... setpgid resumed>) = 0 [pid 7198] <... openat resumed>) = 3 [pid 7196] close(4 [pid 5034] umount2("./352/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7200 [pid 7198] write(3, "1000", 4) = 4 [pid 7200] <... set_robust_list resumed>) = 0 [pid 7199] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7198] close(3 [pid 7197] <... write resumed>) = 2097152 [pid 7196] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7200] chdir("./358" [pid 7199] <... openat resumed>) = 3 [pid 7198] <... close resumed>) = 0 [pid 7196] exit_group(0 [pid 7200] <... chdir resumed>) = 0 [pid 7196] <... exit_group resumed>) = ? [pid 7200] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7198] symlink("/dev/binderfs", "./binderfs" [pid 7196] +++ exited with 0 +++ [pid 7199] write(3, "1000", 4 [pid 5034] newfstatat(AT_FDCWD, "./352/binderfs", [pid 7197] munmap(0x7ff0df171000, 138412032 [pid 7200] <... prctl resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7196, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 7200] setpgid(0, 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7200] <... setpgid resumed>) = 0 [pid 7199] <... write resumed>) = 4 [pid 7200] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7199] close(3 [pid 5034] unlink("./352/binderfs" [pid 7197] <... munmap resumed>) = 0 [pid 7200] <... openat resumed>) = 3 [pid 7199] <... close resumed>) = 0 [pid 7198] <... symlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 7200] write(3, "1000", 4 [pid 7199] symlink("/dev/binderfs", "./binderfs" [pid 7200] <... write resumed>) = 4 [pid 7200] close(3 [pid 7199] <... symlink resumed>) = 0 [pid 5033] umount2("./351", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7200] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7200] symlink("/dev/binderfs", "./binderfs" [pid 5033] openat(AT_FDCWD, "./351", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7200] <... symlink resumed>) = 0 [pid 7198] memfd_create("syzkaller", 0 [pid 5034] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7200] memfd_create("syzkaller", 0 [pid 7199] memfd_create("syzkaller", 0 [pid 7197] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", [pid 7199] <... memfd_create resumed>) = 3 [pid 7197] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7200] <... memfd_create resumed>) = 3 [pid 7199] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7197] ioctl(4, LOOP_SET_FD, 3 [pid 5033] getdents64(3, [pid 7199] <... mmap resumed>) = 0x7ff0df171000 [pid 7200] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7198] <... memfd_create resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7198] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] umount2("./351/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7198] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./351/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./351/binderfs") = 0 [pid 5033] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7197] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7197] close(3) = 0 [ 294.109787][ T7197] loop3: detected capacity change from 0 to 4096 [pid 7197] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7197] <... mkdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./352/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7197] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = 0 [pid 7199] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./352/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 7200] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7198] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(AT_FDCWD, "./351/file0", [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./351/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(4) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./352/file0" [pid 5033] openat(AT_FDCWD, "./351/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [ 294.190475][ T7197] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5033] newfstatat(4, "", [pid 5034] getdents64(3, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 7197] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5033] rmdir("./351/file0" [pid 7197] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./352") = 0 [pid 7197] <... openat resumed>) = 3 [pid 7197] chdir("./file0" [pid 5034] mkdir("./353", 0777 [pid 7197] <... chdir resumed>) = 0 [pid 7197] ioctl(4, LOOP_CLR_FD [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7197] <... ioctl resumed>) = 0 [pid 7197] close(4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./351" [pid 7199] <... write resumed>) = 2097152 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./352", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = 0 [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7197] <... close resumed>) = 0 [pid 7199] munmap(0x7ff0df171000, 138412032 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 7197] exit_group(0./strace-static-x86_64: Process 7201 attached ) = ? [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7201] set_robust_list(0x55555635e660, 24 [pid 7199] <... munmap resumed>) = 0 [pid 7197] +++ exited with 0 +++ [pid 7200] <... write resumed>) = 2097152 [pid 7199] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7198] <... write resumed>) = 2097152 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7201 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7197, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- ./strace-static-x86_64: Process 7202 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7202 [pid 7202] set_robust_list(0x55555635e660, 24 [pid 7199] <... openat resumed>) = 4 [pid 7201] <... set_robust_list resumed>) = 0 [pid 7199] ioctl(4, LOOP_SET_FD, 3 [pid 5032] umount2("./360", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7201] chdir("./352" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7201] <... chdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./360", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7201] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... openat resumed>) = 3 [pid 7201] <... prctl resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 7201] setpgid(0, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7201] <... setpgid resumed>) = 0 [pid 5032] getdents64(3, [pid 7201] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./360/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7201] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./360/binderfs", [pid 7202] <... set_robust_list resumed>) = 0 [pid 7201] write(3, "1000", 4 [pid 7198] munmap(0x7ff0df171000, 138412032 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7201] <... write resumed>) = 4 [pid 7201] close(3 [pid 5032] unlink("./360/binderfs" [pid 7201] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 7201] symlink("/dev/binderfs", "./binderfs" [pid 5032] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7202] chdir("./353" [pid 7201] <... symlink resumed>) = 0 [pid 7202] <... chdir resumed>) = 0 [pid 7201] memfd_create("syzkaller", 0 [pid 7198] <... munmap resumed>) = 0 [pid 7202] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7202] setpgid(0, 0) = 0 [pid 7198] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7202] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7201] <... memfd_create resumed>) = 3 [pid 7198] <... openat resumed>) = 4 [pid 7202] write(3, "1000", 4 [pid 7201] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7199] <... ioctl resumed>) = 0 [pid 7198] ioctl(4, LOOP_SET_FD, 3 [pid 7202] <... write resumed>) = 4 [pid 7201] <... mmap resumed>) = 0x7ff0df171000 [pid 7200] munmap(0x7ff0df171000, 138412032) = 0 [pid 7200] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7202] close(3 [pid 7200] ioctl(4, LOOP_SET_FD, 3 [pid 7199] close(3 [pid 7202] <... close resumed>) = 0 [pid 7199] <... close resumed>) = 0 [pid 7198] <... ioctl resumed>) = 0 [pid 7199] mkdir("./file0", 0777 [pid 7198] close(3 [pid 7199] <... mkdir resumed>) = 0 [pid 7198] <... close resumed>) = 0 [pid 7202] symlink("/dev/binderfs", "./binderfs" [pid 7199] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 294.294835][ T7199] loop2: detected capacity change from 0 to 4096 [ 294.323878][ T7198] loop1: detected capacity change from 0 to 4096 [ 294.333413][ T7200] loop0: detected capacity change from 0 to 4096 [pid 7198] mkdir("./file0", 0777) = 0 [pid 7202] <... symlink resumed>) = 0 [pid 7200] <... ioctl resumed>) = 0 [pid 7200] close(3 [pid 7202] memfd_create("syzkaller", 0 [pid 7200] <... close resumed>) = 0 [pid 7198] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7200] mkdir("./file0", 0777) = 0 [pid 5032] <... umount2 resumed>) = 0 [ 294.349985][ T7199] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 294.382419][ T7198] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7200] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7202] <... memfd_create resumed>) = 3 [pid 7202] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7199] <... mount resumed>) = 0 [pid 7202] <... mmap resumed>) = 0x7ff0df171000 [pid 7199] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7199] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./360/file0", [pid 7199] chdir("./file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7199] <... chdir resumed>) = 0 [pid 5032] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./360/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7199] ioctl(4, LOOP_CLR_FD [pid 5032] <... openat resumed>) = 4 [pid 7199] <... ioctl resumed>) = 0 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7199] close(4 [pid 5032] getdents64(4, [pid 7199] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, [pid 7199] exit_group(0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7199] <... exit_group resumed>) = ? [pid 5032] close(4) = 0 [pid 5032] rmdir("./360/file0") = 0 [pid 5032] getdents64(3, [pid 7201] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./360") = 0 [pid 5032] mkdir("./361", 0777) = 0 [ 294.404300][ T7200] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7199] +++ exited with 0 +++ [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 7198] <... mount resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 7198] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7199, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- ./strace-static-x86_64: Process 7203 attached [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7203] set_robust_list(0x55555635e660, 24 [pid 7198] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7203 [pid 7203] <... set_robust_list resumed>) = 0 [pid 7198] chdir("./file0" [pid 7203] chdir("./361" [pid 7198] <... chdir resumed>) = 0 [pid 7203] <... chdir resumed>) = 0 [pid 7198] ioctl(4, LOOP_CLR_FD [pid 7203] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7198] <... ioctl resumed>) = 0 [pid 5031] umount2("./359", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7203] <... prctl resumed>) = 0 [pid 7200] <... mount resumed>) = 0 [pid 7198] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7203] setpgid(0, 0 [pid 7198] <... close resumed>) = 0 [pid 7202] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "./359", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7200] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7198] exit_group(0 [pid 7200] <... openat resumed>) = 3 [pid 7200] chdir("./file0") = 0 [pid 7200] ioctl(4, LOOP_CLR_FD [pid 7203] <... setpgid resumed>) = 0 [pid 7200] <... ioctl resumed>) = 0 [pid 7203] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7200] close(4 [pid 7198] <... exit_group resumed>) = ? [pid 7203] <... openat resumed>) = 3 [pid 7200] <... close resumed>) = 0 [pid 7203] write(3, "1000", 4 [pid 7200] exit_group(0 [pid 7203] <... write resumed>) = 4 [pid 7200] <... exit_group resumed>) = ? [pid 7203] close(3 [pid 7200] +++ exited with 0 +++ [pid 7203] <... close resumed>) = 0 [pid 7203] symlink("/dev/binderfs", "./binderfs" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7200, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 7203] <... symlink resumed>) = 0 [pid 7203] memfd_create("syzkaller", 0 [pid 5029] umount2("./358", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./358", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7198] +++ exited with 0 +++ [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./358/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./358/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./358/binderfs") = 0 [pid 7203] <... memfd_create resumed>) = 3 [pid 7203] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7203] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7198, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./360", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./359/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./360", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 7201] <... write resumed>) = 2097152 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] newfstatat(AT_FDCWD, "./359/binderfs", [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7201] munmap(0x7ff0df171000, 138412032 [pid 5030] umount2("./360/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./359/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./360/binderfs", [pid 7201] <... munmap resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./360/binderfs" [pid 7201] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5030] <... unlink resumed>) = 0 [pid 7201] ioctl(4, LOOP_SET_FD, 3 [pid 7202] <... write resumed>) = 2097152 [pid 5030] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7202] munmap(0x7ff0df171000, 138412032 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 7201] <... ioctl resumed>) = 0 [pid 7201] close(3) = 0 [pid 7201] mkdir("./file0", 0777 [pid 7202] <... munmap resumed>) = 0 [pid 7201] <... mkdir resumed>) = 0 [pid 5031] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./359/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7201] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7202] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./359/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7202] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 4 [pid 7202] ioctl(4, LOOP_SET_FD, 3 [pid 5029] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./358/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(4, "", [pid 5029] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 294.574254][ T7201] loop4: detected capacity change from 0 to 4096 [ 294.610005][ T7201] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] openat(AT_FDCWD, "./358/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7202] <... ioctl resumed>) = 0 [pid 5029] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./358/file0") = 0 [pid 5031] getdents64(4, [pid 7203] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./358") = 0 [pid 5029] mkdir("./359", 0777) = 0 [pid 5031] getdents64(4, [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 7204 attached [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7204 [pid 7204] set_robust_list(0x55555635e660, 24) = 0 [pid 7204] chdir("./359") = 0 [pid 7204] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] close(4 [pid 7204] <... prctl resumed>) = 0 [pid 7202] close(3 [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7202] <... close resumed>) = 0 [pid 5031] rmdir("./359/file0" [pid 7202] mkdir("./file0", 0777 [pid 7204] setpgid(0, 0) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 7204] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7202] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 7204] <... openat resumed>) = 3 [pid 7202] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 5030] newfstatat(AT_FDCWD, "./360/file0", [pid 5031] <... close resumed>) = 0 [pid 7204] write(3, "1000", 4 [pid 5031] rmdir("./359" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 294.623460][ T7202] loop5: detected capacity change from 0 to 4096 [pid 7204] <... write resumed>) = 4 [pid 7204] close(3) = 0 [pid 7204] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7204] memfd_create("syzkaller", 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./360", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7204] <... memfd_create resumed>) = 3 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./360/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5030] <... openat resumed>) = 4 [pid 7204] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] newfstatat(4, "", [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7204] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] getdents64(4, ./strace-static-x86_64: Process 7205 attached [pid 7203] <... write resumed>) = 2097152 [pid 7201] <... mount resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7205] set_robust_list(0x55555635e660, 24 [pid 7201] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7205 [pid 5030] getdents64(4, [pid 7205] <... set_robust_list resumed>) = 0 [pid 7201] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7205] chdir("./360" [pid 7201] chdir("./file0" [pid 5030] close(4 [pid 7205] <... chdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [ 294.679473][ T7202] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7205] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7201] <... chdir resumed>) = 0 [pid 5030] rmdir("./360/file0" [pid 7205] <... prctl resumed>) = 0 [pid 7201] ioctl(4, LOOP_CLR_FD [pid 7205] setpgid(0, 0 [pid 7201] <... ioctl resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 7205] <... setpgid resumed>) = 0 [pid 7201] close(4 [pid 7205] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7201] <... close resumed>) = 0 [pid 7201] exit_group(0 [pid 7205] <... openat resumed>) = 3 [pid 7201] <... exit_group resumed>) = ? [pid 5030] getdents64(3, [pid 7203] munmap(0x7ff0df171000, 138412032 [pid 7205] write(3, "1000", 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7205] <... write resumed>) = 4 [pid 5030] close(3 [pid 7205] close(3 [pid 7201] +++ exited with 0 +++ [pid 5030] <... close resumed>) = 0 [pid 7205] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7201, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] rmdir("./360" [pid 7203] <... munmap resumed>) = 0 [pid 7203] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 7203] ioctl(4, LOOP_SET_FD, 3 [pid 7205] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./361", 0777 [pid 7205] <... symlink resumed>) = 0 [pid 7204] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... mkdir resumed>) = 0 [pid 7203] <... ioctl resumed>) = 0 [pid 7203] close(3) = 0 [pid 7203] mkdir("./file0", 0777) = 0 [pid 7203] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7205] memfd_create("syzkaller", 0 [pid 5033] umount2("./352", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7205] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./352", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 7205] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] newfstatat(3, "", [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] getdents64(3, [pid 5030] close(3) = 0 [pid 7205] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7206 attached [pid 5033] umount2("./352/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7206 [pid 7206] set_robust_list(0x55555635e660, 24 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7206] <... set_robust_list resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./352/binderfs", [pid 7206] chdir("./361" [pid 7202] <... mount resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7206] <... chdir resumed>) = 0 [pid 5033] unlink("./352/binderfs") = 0 [pid 5033] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7202] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7202] chdir("./file0" [pid 7206] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7202] <... chdir resumed>) = 0 [pid 7202] ioctl(4, LOOP_CLR_FD [pid 7206] <... prctl resumed>) = 0 [pid 7202] <... ioctl resumed>) = 0 [pid 7206] setpgid(0, 0 [ 294.765117][ T7203] loop3: detected capacity change from 0 to 4096 [ 294.791470][ T7203] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7202] close(4 [pid 7206] <... setpgid resumed>) = 0 [pid 7202] <... close resumed>) = 0 [pid 7202] exit_group(0 [pid 7206] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7202] <... exit_group resumed>) = ? [pid 7202] +++ exited with 0 +++ [pid 7206] <... openat resumed>) = 3 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7202, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 7206] write(3, "1000", 4 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 7206] <... write resumed>) = 4 [pid 5034] <... restart_syscall resumed>) = 0 [pid 7206] close(3) = 0 [pid 5034] umount2("./353", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7203] <... mount resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./353", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7206] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... openat resumed>) = 3 [pid 7203] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7206] <... symlink resumed>) = 0 [pid 7203] <... openat resumed>) = 3 [pid 7203] chdir("./file0") = 0 [pid 7203] ioctl(4, LOOP_CLR_FD [pid 5034] newfstatat(3, "", [pid 7203] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7203] close(4 [pid 5034] getdents64(3, [pid 7203] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7203] exit_group(0) = ? [pid 7206] memfd_create("syzkaller", 0 [pid 7203] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7203, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5032] umount2("./361", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./353/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./361", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./353/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 5034] unlink("./353/binderfs" [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./361/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7206] <... memfd_create resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./352/file0", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./361/binderfs", [pid 7206] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7206] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./352/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] unlink("./361/binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... unlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./352/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7204] <... write resumed>) = 2097152 [pid 7204] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7204] <... munmap resumed>) = 0 [pid 7204] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7204] ioctl(4, LOOP_SET_FD, 3 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./352/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./352") = 0 [pid 5033] mkdir("./353", 0777 [pid 7205] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./353/file0", [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7204] <... ioctl resumed>) = 0 [pid 7204] close(3) = 0 [pid 7204] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... openat resumed>) = 3 [pid 7204] <... mkdir resumed>) = 0 [pid 5034] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5034] openat(AT_FDCWD, "./353/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 294.922689][ T7204] loop0: detected capacity change from 0 to 4096 [pid 7206] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7204] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(4, "", [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] close(3 [pid 5034] getdents64(4, [pid 5033] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... umount2 resumed>) = 0 [pid 5034] getdents64(4, ./strace-static-x86_64: Process 7207 attached 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 7207] set_robust_list(0x55555635e660, 24 [pid 5034] <... close resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7207 [pid 7205] <... write resumed>) = 2097152 [pid 5034] rmdir("./353/file0" [pid 7207] <... set_robust_list resumed>) = 0 [pid 5032] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] <... rmdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./361/file0", [pid 7207] chdir("./353" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./361/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7207] <... chdir resumed>) = 0 [pid 5034] getdents64(3, [pid 7207] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7207] <... prctl resumed>) = 0 [pid 5034] close(3 [pid 5032] getdents64(4, [pid 5034] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./361/file0") = 0 [pid 7207] setpgid(0, 0 [pid 7205] munmap(0x7ff0df171000, 138412032 [pid 7207] <... setpgid resumed>) = 0 [pid 5034] rmdir("./353") = 0 [pid 7207] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(3, [pid 7207] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7207] write(3, "1000", 4 [pid 5034] mkdir("./354", 0777 [pid 5032] close(3 [pid 7207] <... write resumed>) = 4 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 7207] close(3 [pid 7205] <... munmap resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [ 295.002420][ T7204] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5032] rmdir("./361" [pid 7207] <... close resumed>) = 0 [pid 7206] <... write resumed>) = 2097152 [pid 7205] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./362", 0777) = 0 [pid 7207] symlink("/dev/binderfs", "./binderfs" [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7206] munmap(0x7ff0df171000, 138412032 [pid 5032] close(3 [pid 7207] <... symlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 7205] <... openat resumed>) = 4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7205] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 7208 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7208 [pid 7208] set_robust_list(0x55555635e660, 24) = 0 [pid 7208] chdir("./362") = 0 [pid 7208] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7208] setpgid(0, 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7208] <... setpgid resumed>) = 0 [pid 7207] memfd_create("syzkaller", 0 [pid 7206] <... munmap resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7208] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7208] write(3, "1000", 4) = 4 [pid 5034] close(3 [pid 7208] close(3) = 0 [pid 7208] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... close resumed>) = 0 [pid 7207] <... memfd_create resumed>) = 3 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7208] <... symlink resumed>) = 0 [pid 7207] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7206] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7205] <... ioctl resumed>) = 0 [pid 7207] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7209 ./strace-static-x86_64: Process 7209 attached [pid 7206] <... openat resumed>) = 4 [pid 7209] set_robust_list(0x55555635e660, 24 [pid 7208] memfd_create("syzkaller", 0 [pid 7206] ioctl(4, LOOP_SET_FD, 3 [pid 7205] close(3) = 0 [pid 7205] mkdir("./file0", 0777 [pid 7209] <... set_robust_list resumed>) = 0 [pid 7208] <... memfd_create resumed>) = 3 [pid 7209] chdir("./354" [pid 7208] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7209] <... chdir resumed>) = 0 [pid 7209] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7209] setpgid(0, 0) = 0 [pid 7205] <... mkdir resumed>) = 0 [pid 7209] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7204] <... mount resumed>) = 0 [pid 7204] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7204] chdir("./file0") = 0 [pid 7204] ioctl(4, LOOP_CLR_FD) = 0 [pid 7204] close(4) = 0 [pid 7204] exit_group(0) = ? [ 295.081227][ T7205] loop2: detected capacity change from 0 to 4096 [ 295.115977][ T7206] loop1: detected capacity change from 0 to 4096 [pid 7205] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7209] <... openat resumed>) = 3 [pid 7204] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7204, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5029] umount2("./359", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./359", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7209] write(3, "1000", 4 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 7209] <... write resumed>) = 4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7209] close(3 [pid 5029] umount2("./359/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./359/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7209] <... close resumed>) = 0 [pid 5029] unlink("./359/binderfs" [pid 7209] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... unlink resumed>) = 0 [pid 7209] <... symlink resumed>) = 0 [pid 5029] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7206] <... ioctl resumed>) = 0 [pid 7206] close(3) = 0 [pid 7206] mkdir("./file0", 0777) = 0 [pid 7206] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7209] memfd_create("syzkaller", 0) = 3 [pid 7209] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7207] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7205] <... mount resumed>) = 0 [pid 7205] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] <... umount2 resumed>) = 0 [pid 7205] <... openat resumed>) = 3 [ 295.143140][ T7205] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 295.167228][ T7206] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7205] chdir("./file0") = 0 [pid 7205] ioctl(4, LOOP_CLR_FD) = 0 [pid 7205] close(4) = 0 [pid 7208] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7205] exit_group(0 [pid 5029] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./359/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./359/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 7205] <... exit_group resumed>) = ? [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 7205] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7205, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] rmdir("./359/file0" [pid 5031] umount2("./360", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./360", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./360/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./360/binderfs", [pid 7207] <... write resumed>) = 2097152 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(3, [pid 5031] unlink("./360/binderfs" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./359" [pid 5031] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./360", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7207] munmap(0x7ff0df171000, 138412032 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7210 [pid 7207] <... munmap resumed>) = 0 ./strace-static-x86_64: Process 7210 attached [pid 7207] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 7210] set_robust_list(0x55555635e660, 24) = 0 [pid 7210] chdir("./360") = 0 [pid 7207] ioctl(4, LOOP_SET_FD, 3 [pid 7209] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7210] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7210] setpgid(0, 0) = 0 [pid 7210] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7210] write(3, "1000", 4) = 4 [pid 7210] close(3) = 0 [pid 7210] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 7207] <... ioctl resumed>) = 0 [pid 7207] close(3 [pid 5031] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7210] memfd_create("syzkaller", 0 [pid 7207] <... close resumed>) = 0 [pid 7206] <... mount resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7210] <... memfd_create resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./360/file0", [pid 7207] mkdir("./file0", 0777 [pid 7210] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7208] <... write resumed>) = 2097152 [pid 7207] <... mkdir resumed>) = 0 [pid 7206] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 295.308314][ T7207] loop4: detected capacity change from 0 to 4096 [pid 7208] munmap(0x7ff0df171000, 138412032 [pid 7207] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7206] <... openat resumed>) = 3 [pid 7210] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7206] chdir("./file0" [pid 7208] <... munmap resumed>) = 0 [pid 7206] <... chdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7206] ioctl(4, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./360/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7206] <... ioctl resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 7206] close(4 [pid 5031] newfstatat(4, "", [pid 7206] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7208] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 7208] ioctl(4, LOOP_SET_FD, 3 [pid 5031] getdents64(4, [pid 7206] exit_group(0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7206] <... exit_group resumed>) = ? [pid 5031] getdents64(4, [pid 7206] +++ exited with 0 +++ [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7206, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] umount2("./361", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./360/file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./361", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5031] getdents64(3, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./361/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./361/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./361/binderfs") = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./360" [pid 5030] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./361", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./361/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7209] <... write resumed>) = 2097152 [ 295.369308][ T7207] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5030] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7210] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7209] munmap(0x7ff0df171000, 138412032 [pid 7208] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7211 attached [pid 7209] <... munmap resumed>) = 0 [pid 7208] close(3 [pid 5030] openat(AT_FDCWD, "./361/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7211] set_robust_list(0x55555635e660, 24 [pid 7208] <... close resumed>) = 0 [pid 7208] mkdir("./file0", 0777 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7211 [pid 5030] <... openat resumed>) = 4 [pid 7208] <... mkdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7208] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7211] <... set_robust_list resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7211] chdir("./361") = 0 [pid 7209] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7211] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7209] <... openat resumed>) = 4 [pid 7211] setpgid(0, 0) = 0 [pid 7209] ioctl(4, LOOP_SET_FD, 3 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./361/file0") = 0 [pid 7211] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7209] <... ioctl resumed>) = 0 [pid 7207] <... mount resumed>) = 0 [pid 5030] getdents64(3, [pid 7211] write(3, "1000", 4 [pid 7209] close(3 [pid 7211] <... write resumed>) = 4 [pid 7209] <... close resumed>) = 0 [pid 7211] close(3 [pid 7209] mkdir("./file0", 0777 [pid 7211] <... close resumed>) = 0 [pid 7211] symlink("/dev/binderfs", "./binderfs" [pid 7207] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7211] <... symlink resumed>) = 0 [pid 7207] <... openat resumed>) = 3 [pid 5030] close(3 [pid 7211] memfd_create("syzkaller", 0 [pid 7210] <... write resumed>) = 2097152 [pid 7209] <... mkdir resumed>) = 0 [pid 7207] chdir("./file0" [pid 5030] <... close resumed>) = 0 [pid 7207] <... chdir resumed>) = 0 [pid 5030] rmdir("./361" [pid 7211] <... memfd_create resumed>) = 3 [pid 7209] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7207] ioctl(4, LOOP_CLR_FD [pid 7210] munmap(0x7ff0df171000, 138412032 [pid 5030] <... rmdir resumed>) = 0 [pid 7211] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7207] <... ioctl resumed>) = 0 [ 295.428076][ T7208] loop3: detected capacity change from 0 to 4096 [ 295.455923][ T7208] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 295.467813][ T7209] loop5: detected capacity change from 0 to 4096 [pid 5030] mkdir("./362", 0777 [pid 7207] close(4) = 0 [pid 7207] exit_group(0) = ? [pid 5030] <... mkdir resumed>) = 0 [pid 7210] <... munmap resumed>) = 0 [pid 7207] +++ exited with 0 +++ [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7211] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7207, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5030] <... openat resumed>) = 3 [pid 5033] umount2("./353", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] openat(AT_FDCWD, "./353", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] close(3 [pid 7210] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5033] newfstatat(3, "", [pid 5030] <... close resumed>) = 0 [pid 7210] <... openat resumed>) = 4 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7212 attached [pid 7210] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7212] set_robust_list(0x55555635e660, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7212 [ 295.506512][ T7209] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 295.535647][ T7210] loop0: detected capacity change from 0 to 4096 [pid 7212] <... set_robust_list resumed>) = 0 [pid 7210] <... ioctl resumed>) = 0 [pid 5033] getdents64(3, [pid 7212] chdir("./362" [pid 7210] close(3 [pid 7208] <... mount resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7212] <... chdir resumed>) = 0 [pid 7210] <... close resumed>) = 0 [pid 5033] umount2("./353/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7210] mkdir("./file0", 0777 [pid 7208] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7208] chdir("./file0") = 0 [pid 7210] <... mkdir resumed>) = 0 [pid 7210] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7208] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7208] <... ioctl resumed>) = 0 [pid 7208] close(4) = 0 [pid 7208] exit_group(0) = ? [pid 7208] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7208, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 5033] newfstatat(AT_FDCWD, "./353/binderfs", [pid 7212] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./362", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7212] <... prctl resumed>) = 0 [pid 5033] unlink("./353/binderfs" [pid 7212] setpgid(0, 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... unlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./362", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7212] <... setpgid resumed>) = 0 [pid 7212] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7211] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 7212] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 7212] write(3, "1000", 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7212] <... write resumed>) = 4 [pid 5032] getdents64(3, [pid 7212] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7212] <... close resumed>) = 0 [pid 5032] umount2("./362/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7212] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./362/binderfs", [pid 7212] <... symlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7212] memfd_create("syzkaller", 0 [pid 5032] unlink("./362/binderfs") = 0 [pid 5032] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7212] <... memfd_create resumed>) = 3 [pid 7209] <... mount resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 7209] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 295.557871][ T7210] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7212] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] newfstatat(AT_FDCWD, "./353/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7209] <... openat resumed>) = 3 [pid 7209] chdir("./file0") = 0 [pid 5033] umount2("./353/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7209] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7209] <... ioctl resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./353/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7209] close(4 [pid 5033] <... openat resumed>) = 4 [pid 7209] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 7209] exit_group(0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7209] <... exit_group resumed>) = ? [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7209] +++ exited with 0 +++ [pid 5033] getdents64(4, [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7209, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5034] umount2("./354", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./353/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./354", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 5033] <... rmdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, [pid 5034] getdents64(3, [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] close(3 [pid 5034] umount2("./354/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./354/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./354/binderfs") = 0 [pid 5034] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7211] <... write resumed>) = 2097152 [pid 5033] rmdir("./353" [pid 5032] <... umount2 resumed>) = 0 [pid 7211] munmap(0x7ff0df171000, 138412032 [pid 7210] <... mount resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7211] <... munmap resumed>) = 0 [pid 5033] mkdir("./354", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7210] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] newfstatat(AT_FDCWD, "./362/file0", [pid 7210] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 7210] chdir("./file0" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7210] <... chdir resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7211] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7210] ioctl(4, LOOP_CLR_FD [pid 5033] close(3 [pid 5032] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7211] <... openat resumed>) = 4 [pid 7210] <... ioctl resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] openat(AT_FDCWD, "./362/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7211] ioctl(4, LOOP_SET_FD, 3 [pid 7210] close(4 [pid 7211] <... ioctl resumed>) = 0 [pid 7210] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 7210] exit_group(0 [pid 5032] newfstatat(4, "", ./strace-static-x86_64: Process 7213 attached [pid 7211] close(3 [pid 7210] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7213 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7213] set_robust_list(0x55555635e660, 24) = 0 [pid 7213] chdir("./354") = 0 [pid 7213] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7210] +++ exited with 0 +++ [pid 5032] getdents64(4, [pid 7213] <... prctl resumed>) = 0 [pid 7213] setpgid(0, 0) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7210, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7213] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7213] <... openat resumed>) = 3 [pid 5029] <... restart_syscall resumed>) = 0 [pid 7213] write(3, "1000", 4) = 4 [pid 7211] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7213] close(3 [pid 7212] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7211] mkdir("./file0", 0777 [pid 5034] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./360", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7213] <... close resumed>) = 0 [pid 7211] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7213] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] openat(AT_FDCWD, "./360", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7213] <... symlink resumed>) = 0 [pid 5032] close(4 [pid 5029] <... openat resumed>) = 3 [pid 7213] memfd_create("syzkaller", 0 [pid 7211] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] newfstatat(AT_FDCWD, "./354/file0", [pid 5032] <... close resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 7213] <... memfd_create resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] rmdir("./362/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7213] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 7213] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] getdents64(3, [pid 5029] umount2("./360/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 295.715482][ T7211] loop2: detected capacity change from 0 to 4096 [pid 5034] openat(AT_FDCWD, "./354/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(3 [pid 5029] newfstatat(AT_FDCWD, "./360/binderfs", [pid 5032] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./360/binderfs") = 0 [pid 5029] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 5032] rmdir("./362" [pid 5029] <... umount2 resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] mkdir("./363", 0777 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... mkdir resumed>) = 0 [pid 5029] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7212] <... write resumed>) = 2097152 [pid 5034] getdents64(4, [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [ 295.763249][ T7211] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 7212] munmap(0x7ff0df171000, 138412032 [pid 5029] newfstatat(AT_FDCWD, "./360/file0", [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7213] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7212] <... munmap resumed>) = 0 [pid 5034] close(4 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] close(3) = 0 [pid 5029] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./360/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./360/file0") = 0 ./strace-static-x86_64: Process 7214 attached [pid 7212] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7211] <... mount resumed>) = 0 [pid 5034] rmdir("./354/file0" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7214 [pid 5029] getdents64(3, [pid 7214] set_robust_list(0x55555635e660, 24 [pid 7212] <... openat resumed>) = 4 [pid 7211] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 7214] <... set_robust_list resumed>) = 0 [pid 7212] ioctl(4, LOOP_SET_FD, 3 [pid 7211] <... openat resumed>) = 3 [pid 5034] getdents64(3, [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7214] chdir("./363" [pid 7211] chdir("./file0" [pid 5029] close(3 [pid 7211] <... chdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7211] ioctl(4, LOOP_CLR_FD [pid 5029] rmdir("./360" [pid 7211] <... ioctl resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7211] close(4 [pid 5029] mkdir("./361", 0777 [pid 7214] <... chdir resumed>) = 0 [pid 7211] <... close resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 7214] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7214] <... prctl resumed>) = 0 [pid 7212] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 7214] setpgid(0, 0) = 0 [pid 5034] <... close resumed>) = 0 [pid 7214] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] rmdir("./354" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7212] close(3 [pid 7211] exit_group(0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7212] <... close resumed>) = 0 [pid 5034] mkdir("./355", 0777 [pid 5029] <... ioctl resumed>) = 0 [pid 7212] mkdir("./file0", 0777 [pid 5029] close(3 [pid 7211] <... exit_group resumed>) = ? [pid 7214] <... openat resumed>) = 3 [pid 7212] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7214] write(3, "1000", 4 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7214] <... write resumed>) = 4 [pid 5034] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 7215 attached [pid 7211] +++ exited with 0 +++ [pid 7215] set_robust_list(0x55555635e660, 24 [pid 7214] close(3 [pid 7212] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7215 [pid 7213] <... write resumed>) = 2097152 [pid 7215] <... set_robust_list resumed>) = 0 [pid 7214] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7211, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [ 295.859598][ T7212] loop1: detected capacity change from 0 to 4096 [pid 7215] chdir("./361") = 0 [pid 5031] umount2("./361", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7215] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] openat(AT_FDCWD, "./361", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7215] <... prctl resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 7215] setpgid(0, 0 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 7215] <... setpgid resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7215] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] umount2("./361/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7215] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./361/binderfs", [pid 7215] write(3, "1000", 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7215] <... write resumed>) = 4 [pid 5031] unlink("./361/binderfs" [pid 7215] close(3 [pid 5031] <... unlink resumed>) = 0 [pid 7215] <... close resumed>) = 0 [pid 5031] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7215] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7213] munmap(0x7ff0df171000, 138412032 [pid 7215] memfd_create("syzkaller", 0 [pid 7214] symlink("/dev/binderfs", "./binderfs" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7215] <... memfd_create resumed>) = 3 [pid 7214] <... symlink resumed>) = 0 [pid 7213] <... munmap resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 7213] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... close resumed>) = 0 [ 295.905783][ T7212] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7214] memfd_create("syzkaller", 0 [pid 7213] <... openat resumed>) = 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7213] ioctl(4, LOOP_SET_FD, 3 [pid 7215] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... umount2 resumed>) = 0 [pid 7215] <... mmap resumed>) = 0x7ff0df171000 ./strace-static-x86_64: Process 7216 attached [pid 7214] <... memfd_create resumed>) = 3 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7216 [pid 5031] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7214] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./361/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./361/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", [pid 7216] set_robust_list(0x55555635e660, 24 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7216] <... set_robust_list resumed>) = 0 [pid 5031] getdents64(4, [pid 7216] chdir("./355" [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7216] <... chdir resumed>) = 0 [pid 5031] getdents64(4, [pid 7216] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7216] <... prctl resumed>) = 0 [pid 7213] <... ioctl resumed>) = 0 [pid 5031] close(4 [pid 7216] setpgid(0, 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./361/file0" [pid 7213] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 7216] <... setpgid resumed>) = 0 [pid 7213] <... close resumed>) = 0 [pid 5031] getdents64(3, [pid 7216] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7213] mkdir("./file0", 0777 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7216] <... openat resumed>) = 3 [pid 7213] <... mkdir resumed>) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./361") = 0 [pid 5031] mkdir("./362", 0777 [pid 7216] write(3, "1000", 4 [ 295.958651][ T7213] loop4: detected capacity change from 0 to 4096 [pid 7213] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7216] <... write resumed>) = 4 [pid 7216] close(3) = 0 [pid 7216] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7217 attached [pid 7216] <... symlink resumed>) = 0 [pid 7212] <... mount resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7217 [pid 7217] set_robust_list(0x55555635e660, 24 [pid 7216] memfd_create("syzkaller", 0 [pid 7212] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7217] <... set_robust_list resumed>) = 0 [pid 7212] <... openat resumed>) = 3 [pid 7217] chdir("./362" [pid 7212] chdir("./file0" [pid 7217] <... chdir resumed>) = 0 [pid 7216] <... memfd_create resumed>) = 3 [pid 7217] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7216] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7212] <... chdir resumed>) = 0 [pid 7217] <... prctl resumed>) = 0 [pid 7216] <... mmap resumed>) = 0x7ff0df171000 [pid 7212] ioctl(4, LOOP_CLR_FD [pid 7217] setpgid(0, 0) = 0 [ 296.005916][ T7213] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7217] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7217] write(3, "1000", 4) = 4 [pid 7217] close(3) = 0 [pid 7217] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7212] <... ioctl resumed>) = 0 [pid 7217] memfd_create("syzkaller", 0 [pid 7212] close(4 [pid 7217] <... memfd_create resumed>) = 3 [pid 7215] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7212] <... close resumed>) = 0 [pid 7217] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7214] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7213] <... mount resumed>) = 0 [pid 7212] exit_group(0 [pid 7213] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7212] <... exit_group resumed>) = ? [pid 7217] <... mmap resumed>) = 0x7ff0df171000 [pid 7213] <... openat resumed>) = 3 [pid 7213] chdir("./file0" [pid 7212] +++ exited with 0 +++ [pid 7213] <... chdir resumed>) = 0 [pid 7213] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7212, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 7213] close(4) = 0 [pid 5030] umount2("./362", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./362", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./362/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7213] exit_group(0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./362/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./362/binderfs" [pid 7213] <... exit_group resumed>) = ? [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7215] <... write resumed>) = 2097152 [pid 7214] <... write resumed>) = 2097152 [pid 7213] +++ exited with 0 +++ [pid 7214] munmap(0x7ff0df171000, 138412032 [pid 7215] munmap(0x7ff0df171000, 138412032 [pid 7214] <... munmap resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7213, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5033] umount2("./354", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7216] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7214] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] openat(AT_FDCWD, "./354", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7214] <... openat resumed>) = 4 [pid 5033] <... openat resumed>) = 3 [pid 7214] ioctl(4, LOOP_SET_FD, 3 [pid 5033] newfstatat(3, "", [pid 7215] <... munmap resumed>) = 0 [pid 7215] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7215] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7217] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] getdents64(3, [pid 7214] <... ioctl resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./354/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7214] close(3) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7214] mkdir("./file0", 0777 [pid 5033] newfstatat(AT_FDCWD, "./354/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./354/binderfs" [pid 7214] <... mkdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7214] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7215] <... ioctl resumed>) = 0 [ 296.204553][ T7214] loop3: detected capacity change from 0 to 4096 [ 296.211860][ T7215] loop0: detected capacity change from 0 to 4096 [pid 7215] close(3) = 0 [pid 7215] mkdir("./file0", 0777) = 0 [pid 7215] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7217] <... write resumed>) = 2097152 [pid 5030] <... umount2 resumed>) = 0 [pid 7217] munmap(0x7ff0df171000, 138412032 [pid 5030] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./362/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./362/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./362/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./362") = 0 [pid 5030] mkdir("./363", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 7217] <... munmap resumed>) = 0 [pid 7216] <... write resumed>) = 2097152 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7218 attached [pid 7218] set_robust_list(0x55555635e660, 24 [pid 7217] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7218 [pid 7217] <... openat resumed>) = 4 [pid 7217] ioctl(4, LOOP_SET_FD, 3 [ 296.254814][ T7214] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 296.258936][ T7215] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7216] munmap(0x7ff0df171000, 138412032 [pid 7218] <... set_robust_list resumed>) = 0 [pid 7218] chdir("./363") = 0 [pid 7218] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7218] setpgid(0, 0) = 0 [pid 7218] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7218] write(3, "1000", 4) = 4 [pid 7216] <... munmap resumed>) = 0 [pid 7218] close(3 [pid 7216] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7218] <... close resumed>) = 0 [pid 7217] <... ioctl resumed>) = 0 [pid 7216] <... openat resumed>) = 4 [pid 7218] symlink("/dev/binderfs", "./binderfs" [pid 7217] close(3 [pid 7216] ioctl(4, LOOP_SET_FD, 3 [pid 7218] <... symlink resumed>) = 0 [pid 7217] <... close resumed>) = 0 [pid 7218] memfd_create("syzkaller", 0 [pid 7217] mkdir("./file0", 0777 [pid 7218] <... memfd_create resumed>) = 3 [pid 7217] <... mkdir resumed>) = 0 [pid 7217] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7218] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] <... umount2 resumed>) = 0 [pid 7216] <... ioctl resumed>) = 0 [pid 7216] close(3) = 0 [pid 7216] mkdir("./file0", 0777) = 0 [pid 7215] <... mount resumed>) = 0 [pid 7215] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7216] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7215] <... openat resumed>) = 3 [ 296.314353][ T7217] loop2: detected capacity change from 0 to 4096 [ 296.330403][ T7216] loop5: detected capacity change from 0 to 4096 [ 296.342171][ T7217] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7215] chdir("./file0" [pid 5033] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7215] <... chdir resumed>) = 0 [pid 7215] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./354/file0", [pid 7215] close(4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7215] <... close resumed>) = 0 [pid 7214] <... mount resumed>) = 0 [pid 5033] umount2("./354/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7215] exit_group(0 [pid 7214] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7215] <... exit_group resumed>) = ? [pid 7214] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "./354/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7215] +++ exited with 0 +++ [pid 5033] getdents64(4, [pid 7214] chdir("./file0" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7215, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=6 /* 0.06 s */} --- [pid 7214] <... chdir resumed>) = 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7214] ioctl(4, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 7214] <... ioctl resumed>) = 0 [pid 5033] close(4 [pid 7214] close(4 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./354/file0" [pid 5029] umount2("./361", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7214] <... close resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7214] exit_group(0 [pid 5033] getdents64(3, [pid 5029] openat(AT_FDCWD, "./361", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7214] <... exit_group resumed>) = ? [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7214] +++ exited with 0 +++ [pid 5033] close(3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7214, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5029] getdents64(3, [pid 5033] <... close resumed>) = 0 [pid 5032] umount2("./363", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] rmdir("./354" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./361/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./363", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./361/binderfs", [pid 5032] newfstatat(3, "", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] mkdir("./355", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] unlink("./361/binderfs" [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... unlink resumed>) = 0 [pid 5032] umount2("./363/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./363/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7218] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] <... mkdir resumed>) = 0 [ 296.364098][ T7216] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 5032] unlink("./363/binderfs") = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5032] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7219 attached [pid 7219] set_robust_list(0x55555635e660, 24) = 0 [pid 7219] chdir("./355" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7219 [pid 7219] <... chdir resumed>) = 0 [pid 7219] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7219] setpgid(0, 0) = 0 [pid 7219] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7217] <... mount resumed>) = 0 [pid 7219] <... openat resumed>) = 3 [pid 7217] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7219] write(3, "1000", 4 [pid 7217] chdir("./file0" [pid 7219] <... write resumed>) = 4 [pid 7219] close(3) = 0 [pid 7219] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7217] <... chdir resumed>) = 0 [pid 7216] <... mount resumed>) = 0 [pid 7219] memfd_create("syzkaller", 0) = 3 [pid 7219] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7217] ioctl(4, LOOP_CLR_FD [pid 7216] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7217] <... ioctl resumed>) = 0 [pid 7216] chdir("./file0") = 0 [pid 7216] ioctl(4, LOOP_CLR_FD) = 0 [pid 7216] close(4) = 0 [pid 7216] exit_group(0 [pid 7217] close(4 [pid 7216] <... exit_group resumed>) = ? [pid 7217] <... close resumed>) = 0 [pid 7216] +++ exited with 0 +++ [pid 7217] exit_group(0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7216, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7218] <... write resumed>) = 2097152 [pid 7217] <... exit_group resumed>) = ? [pid 5029] <... umount2 resumed>) = 0 [pid 5034] umount2("./355", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./355", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7218] munmap(0x7ff0df171000, 138412032 [pid 7217] +++ exited with 0 +++ [pid 5034] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = 0 [pid 5029] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] newfstatat(AT_FDCWD, "./361/file0", [pid 5034] umount2("./355/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7218] <... munmap resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7217, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5029] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./355/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./355/binderfs" [pid 5029] openat(AT_FDCWD, "./361/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7218] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... unlink resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./363/file0", [pid 7218] <... openat resumed>) = 4 [pid 5034] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 7218] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./362", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7219] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(4, "", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./362", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./361/file0" [pid 5031] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./361") = 0 [pid 5029] mkdir("./362", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(3, "", [pid 5032] openat(AT_FDCWD, "./363/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(4, "", [pid 5031] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] getdents64(4, [pid 5031] umount2("./362/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7220 attached [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7220 [pid 5032] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./362/binderfs", [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7220] set_robust_list(0x55555635e660, 24 [pid 5032] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7220] <... set_robust_list resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] unlink("./362/binderfs" [pid 7220] chdir("./362" [pid 5032] rmdir("./363/file0" [pid 5031] <... unlink resumed>) = 0 [pid 7220] <... chdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7220] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] getdents64(3, [pid 7220] setpgid(0, 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7220] <... setpgid resumed>) = 0 [pid 7220] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7218] <... ioctl resumed>) = 0 [pid 5032] close(3 [pid 7220] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 7220] write(3, "1000", 4 [pid 7218] close(3 [pid 5032] rmdir("./363" [pid 7220] <... write resumed>) = 4 [pid 5034] <... umount2 resumed>) = 0 [pid 7220] close(3 [pid 5034] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7220] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7220] symlink("/dev/binderfs", "./binderfs" [pid 5034] newfstatat(AT_FDCWD, "./355/file0", [pid 5032] <... rmdir resumed>) = 0 [pid 7220] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7218] <... close resumed>) = 0 [pid 5034] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] mkdir("./364", 0777 [pid 7220] memfd_create("syzkaller", 0 [pid 7218] mkdir("./file0", 0777 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./355/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 296.544119][ T7218] loop1: detected capacity change from 0 to 4096 [pid 7220] <... memfd_create resumed>) = 3 [pid 7219] <... write resumed>) = 2097152 [pid 7218] <... mkdir resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] <... mkdir resumed>) = 0 [pid 7218] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7220] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5032] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./355/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./355") = 0 [pid 5034] mkdir("./356", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7221 attached [pid 5032] close(3 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7221 [pid 5032] <... close resumed>) = 0 [pid 7221] set_robust_list(0x55555635e660, 24 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7221] <... set_robust_list resumed>) = 0 [pid 7219] munmap(0x7ff0df171000, 138412032 [pid 7221] chdir("./356") = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7222 [pid 7221] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 ./strace-static-x86_64: Process 7222 attached [pid 7221] setpgid(0, 0 [pid 7219] <... munmap resumed>) = 0 [pid 7222] set_robust_list(0x55555635e660, 24 [pid 7221] <... setpgid resumed>) = 0 [pid 7222] <... set_robust_list resumed>) = 0 [pid 7221] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7222] chdir("./364" [pid 7221] <... openat resumed>) = 3 [pid 7222] <... chdir resumed>) = 0 [pid 7221] write(3, "1000", 4 [pid 7222] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7221] <... write resumed>) = 4 [pid 7222] <... prctl resumed>) = 0 [ 296.626576][ T7218] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7221] close(3 [pid 7222] setpgid(0, 0 [pid 7219] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7222] <... setpgid resumed>) = 0 [pid 7221] <... close resumed>) = 0 [pid 7219] <... openat resumed>) = 4 [pid 7222] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7221] symlink("/dev/binderfs", "./binderfs" [pid 7219] ioctl(4, LOOP_SET_FD, 3 [pid 7222] <... openat resumed>) = 3 [pid 7221] <... symlink resumed>) = 0 [pid 7222] write(3, "1000", 4 [pid 7221] memfd_create("syzkaller", 0 [pid 7222] <... write resumed>) = 4 [pid 7222] close(3) = 0 [pid 7221] <... memfd_create resumed>) = 3 [pid 7222] symlink("/dev/binderfs", "./binderfs" [pid 7221] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7222] <... symlink resumed>) = 0 [pid 7221] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = 0 [pid 7222] memfd_create("syzkaller", 0) = 3 [pid 7222] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7219] <... ioctl resumed>) = 0 [pid 5031] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7219] close(3) = 0 [pid 7219] mkdir("./file0", 0777) = 0 [pid 7219] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 296.667371][ T7219] loop4: detected capacity change from 0 to 4096 [pid 5031] newfstatat(AT_FDCWD, "./362/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7220] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "./362/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7218] <... mount resumed>) = 0 [pid 5031] getdents64(4, [pid 7218] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7218] <... openat resumed>) = 3 [pid 5031] getdents64(4, [pid 7218] chdir("./file0" [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 7218] <... chdir resumed>) = 0 [pid 5031] rmdir("./362/file0") = 0 [pid 7218] ioctl(4, LOOP_CLR_FD) = 0 [pid 5031] getdents64(3, [pid 7218] close(4 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7218] <... close resumed>) = 0 [pid 5031] close(3) = 0 [pid 7218] exit_group(0 [pid 5031] rmdir("./362" [pid 7218] <... exit_group resumed>) = ? [ 296.716547][ T7219] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7222] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 7218] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7218, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] umount2("./363", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./363", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", [pid 5031] mkdir("./363", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... openat resumed>) = 3 [pid 5030] umount2("./363/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] newfstatat(AT_FDCWD, "./363/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] close(3 [pid 5030] unlink("./363/binderfs" [pid 5031] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7223 ./strace-static-x86_64: Process 7223 attached [pid 7223] set_robust_list(0x55555635e660, 24) = 0 [pid 7223] chdir("./363") = 0 [pid 7221] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7223] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7223] setpgid(0, 0) = 0 [pid 7223] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7220] <... write resumed>) = 2097152 [pid 7220] munmap(0x7ff0df171000, 138412032) = 0 [pid 7223] write(3, "1000", 4) = 4 [pid 7223] close(3) = 0 [pid 7223] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7220] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7220] ioctl(4, LOOP_SET_FD, 3 [pid 7223] memfd_create("syzkaller", 0 [pid 7220] <... ioctl resumed>) = 0 [pid 7223] <... memfd_create resumed>) = 3 [pid 7223] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = 0 [pid 7223] <... mmap resumed>) = 0x7ff0df171000 [pid 7220] close(3) = 0 [pid 7220] mkdir("./file0", 0777) = 0 [pid 7219] <... mount resumed>) = 0 [pid 5030] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7219] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./363/file0", [pid 7221] <... write resumed>) = 2097152 [pid 7219] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7219] chdir("./file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 296.843200][ T7220] loop0: detected capacity change from 0 to 4096 [pid 7220] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7219] <... chdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./363/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7219] ioctl(4, LOOP_CLR_FD [pid 7222] <... write resumed>) = 2097152 [pid 7221] munmap(0x7ff0df171000, 138412032 [pid 7219] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 7219] close(4 [pid 7221] <... munmap resumed>) = 0 [pid 7219] <... close resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7221] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7222] munmap(0x7ff0df171000, 138412032 [pid 7221] <... openat resumed>) = 4 [pid 7219] exit_group(0 [pid 5030] getdents64(4, [pid 7221] ioctl(4, LOOP_SET_FD, 3 [pid 7223] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7221] <... ioctl resumed>) = 0 [pid 7219] <... exit_group resumed>) = ? [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7222] <... munmap resumed>) = 0 [pid 7222] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7219] +++ exited with 0 +++ [pid 5030] getdents64(4, [pid 7222] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7222] ioctl(4, LOOP_SET_FD, 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7219, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 5030] close(4 [pid 5033] umount2("./355", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./363/file0" [pid 5033] openat(AT_FDCWD, "./355", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 5030] <... rmdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5033] getdents64(3, [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] close(3 [pid 5033] umount2("./355/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./363" [pid 5033] newfstatat(AT_FDCWD, "./355/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./355/binderfs") = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5033] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7221] close(3) = 0 [pid 7221] mkdir("./file0", 0777) = 0 [pid 7221] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7222] <... ioctl resumed>) = 0 [pid 7222] close(3) = 0 [ 296.901062][ T7220] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 296.923811][ T7221] loop5: detected capacity change from 0 to 4096 [ 296.939994][ T7222] loop3: detected capacity change from 0 to 4096 [pid 7222] mkdir("./file0", 0777 [pid 5030] mkdir("./364", 0777 [pid 7222] <... mkdir resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7222] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5033] <... umount2 resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5033] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./355/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./355/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./355/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./355/file0") = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 7223] <... write resumed>) = 2097152 [pid 5033] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7223] munmap(0x7ff0df171000, 138412032 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] rmdir("./355" [pid 5030] close(3 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] mkdir("./356", 0777 [pid 7223] <... munmap resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7224 attached , child_tidptr=0x55555635e650) = 7224 [pid 7224] set_robust_list(0x55555635e660, 24) = 0 [pid 7224] chdir("./364" [pid 7220] <... mount resumed>) = 0 [pid 7220] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7223] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7220] <... openat resumed>) = 3 [pid 5033] <... openat resumed>) = 3 [pid 7220] chdir("./file0" [pid 7224] <... chdir resumed>) = 0 [pid 7223] <... openat resumed>) = 4 [pid 7220] <... chdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7223] ioctl(4, LOOP_SET_FD, 3 [pid 7220] ioctl(4, LOOP_CLR_FD) = 0 [pid 7220] close(4 [pid 7224] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7224] <... prctl resumed>) = 0 [pid 5033] close(3 [pid 7224] setpgid(0, 0 [pid 5033] <... close resumed>) = 0 [ 296.963905][ T7221] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 296.993280][ T7222] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7224] <... setpgid resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7224] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7225 [pid 7224] write(3, "1000", 4./strace-static-x86_64: Process 7225 attached ) = 4 [pid 7225] set_robust_list(0x55555635e660, 24 [pid 7224] close(3 [pid 7225] <... set_robust_list resumed>) = 0 [pid 7224] <... close resumed>) = 0 [pid 7225] chdir("./356" [pid 7224] symlink("/dev/binderfs", "./binderfs" [pid 7225] <... chdir resumed>) = 0 [pid 7224] <... symlink resumed>) = 0 [pid 7225] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7225] setpgid(0, 0) = 0 [pid 7225] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7225] write(3, "1000", 4) = 4 [pid 7225] close(3) = 0 [pid 7224] memfd_create("syzkaller", 0 [pid 7225] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7225] memfd_create("syzkaller", 0 [pid 7220] <... close resumed>) = 0 [pid 7220] exit_group(0 [pid 7224] <... memfd_create resumed>) = 3 [pid 7224] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7225] <... memfd_create resumed>) = 3 [pid 7224] <... mmap resumed>) = 0x7ff0df171000 [pid 7220] <... exit_group resumed>) = ? [pid 7225] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7221] <... mount resumed>) = 0 [pid 7220] +++ exited with 0 +++ [pid 7223] <... ioctl resumed>) = 0 [pid 7221] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7223] close(3) = 0 [pid 7223] mkdir("./file0", 0777 [pid 7225] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7220, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=8 /* 0.08 s */} --- [pid 7221] <... openat resumed>) = 3 [pid 7223] <... mkdir resumed>) = 0 [pid 7221] chdir("./file0" [pid 7223] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7221] <... chdir resumed>) = 0 [pid 7221] ioctl(4, LOOP_CLR_FD) = 0 [ 297.041992][ T7223] loop2: detected capacity change from 0 to 4096 [pid 7221] close(4) = 0 [pid 7221] exit_group(0 [pid 5029] umount2("./362", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./362", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 7221] <... exit_group resumed>) = ? [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./362/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./362/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./362/binderfs") = 0 [pid 5029] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7221] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7221, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./356", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./356", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 7222] <... mount resumed>) = 0 [pid 5029] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7222] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7222] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7222] chdir("./file0" [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] newfstatat(AT_FDCWD, "./362/file0", [pid 5034] umount2("./356/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7222] <... chdir resumed>) = 0 [pid 7222] ioctl(4, LOOP_CLR_FD [ 297.084602][ T7223] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5034] newfstatat(AT_FDCWD, "./356/binderfs", [pid 7222] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7222] close(4) = 0 [pid 5034] unlink("./356/binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7222] exit_group(0 [pid 5034] <... unlink resumed>) = 0 [pid 7222] <... exit_group resumed>) = ? [pid 5029] openat(AT_FDCWD, "./362/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7222] +++ exited with 0 +++ [pid 5034] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7222, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 7225] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7224] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7223] <... mount resumed>) = 0 [pid 5029] rmdir("./362/file0" [pid 7223] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... rmdir resumed>) = 0 [pid 7223] <... openat resumed>) = 3 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./362" [pid 7223] chdir("./file0" [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./363", 0777 [pid 7223] <... chdir resumed>) = 0 [pid 5032] umount2("./364", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7223] ioctl(4, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... mkdir resumed>) = 0 [pid 7223] <... ioctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./364", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7223] close(4) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(3, "", [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 7223] exit_group(0 [pid 5032] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./364/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7223] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./364/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7223] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7223, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5032] unlink("./364/binderfs") = 0 [pid 5032] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7226 [pid 5031] umount2("./363", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7226 attached [pid 7225] <... write resumed>) = 2097152 [pid 5031] openat(AT_FDCWD, "./363", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7226] set_robust_list(0x55555635e660, 24) = 0 [pid 7226] chdir("./363") = 0 [pid 5031] <... openat resumed>) = 3 [pid 7226] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] newfstatat(3, "", [pid 7226] <... prctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7226] setpgid(0, 0 [pid 5034] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7226] <... setpgid resumed>) = 0 [pid 7226] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5031] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7226] write(3, "1000", 4) = 4 [pid 7226] close(3) = 0 [pid 5031] umount2("./363/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7226] symlink("/dev/binderfs", "./binderfs" [pid 5034] newfstatat(AT_FDCWD, "./356/file0", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7226] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(AT_FDCWD, "./363/binderfs", [pid 7226] memfd_create("syzkaller", 0 [pid 5034] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] unlink("./363/binderfs" [pid 7226] <... memfd_create resumed>) = 3 [pid 7224] <... write resumed>) = 2097152 [pid 5031] <... unlink resumed>) = 0 [pid 7226] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./356/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7224] munmap(0x7ff0df171000, 138412032) = 0 [pid 7225] munmap(0x7ff0df171000, 138412032) = 0 [pid 7224] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... openat resumed>) = 4 [pid 7224] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 7224] ioctl(4, LOOP_SET_FD, 3 [pid 7225] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 7225] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 5032] <... umount2 resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./356/file0") = 0 [pid 5034] getdents64(3, [pid 5032] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7224] <... ioctl resumed>) = 0 [pid 7224] close(3) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7224] mkdir("./file0", 0777 [pid 5032] newfstatat(AT_FDCWD, "./364/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] close(3 [pid 5032] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7224] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./364/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7224] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] <... openat resumed>) = 4 [pid 5034] rmdir("./356" [pid 5032] newfstatat(4, "", [pid 5034] <... rmdir resumed>) = 0 [ 297.275853][ T7224] loop1: detected capacity change from 0 to 4096 [ 297.286313][ T7225] loop4: detected capacity change from 0 to 4096 [pid 5034] mkdir("./357", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7225] <... ioctl resumed>) = 0 [pid 7225] close(3) = 0 [pid 7225] mkdir("./file0", 0777) = 0 [pid 7225] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] <... umount2 resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5032] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./363/file0", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(4 [pid 5031] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./363/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] close(3 [pid 5032] rmdir("./364/file0" [pid 5031] <... openat resumed>) = 4 [pid 5034] <... close resumed>) = 0 [pid 7226] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7227 attached [pid 5032] getdents64(3, [pid 5031] getdents64(4, [pid 7227] set_robust_list(0x55555635e660, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7227 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7227] <... set_robust_list resumed>) = 0 [pid 5032] close(3 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7227] chdir("./357" [pid 5032] <... close resumed>) = 0 [pid 5031] close(4 [pid 7227] <... chdir resumed>) = 0 [pid 5032] rmdir("./364" [pid 5031] <... close resumed>) = 0 [ 297.324912][ T7224] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 297.344169][ T7225] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7227] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... rmdir resumed>) = 0 [pid 5031] rmdir("./363/file0") = 0 [pid 7227] <... prctl resumed>) = 0 [pid 7227] setpgid(0, 0 [pid 5031] getdents64(3, [pid 5032] mkdir("./365", 0777 [pid 7227] <... setpgid resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./363") = 0 [pid 5031] mkdir("./364", 0777) = 0 [pid 7227] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7227] <... openat resumed>) = 3 [pid 7227] write(3, "1000", 4) = 4 [pid 5032] <... mkdir resumed>) = 0 [pid 7227] close(3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7227] <... close resumed>) = 0 [pid 7227] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7227] <... symlink resumed>) = 0 [pid 7224] <... mount resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7224] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5031] <... openat resumed>) = 3 [pid 7224] <... openat resumed>) = 3 [pid 7224] chdir("./file0" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7227] memfd_create("syzkaller", 0 [pid 7226] <... write resumed>) = 2097152 [pid 7225] <... mount resumed>) = 0 [pid 7224] <... chdir resumed>) = 0 [pid 5032] close(3 [pid 7224] ioctl(4, LOOP_CLR_FD) = 0 [pid 7224] close(4 [pid 5032] <... close resumed>) = 0 [pid 7225] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7224] <... close resumed>) = 0 [pid 7224] exit_group(0) = ? [pid 7224] +++ exited with 0 +++ [pid 7226] munmap(0x7ff0df171000, 138412032 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7224, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 7225] <... openat resumed>) = 3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7227] <... memfd_create resumed>) = 3 [pid 7225] chdir("./file0" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] close(3 [pid 7227] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7225] <... chdir resumed>) = 0 [pid 5030] umount2("./364", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7227] <... mmap resumed>) = 0x7ff0df171000 [pid 7225] ioctl(4, LOOP_CLR_FD [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7228 [pid 5031] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7225] <... ioctl resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "./364", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7228 attached [pid 7226] <... munmap resumed>) = 0 [pid 7225] close(4 [pid 5030] <... openat resumed>) = 3 [pid 7228] set_robust_list(0x55555635e660, 24) = 0 [pid 7228] chdir("./365") = 0 [pid 7225] <... close resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 7228] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 7229 attached ) = 0 [pid 7226] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7225] exit_group(0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7229] set_robust_list(0x55555635e660, 24 [pid 7228] setpgid(0, 0 [pid 7226] <... openat resumed>) = 4 [pid 7225] <... exit_group resumed>) = ? [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7229 [pid 5030] getdents64(3, [pid 7229] <... set_robust_list resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./364/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7226] ioctl(4, LOOP_SET_FD, 3 [pid 7229] chdir("./364" [pid 7228] <... setpgid resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./364/binderfs", [pid 7229] <... chdir resumed>) = 0 [pid 7228] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7225] +++ exited with 0 +++ [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7225, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7229] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7228] <... openat resumed>) = 3 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5030] unlink("./364/binderfs" [pid 7229] <... prctl resumed>) = 0 [pid 7228] write(3, "1000", 4 [pid 5033] <... restart_syscall resumed>) = 0 [pid 7229] setpgid(0, 0 [pid 7228] <... write resumed>) = 4 [pid 5030] <... unlink resumed>) = 0 [pid 7229] <... setpgid resumed>) = 0 [pid 7228] close(3 [pid 7229] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7228] <... close resumed>) = 0 [pid 5033] umount2("./356", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7229] <... openat resumed>) = 3 [pid 5030] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7229] write(3, "1000", 4 [pid 7228] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7229] <... write resumed>) = 4 [pid 7228] <... symlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./356", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7229] close(3 [pid 7228] memfd_create("syzkaller", 0 [pid 5033] <... openat resumed>) = 3 [pid 7229] <... close resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 7229] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7229] <... symlink resumed>) = 0 [pid 7228] <... memfd_create resumed>) = 3 [pid 5033] getdents64(3, [pid 7229] memfd_create("syzkaller", 0 [pid 7228] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7228] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./356/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7229] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7229] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7226] <... ioctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./356/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./356/binderfs") = 0 [pid 5033] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7229] <... mmap resumed>) = 0x7ff0df171000 [pid 7226] close(3) = 0 [pid 7226] mkdir("./file0", 0777) = 0 [ 297.488738][ T7226] loop0: detected capacity change from 0 to 4096 [pid 7226] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7227] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./364/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./364/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 297.548848][ T7226] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5030] getdents64(4, [pid 5033] newfstatat(AT_FDCWD, "./356/file0", [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5033] umount2("./356/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./364/file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./356/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 7226] <... mount resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] newfstatat(4, "", [pid 5030] close(3) = 0 [pid 5030] rmdir("./364" [pid 7228] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7226] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] <... rmdir resumed>) = 0 [pid 7226] <... openat resumed>) = 3 [pid 5030] mkdir("./365", 0777 [pid 7226] chdir("./file0") = 0 [pid 7226] ioctl(4, LOOP_CLR_FD) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7226] close(4) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7226] exit_group(0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 7229] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7226] <... exit_group resumed>) = ? [pid 7226] +++ exited with 0 +++ [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7230 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7226, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5029] umount2("./363", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./363", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7230 attached [pid 5033] getdents64(4, [pid 5029] getdents64(3, [pid 7230] set_robust_list(0x55555635e660, 24 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7230] <... set_robust_list resumed>) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./356/file0" [pid 5029] umount2("./363/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... rmdir resumed>) = 0 [pid 7227] <... write resumed>) = 2097152 [pid 5033] getdents64(3, [pid 5029] newfstatat(AT_FDCWD, "./363/binderfs", [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7230] chdir("./365" [pid 7227] munmap(0x7ff0df171000, 138412032 [pid 5033] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./363/binderfs" [pid 5033] <... close resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5033] rmdir("./356" [pid 5029] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... rmdir resumed>) = 0 [pid 7230] <... chdir resumed>) = 0 [pid 5033] mkdir("./357", 0777 [pid 7230] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... mkdir resumed>) = 0 [pid 7230] <... prctl resumed>) = 0 [pid 7230] setpgid(0, 0 [pid 7227] <... munmap resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7230] <... setpgid resumed>) = 0 [pid 7227] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... openat resumed>) = 3 [pid 7230] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7229] <... write resumed>) = 2097152 [pid 7228] <... write resumed>) = 2097152 [pid 7227] <... openat resumed>) = 4 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5029] <... umount2 resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7227] ioctl(4, LOOP_SET_FD, 3 [pid 5033] close(3 [pid 7230] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5029] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./363/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./363/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 7229] munmap(0x7ff0df171000, 138412032 [pid 7228] munmap(0x7ff0df171000, 138412032 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./363/file0" [pid 7230] write(3, "1000", 4 [pid 5029] <... rmdir resumed>) = 0 [pid 7230] <... write resumed>) = 4 [pid 5029] getdents64(3, [pid 7230] close(3./strace-static-x86_64: Process 7231 attached [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7231] set_robust_list(0x55555635e660, 24 [pid 7230] <... close resumed>) = 0 [pid 7230] symlink("/dev/binderfs", "./binderfs" [pid 7228] <... munmap resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7231 [pid 5029] close(3 [pid 7231] <... set_robust_list resumed>) = 0 [pid 7230] <... symlink resumed>) = 0 [pid 7229] <... munmap resumed>) = 0 [pid 7228] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7227] <... ioctl resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7231] chdir("./357" [pid 7230] memfd_create("syzkaller", 0 [pid 7229] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7228] <... openat resumed>) = 4 [pid 7227] close(3 [pid 7231] <... chdir resumed>) = 0 [pid 7230] <... memfd_create resumed>) = 3 [pid 7229] <... openat resumed>) = 4 [pid 7228] ioctl(4, LOOP_SET_FD, 3 [pid 7227] <... close resumed>) = 0 [pid 5029] rmdir("./363" [pid 7231] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7230] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7229] ioctl(4, LOOP_SET_FD, 3 [pid 7230] <... mmap resumed>) = 0x7ff0df171000 [pid 7231] <... prctl resumed>) = 0 [pid 7228] <... ioctl resumed>) = 0 [pid 7227] mkdir("./file0", 0777 [pid 5029] <... rmdir resumed>) = 0 [pid 7231] setpgid(0, 0) = 0 [pid 7231] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7227] <... mkdir resumed>) = 0 [pid 5029] mkdir("./364", 0777 [pid 7231] <... openat resumed>) = 3 [pid 7231] write(3, "1000", 4) = 4 [pid 7231] close(3) = 0 [pid 7231] symlink("/dev/binderfs", "./binderfs") = 0 [ 297.710348][ T7227] loop5: detected capacity change from 0 to 4096 [ 297.740511][ T7228] loop3: detected capacity change from 0 to 4096 [ 297.750494][ T7229] loop2: detected capacity change from 0 to 4096 [pid 7227] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7228] close(3 [pid 5029] <... mkdir resumed>) = 0 [pid 7231] memfd_create("syzkaller", 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7229] <... ioctl resumed>) = 0 [pid 7229] close(3 [pid 7228] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7231] <... memfd_create resumed>) = 3 [pid 7228] mkdir("./file0", 0777 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7228] <... mkdir resumed>) = 0 [pid 7231] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7229] <... close resumed>) = 0 [pid 7228] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7231] <... mmap resumed>) = 0x7ff0df171000 [pid 7229] mkdir("./file0", 0777 [pid 5029] close(3 [pid 7229] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7229] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7232 ./strace-static-x86_64: Process 7232 attached [pid 7232] set_robust_list(0x55555635e660, 24) = 0 [pid 7232] chdir("./364") = 0 [ 297.771385][ T7227] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 297.788022][ T7228] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7232] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7227] <... mount resumed>) = 0 [pid 7232] <... prctl resumed>) = 0 [pid 7232] setpgid(0, 0) = 0 [pid 7232] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7232] write(3, "1000", 4) = 4 [pid 7232] close(3 [pid 7227] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7232] <... close resumed>) = 0 [pid 7232] symlink("/dev/binderfs", "./binderfs" [pid 7227] <... openat resumed>) = 3 [pid 7227] chdir("./file0" [pid 7232] <... symlink resumed>) = 0 [pid 7227] <... chdir resumed>) = 0 [pid 7227] ioctl(4, LOOP_CLR_FD) = 0 [pid 7227] close(4) = 0 [pid 7227] exit_group(0 [pid 7232] memfd_create("syzkaller", 0 [pid 7227] <... exit_group resumed>) = ? [pid 7227] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7227, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5034] umount2("./357", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7232] <... memfd_create resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7232] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] openat(AT_FDCWD, "./357", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7232] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7228] <... mount resumed>) = 0 [pid 5034] getdents64(3, [pid 7230] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./357/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7228] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(AT_FDCWD, "./357/binderfs", [pid 7228] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7228] chdir("./file0") = 0 [ 297.825008][ T7229] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7228] ioctl(4, LOOP_CLR_FD [pid 7231] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7228] <... ioctl resumed>) = 0 [pid 5034] unlink("./357/binderfs" [pid 7228] close(4 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7228] <... close resumed>) = 0 [pid 7228] exit_group(0) = ? [pid 7228] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7228, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [pid 5032] umount2("./365", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7229] <... mount resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./365", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7229] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 7229] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./365/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7230] <... write resumed>) = 2097152 [pid 7229] chdir("./file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./365/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7229] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7229] ioctl(4, LOOP_CLR_FD [pid 5034] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./357/file0", [pid 5032] unlink("./365/binderfs" [pid 7229] <... ioctl resumed>) = 0 [pid 7229] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7229] <... close resumed>) = 0 [pid 7229] exit_group(0 [pid 5034] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7229] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7229] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./357/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7229, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./364", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] openat(AT_FDCWD, "./364", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] getdents64(4, [pid 5031] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./364/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./364/binderfs", [pid 7230] munmap(0x7ff0df171000, 138412032 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./364/binderfs" [pid 7232] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./357/file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7230] <... munmap resumed>) = 0 [pid 5034] close(3 [pid 7230] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 7230] <... openat resumed>) = 4 [pid 5034] rmdir("./357") = 0 [pid 5034] mkdir("./358", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7230] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./365/file0", [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3 [pid 5032] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7231] <... write resumed>) = 2097152 [pid 7231] munmap(0x7ff0df171000, 138412032 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] openat(AT_FDCWD, "./365/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7230] close(3 [pid 5032] <... openat resumed>) = 4 [pid 7230] <... close resumed>) = 0 [pid 5032] newfstatat(4, "", ./strace-static-x86_64: Process 7233 attached [pid 7232] <... write resumed>) = 2097152 [pid 7230] mkdir("./file0", 0777 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7233 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7231] <... munmap resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./364/file0", [pid 7231] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7233] set_robust_list(0x55555635e660, 24 [pid 7232] munmap(0x7ff0df171000, 138412032 [pid 7231] ioctl(4, LOOP_SET_FD, 3 [pid 7230] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7233] <... set_robust_list resumed>) = 0 [pid 7233] chdir("./358") = 0 [ 298.004428][ T7230] loop1: detected capacity change from 0 to 4096 [ 298.037113][ T7231] loop4: detected capacity change from 0 to 4096 [pid 7230] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7233] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7232] <... munmap resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7233] <... prctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./364/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(4 [pid 7233] setpgid(0, 0 [pid 7232] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... openat resumed>) = 4 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./365/file0" [pid 5031] newfstatat(4, "", [pid 7232] <... openat resumed>) = 4 [pid 7233] <... setpgid resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7232] ioctl(4, LOOP_SET_FD, 3 [pid 5032] getdents64(3, [pid 5031] getdents64(4, [pid 7233] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7233] write(3, "1000", 4) = 4 [pid 7233] close(3 [pid 7231] <... ioctl resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] getdents64(4, [pid 5032] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7233] <... close resumed>) = 0 [pid 7231] close(3 [pid 5032] <... close resumed>) = 0 [pid 5031] close(4 [pid 7233] symlink("/dev/binderfs", "./binderfs" [pid 7231] <... close resumed>) = 0 [pid 5032] rmdir("./365" [pid 5031] <... close resumed>) = 0 [pid 7233] <... symlink resumed>) = 0 [pid 7231] mkdir("./file0", 0777 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] rmdir("./364/file0" [pid 7233] memfd_create("syzkaller", 0 [pid 7232] <... ioctl resumed>) = 0 [pid 7231] <... mkdir resumed>) = 0 [pid 5032] mkdir("./366", 0777 [pid 7232] close(3 [pid 7231] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5031] <... rmdir resumed>) = 0 [pid 7232] <... close resumed>) = 0 [pid 7232] mkdir("./file0", 0777 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 7233] <... memfd_create resumed>) = 3 [pid 7233] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7232] <... mkdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] close(3 [pid 7233] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... openat resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] rmdir("./364" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./365", 0777 [pid 7232] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 298.048456][ T7230] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 298.060036][ T7232] loop0: detected capacity change from 0 to 4096 [ 298.082630][ T7231] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5032] close(3) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7234 attached [pid 7234] set_robust_list(0x55555635e660, 24) = 0 [pid 7234] chdir("./366" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7234 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7234] <... chdir resumed>) = 0 [pid 5031] close(3 [pid 7234] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... close resumed>) = 0 [pid 7234] <... prctl resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7234] setpgid(0, 0) = 0 [pid 7234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 ./strace-static-x86_64: Process 7235 attached [pid 7234] write(3, "1000", 4 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7235 [pid 7235] set_robust_list(0x55555635e660, 24 [pid 7234] <... write resumed>) = 4 [pid 7235] <... set_robust_list resumed>) = 0 [pid 7234] close(3) = 0 [pid 7234] symlink("/dev/binderfs", "./binderfs" [pid 7235] chdir("./365" [pid 7234] <... symlink resumed>) = 0 [pid 7235] <... chdir resumed>) = 0 [pid 7235] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7234] memfd_create("syzkaller", 0 [pid 7232] <... mount resumed>) = 0 [pid 7234] <... memfd_create resumed>) = 3 [pid 7235] <... prctl resumed>) = 0 [ 298.106916][ T7232] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7232] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7235] setpgid(0, 0 [pid 7232] <... openat resumed>) = 3 [pid 7235] <... setpgid resumed>) = 0 [pid 7234] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7232] chdir("./file0" [pid 7235] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7234] <... mmap resumed>) = 0x7ff0df171000 [pid 7232] <... chdir resumed>) = 0 [pid 7235] <... openat resumed>) = 3 [pid 7235] write(3, "1000", 4 [pid 7232] ioctl(4, LOOP_CLR_FD [pid 7235] <... write resumed>) = 4 [pid 7232] <... ioctl resumed>) = 0 [pid 7235] close(3 [pid 7232] close(4 [pid 7235] <... close resumed>) = 0 [pid 7232] <... close resumed>) = 0 [pid 7235] symlink("/dev/binderfs", "./binderfs" [pid 7232] exit_group(0 [pid 7235] <... symlink resumed>) = 0 [pid 7233] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7232] <... exit_group resumed>) = ? [pid 7235] memfd_create("syzkaller", 0 [pid 7232] +++ exited with 0 +++ [pid 7231] <... mount resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7232, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 7235] <... memfd_create resumed>) = 3 [pid 7231] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7230] <... mount resumed>) = 0 [pid 7235] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7231] <... openat resumed>) = 3 [pid 5029] umount2("./364", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7235] <... mmap resumed>) = 0x7ff0df171000 [pid 7231] chdir("./file0" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7231] <... chdir resumed>) = 0 [pid 7231] ioctl(4, LOOP_CLR_FD [pid 7230] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5029] openat(AT_FDCWD, "./364", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7231] <... ioctl resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 7231] close(4 [pid 7230] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 7230] chdir("./file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 7231] <... close resumed>) = 0 [pid 7230] <... chdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7231] exit_group(0 [pid 7230] ioctl(4, LOOP_CLR_FD) = 0 [pid 7231] <... exit_group resumed>) = ? [pid 7230] close(4 [pid 7231] +++ exited with 0 +++ [pid 7230] <... close resumed>) = 0 [pid 7230] exit_group(0) = ? [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7231, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=10 /* 0.10 s */} --- [pid 7230] +++ exited with 0 +++ [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5029] umount2("./364/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... restart_syscall resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7230, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5029] newfstatat(AT_FDCWD, "./364/binderfs", [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./357", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... restart_syscall resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./364/binderfs" [pid 5033] openat(AT_FDCWD, "./357", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] umount2("./365", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] openat(AT_FDCWD, "./365", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] getdents64(3, [pid 5030] <... openat resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] newfstatat(3, "", [pid 5029] <... unlink resumed>) = 0 [pid 5033] umount2("./357/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 5033] newfstatat(AT_FDCWD, "./357/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] unlink("./357/binderfs" [pid 5030] umount2("./365/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7233] <... write resumed>) = 2097152 [pid 5033] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./365/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./365/binderfs") = 0 [pid 5030] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7234] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7233] munmap(0x7ff0df171000, 138412032 [pid 5029] <... umount2 resumed>) = 0 [pid 7233] <... munmap resumed>) = 0 [pid 5029] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./364/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7235] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7233] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7233] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./364/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... umount2 resumed>) = 0 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(AT_FDCWD, "./357/file0", [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] rmdir("./364/file0" [pid 7234] <... write resumed>) = 2097152 [pid 7233] <... ioctl resumed>) = 0 [pid 5033] umount2("./357/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 7233] close(3 [pid 5029] getdents64(3, [pid 7233] <... close resumed>) = 0 [pid 7233] mkdir("./file0", 0777 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7233] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./357/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] rmdir("./364" [pid 7233] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5033] <... openat resumed>) = 4 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./365", 0777 [pid 5033] newfstatat(4, "", [pid 5030] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 298.327127][ T7233] loop5: detected capacity change from 0 to 4096 [pid 5030] newfstatat(AT_FDCWD, "./365/file0", [pid 5029] <... mkdir resumed>) = 0 [pid 7235] <... write resumed>) = 2097152 [pid 7234] munmap(0x7ff0df171000, 138412032 [pid 5033] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./365/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7235] munmap(0x7ff0df171000, 138412032 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./365/file0") = 0 [pid 7235] <... munmap resumed>) = 0 [pid 5030] getdents64(3, [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7234] <... munmap resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 7235] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7234] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] close(4 [pid 5029] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] rmdir("./357/file0" [pid 5030] close(3 [pid 7235] <... openat resumed>) = 4 [pid 7234] <... openat resumed>) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7236 [pid 7235] ioctl(4, LOOP_SET_FD, 3 [ 298.376559][ T7233] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7234] ioctl(4, LOOP_SET_FD, 3 [pid 5030] rmdir("./365"./strace-static-x86_64: Process 7236 attached ) = 0 [pid 7236] set_robust_list(0x55555635e660, 24) = 0 [pid 7236] chdir("./365") = 0 [pid 7235] <... ioctl resumed>) = 0 [pid 7233] <... mount resumed>) = 0 [pid 5033] getdents64(3, [pid 5030] mkdir("./366", 0777 [pid 7236] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7235] close(3 [pid 7233] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 7236] <... prctl resumed>) = 0 [pid 7235] <... close resumed>) = 0 [pid 7233] <... openat resumed>) = 3 [pid 5033] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7236] setpgid(0, 0 [pid 7235] mkdir("./file0", 0777 [pid 7233] chdir("./file0" [pid 5033] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7236] <... setpgid resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7236] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7235] <... mkdir resumed>) = 0 [pid 7233] <... chdir resumed>) = 0 [pid 5033] rmdir("./357" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7236] <... openat resumed>) = 3 [pid 5030] close(3 [pid 7236] write(3, "1000", 4 [pid 5030] <... close resumed>) = 0 [pid 7236] <... write resumed>) = 4 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7237 attached [pid 7236] close(3 [pid 7237] set_robust_list(0x55555635e660, 24 [pid 7236] <... close resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7237 [pid 7237] <... set_robust_list resumed>) = 0 [pid 7236] symlink("/dev/binderfs", "./binderfs" [pid 7237] chdir("./366" [pid 7236] <... symlink resumed>) = 0 [pid 7236] memfd_create("syzkaller", 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7233] ioctl(4, LOOP_CLR_FD [pid 7237] <... chdir resumed>) = 0 [pid 7235] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7233] <... ioctl resumed>) = 0 [pid 5033] mkdir("./358", 0777 [pid 7237] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7237] setpgid(0, 0) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 7237] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7233] close(4 [pid 7237] <... openat resumed>) = 3 [pid 7237] write(3, "1000", 4) = 4 [pid 7236] <... memfd_create resumed>) = 3 [pid 7237] close(3) = 0 [pid 7236] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7237] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7233] <... close resumed>) = 0 [pid 7237] memfd_create("syzkaller", 0 [pid 7233] exit_group(0 [pid 7237] <... memfd_create resumed>) = 3 [pid 7237] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7233] <... exit_group resumed>) = ? [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7237] <... mmap resumed>) = 0x7ff0df171000 [pid 7234] <... ioctl resumed>) = 0 [pid 7233] +++ exited with 0 +++ [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7233, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5033] close(3 [pid 7234] close(3 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7234] <... close resumed>) = 0 [pid 7234] mkdir("./file0", 0777 [pid 5034] umount2("./358", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7234] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 298.424136][ T7235] loop2: detected capacity change from 0 to 4096 [ 298.447752][ T7234] loop3: detected capacity change from 0 to 4096 [ 298.458868][ T7235] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7234] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] openat(AT_FDCWD, "./358", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7238 [pid 5034] newfstatat(3, "", ./strace-static-x86_64: Process 7238 attached [pid 7238] set_robust_list(0x55555635e660, 24) = 0 [pid 7238] chdir("./358") = 0 [pid 7238] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7238] setpgid(0, 0) = 0 [pid 7238] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7238] write(3, "1000", 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7238] <... write resumed>) = 4 [pid 7238] close(3) = 0 [pid 7238] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(3, [pid 7238] <... symlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7238] memfd_create("syzkaller", 0 [pid 5034] umount2("./358/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./358/binderfs", [pid 7238] <... memfd_create resumed>) = 3 [pid 7236] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./358/binderfs" [pid 7238] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... unlink resumed>) = 0 [pid 7238] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 298.514962][ T7234] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7237] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7234] <... mount resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7234] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] newfstatat(AT_FDCWD, "./358/file0", [pid 7234] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7234] chdir("./file0" [pid 5034] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7234] <... chdir resumed>) = 0 [pid 7234] ioctl(4, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7234] <... ioctl resumed>) = 0 [pid 7235] <... mount resumed>) = 0 [pid 7234] close(4 [pid 7235] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7234] <... close resumed>) = 0 [pid 7235] <... openat resumed>) = 3 [pid 7234] exit_group(0 [pid 7235] chdir("./file0" [pid 7234] <... exit_group resumed>) = ? [pid 7235] <... chdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./358/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7235] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] <... openat resumed>) = 4 [pid 7235] close(4 [pid 7234] +++ exited with 0 +++ [pid 5034] newfstatat(4, "", [pid 7237] <... write resumed>) = 2097152 [pid 7236] <... write resumed>) = 2097152 [pid 7235] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7234, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- [pid 7238] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7237] munmap(0x7ff0df171000, 138412032 [pid 7236] munmap(0x7ff0df171000, 138412032 [pid 7235] exit_group(0 [pid 5034] getdents64(4, [pid 7236] <... munmap resumed>) = 0 [pid 7235] <... exit_group resumed>) = ? [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] umount2("./366", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7237] <... munmap resumed>) = 0 [pid 7235] +++ exited with 0 +++ [pid 5034] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7235, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5034] close(4 [pid 5032] openat(AT_FDCWD, "./366", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5034] rmdir("./358/file0" [pid 5031] umount2("./365", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(3, "", [pid 7236] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7236] <... openat resumed>) = 4 [pid 5034] getdents64(3, [pid 5032] getdents64(3, [pid 5031] openat(AT_FDCWD, "./365", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7236] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5034] close(3 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] newfstatat(3, "", [pid 7237] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... close resumed>) = 0 [pid 5032] umount2("./366/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7237] <... openat resumed>) = 4 [pid 5034] rmdir("./358" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... rmdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./366/binderfs", [pid 5031] getdents64(3, [pid 5034] mkdir("./359", 0777 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7237] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] unlink("./366/binderfs" [pid 5031] umount2("./365/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5032] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./365/binderfs", [pid 7237] <... ioctl resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7237] close(3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7237] <... close resumed>) = 0 [pid 5034] close(3 [pid 5031] unlink("./365/binderfs" [pid 7237] mkdir("./file0", 0777 [pid 5034] <... close resumed>) = 0 [pid 7237] <... mkdir resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7239 ./strace-static-x86_64: Process 7239 attached [pid 7236] <... ioctl resumed>) = 0 [pid 7239] set_robust_list(0x55555635e660, 24 [pid 7236] close(3) = 0 [pid 7239] <... set_robust_list resumed>) = 0 [pid 7236] mkdir("./file0", 0777 [pid 7239] chdir("./359" [pid 7236] <... mkdir resumed>) = 0 [pid 7239] <... chdir resumed>) = 0 [pid 7239] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 298.688030][ T7236] loop0: detected capacity change from 0 to 4096 [ 298.703731][ T7237] loop1: detected capacity change from 0 to 4096 [pid 7237] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7239] setpgid(0, 0 [pid 7236] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7239] <... setpgid resumed>) = 0 [pid 7239] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7239] write(3, "1000", 4) = 4 [pid 7239] close(3) = 0 [pid 7239] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7239] memfd_create("syzkaller", 0) = 3 [pid 7239] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7238] <... write resumed>) = 2097152 [ 298.729400][ T7236] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 298.739706][ T7237] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7238] munmap(0x7ff0df171000, 138412032) = 0 [pid 7238] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 7238] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./366/file0", [pid 7236] <... mount resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(AT_FDCWD, "./365/file0", [pid 7238] <... ioctl resumed>) = 0 [pid 5032] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7238] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7238] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./366/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7238] mkdir("./file0", 0777 [pid 7236] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] <... openat resumed>) = 4 [pid 5031] openat(AT_FDCWD, "./365/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7238] <... mkdir resumed>) = 0 [pid 7236] <... openat resumed>) = 3 [pid 5032] newfstatat(4, "", [pid 5031] <... openat resumed>) = 4 [pid 7236] chdir("./file0" [pid 7237] <... mount resumed>) = 0 [pid 7236] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] newfstatat(4, "", [pid 7236] ioctl(4, LOOP_CLR_FD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7236] <... ioctl resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] getdents64(4, [pid 7236] close(4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7237] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7236] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] getdents64(4, [pid 7238] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7237] <... openat resumed>) = 3 [pid 7236] exit_group(0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7239] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7237] chdir("./file0" [pid 7236] <... exit_group resumed>) = ? [pid 5032] close(4 [pid 5031] close(4 [pid 7237] <... chdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./365/file0") = 0 [pid 5031] getdents64(3, [pid 5032] rmdir("./366/file0" [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 298.812496][ T7238] loop4: detected capacity change from 0 to 4096 [pid 7237] ioctl(4, LOOP_CLR_FD [pid 7236] +++ exited with 0 +++ [pid 7237] <... ioctl resumed>) = 0 [pid 7237] close(4 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7236, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7237] <... close resumed>) = 0 [pid 7237] exit_group(0) = ? [pid 7237] +++ exited with 0 +++ [pid 5031] close(3 [pid 5029] umount2("./365", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./365", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7237, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=4 /* 0.04 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... openat resumed>) = 3 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./366", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5032] getdents64(3, [pid 5031] rmdir("./365" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./366", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] umount2("./365/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(3, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5031] mkdir("./366", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5029] newfstatat(AT_FDCWD, "./365/binderfs", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] umount2("./366/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5029] unlink("./365/binderfs" [pid 5032] rmdir("./366" [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... unlink resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] newfstatat(AT_FDCWD, "./366/binderfs", [pid 5029] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./366/binderfs") = 0 [pid 5030] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] mkdir("./367", 0777 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] <... mkdir resumed>) = 0 [pid 5031] close(3 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7240 attached [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7240] set_robust_list(0x55555635e660, 24) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7240 [pid 5029] <... umount2 resumed>) = 0 [pid 7240] chdir("./366" [pid 5029] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./365/file0", [pid 7240] <... chdir resumed>) = 0 [pid 5032] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7240] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7240] setpgid(0, 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 298.856019][ T7238] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] openat(AT_FDCWD, "./365/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7240] <... setpgid resumed>) = 0 [pid 7239] <... write resumed>) = 2097152 [pid 5029] <... openat resumed>) = 4 ./strace-static-x86_64: Process 7241 attached [pid 7240] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7241 [pid 7241] set_robust_list(0x55555635e660, 24) = 0 [pid 7240] <... openat resumed>) = 3 [pid 5029] newfstatat(4, "", [pid 7241] chdir("./367" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7241] <... chdir resumed>) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 7241] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] rmdir("./365/file0" [pid 7241] <... prctl resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7241] setpgid(0, 0 [pid 5029] getdents64(3, [pid 7241] <... setpgid resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7241] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] close(3 [pid 7241] <... openat resumed>) = 3 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./365" [pid 7241] write(3, "1000", 4 [pid 7240] write(3, "1000", 4 [pid 5029] <... rmdir resumed>) = 0 [pid 7241] <... write resumed>) = 4 [pid 7240] <... write resumed>) = 4 [pid 7239] munmap(0x7ff0df171000, 138412032 [pid 5029] mkdir("./366", 0777 [pid 7240] close(3 [pid 7241] close(3 [pid 5029] <... mkdir resumed>) = 0 [pid 7241] <... close resumed>) = 0 [pid 7241] symlink("/dev/binderfs", "./binderfs" [pid 7240] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7241] <... symlink resumed>) = 0 [pid 7240] symlink("/dev/binderfs", "./binderfs" [pid 7241] memfd_create("syzkaller", 0 [pid 7240] <... symlink resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7240] memfd_create("syzkaller", 0 [pid 5029] <... ioctl resumed>) = 0 [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7241] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 7242 attached [pid 7241] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7242] set_robust_list(0x55555635e660, 24 [pid 7241] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... umount2 resumed>) = 0 [pid 7239] <... munmap resumed>) = 0 [pid 5030] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7242] <... set_robust_list resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7242 [pid 7242] chdir("./366") = 0 [pid 7240] <... memfd_create resumed>) = 3 [pid 7242] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7240] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] newfstatat(AT_FDCWD, "./366/file0", [pid 7242] setpgid(0, 0) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7240] <... mmap resumed>) = 0x7ff0df171000 [pid 7239] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7242] <... openat resumed>) = 3 [pid 5030] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7239] <... openat resumed>) = 4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7242] write(3, "1000", 4 [pid 7239] ioctl(4, LOOP_SET_FD, 3 [pid 7238] <... mount resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./366/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7242] <... write resumed>) = 4 [pid 5030] <... openat resumed>) = 4 [pid 7242] close(3 [pid 7238] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7242] <... close resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7242] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7242] <... symlink resumed>) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7242] memfd_create("syzkaller", 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./366/file0" [pid 7239] <... ioctl resumed>) = 0 [pid 7238] <... openat resumed>) = 3 [pid 5030] <... rmdir resumed>) = 0 [pid 7239] close(3 [pid 7238] chdir("./file0" [pid 7242] <... memfd_create resumed>) = 3 [pid 5030] getdents64(3, [pid 7238] <... chdir resumed>) = 0 [pid 7242] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7238] ioctl(4, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7239] <... close resumed>) = 0 [pid 7239] mkdir("./file0", 0777 [pid 7238] <... ioctl resumed>) = 0 [pid 5030] close(3) = 0 [pid 7239] <... mkdir resumed>) = 0 [pid 7238] close(4 [pid 5030] rmdir("./366" [pid 7242] <... mmap resumed>) = 0x7ff0df171000 [pid 7238] <... close resumed>) = 0 [pid 7239] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 5030] <... rmdir resumed>) = 0 [pid 7238] exit_group(0 [pid 5030] mkdir("./367", 0777) = 0 [pid 7238] <... exit_group resumed>) = ? [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [ 298.973260][ T7239] loop5: detected capacity change from 0 to 4096 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7243 attached [pid 7238] +++ exited with 0 +++ [pid 7243] set_robust_list(0x55555635e660, 24 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7238, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 7243] <... set_robust_list resumed>) = 0 [pid 7243] chdir("./367" [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7243 [pid 7243] <... chdir resumed>) = 0 [pid 7243] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7243] setpgid(0, 0) = 0 [pid 5033] umount2("./358", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7243] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7243] <... openat resumed>) = 3 [pid 7243] write(3, "1000", 4 [pid 5033] openat(AT_FDCWD, "./358", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7243] <... write resumed>) = 4 [pid 5033] <... openat resumed>) = 3 [pid 7243] close(3 [pid 5033] newfstatat(3, "", [pid 7243] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7243] symlink("/dev/binderfs", "./binderfs" [pid 5033] getdents64(3, [pid 7243] <... symlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7243] memfd_create("syzkaller", 0 [pid 5033] umount2("./358/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./358/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7243] <... memfd_create resumed>) = 3 [pid 5033] unlink("./358/binderfs" [pid 7243] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... unlink resumed>) = 0 [pid 7243] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7241] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [ 299.037282][ T7239] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7240] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7239] <... mount resumed>) = 0 [pid 7239] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7242] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7239] chdir("./file0" [pid 5033] <... umount2 resumed>) = 0 [pid 7239] <... chdir resumed>) = 0 [pid 5033] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./358/file0", [pid 7239] ioctl(4, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7239] <... ioctl resumed>) = 0 [pid 7239] close(4 [pid 5033] umount2("./358/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7239] <... close resumed>) = 0 [pid 7239] exit_group(0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./358/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7239] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7239] +++ exited with 0 +++ [pid 5033] getdents64(4, [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7239, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7243] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] umount2("./359", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./359", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] close(4 [pid 5034] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./358/file0" [pid 7240] <... write resumed>) = 2097152 [pid 5034] newfstatat(3, "", [pid 5033] <... rmdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./359/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./359/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./359/binderfs") = 0 [pid 7240] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 7241] <... write resumed>) = 2097152 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 7241] munmap(0x7ff0df171000, 138412032) = 0 [pid 7240] <... munmap resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7242] <... write resumed>) = 2097152 [pid 7241] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7240] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] rmdir("./358") = 0 [pid 7240] <... openat resumed>) = 4 [pid 5033] mkdir("./359", 0777 [pid 7240] ioctl(4, LOOP_SET_FD, 3 [pid 7241] <... openat resumed>) = 4 [pid 7241] ioctl(4, LOOP_SET_FD, 3 [pid 7243] <... write resumed>) = 2097152 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7243] munmap(0x7ff0df171000, 138412032 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7242] munmap(0x7ff0df171000, 138412032 [pid 7243] <... munmap resumed>) = 0 [pid 7242] <... munmap resumed>) = 0 [pid 7240] <... ioctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7240] close(3 [pid 5033] close(3 [pid 7242] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7240] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 7243] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7242] ioctl(4, LOOP_SET_FD, 3 [pid 7240] mkdir("./file0", 0777 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7243] <... openat resumed>) = 4 [pid 7240] <... mkdir resumed>) = 0 [pid 7242] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 7244 attached [pid 7243] ioctl(4, LOOP_SET_FD, 3 [pid 7240] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7244 [ 299.214443][ T7240] loop2: detected capacity change from 0 to 4096 [ 299.215397][ T7241] loop3: detected capacity change from 0 to 4096 [ 299.247542][ T7242] loop0: detected capacity change from 0 to 4096 [pid 7242] close(3) = 0 [pid 7242] mkdir("./file0", 0777) = 0 [pid 7242] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7241] <... ioctl resumed>) = 0 [pid 7241] close(3) = 0 [pid 7241] mkdir("./file0", 0777) = 0 [pid 7244] set_robust_list(0x55555635e660, 24 [pid 7243] <... ioctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 7244] <... set_robust_list resumed>) = 0 [pid 7243] close(3 [pid 5034] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7244] chdir("./359" [pid 7241] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7243] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./359/file0", [pid 7243] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7243] <... mkdir resumed>) = 0 [pid 5034] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7243] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7244] <... chdir resumed>) = 0 [ 299.264363][ T7243] loop1: detected capacity change from 0 to 4096 [ 299.277323][ T7240] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 299.281483][ T7242] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 299.299165][ T7241] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5034] openat(AT_FDCWD, "./359/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7244] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7244] setpgid(0, 0 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7244] <... setpgid resumed>) = 0 [pid 5034] getdents64(4, [pid 7244] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7243] <... mount resumed>) = 0 [pid 5034] getdents64(4, [pid 7244] <... openat resumed>) = 3 [pid 7240] <... mount resumed>) = 0 [pid 7244] write(3, "1000", 4 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7244] <... write resumed>) = 4 [pid 7243] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [ 299.303420][ T7243] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] close(4 [pid 7244] close(3 [pid 7240] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... close resumed>) = 0 [pid 7244] <... close resumed>) = 0 [pid 7243] <... openat resumed>) = 3 [pid 7240] <... openat resumed>) = 3 [pid 5034] rmdir("./359/file0" [pid 7244] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7243] chdir("./file0" [pid 7240] chdir("./file0" [pid 5034] <... rmdir resumed>) = 0 [pid 7243] <... chdir resumed>) = 0 [pid 5034] getdents64(3, [pid 7243] ioctl(4, LOOP_CLR_FD [pid 7240] <... chdir resumed>) = 0 [pid 7244] memfd_create("syzkaller", 0 [pid 7243] <... ioctl resumed>) = 0 [pid 7240] ioctl(4, LOOP_CLR_FD [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7243] close(4 [pid 5034] close(3) = 0 [pid 7243] <... close resumed>) = 0 [pid 5034] rmdir("./359") = 0 [pid 7243] exit_group(0 [pid 5034] mkdir("./360", 0777 [pid 7243] <... exit_group resumed>) = ? [pid 7240] <... ioctl resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 7240] close(4) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7243] +++ exited with 0 +++ [pid 7240] exit_group(0 [pid 5034] <... openat resumed>) = 3 [pid 7244] <... memfd_create resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7244] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7240] <... exit_group resumed>) = ? [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7243, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7244] <... mmap resumed>) = 0x7ff0df171000 [pid 7241] <... mount resumed>) = 0 [pid 5034] close(3 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5034] <... close resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7245 attached [pid 7242] <... mount resumed>) = 0 [pid 7241] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7240] +++ exited with 0 +++ [pid 7241] <... openat resumed>) = 3 [pid 5030] umount2("./367", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7240, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5031] umount2("./366", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7245] set_robust_list(0x55555635e660, 24 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./366", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./367", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7241] chdir("./file0" [pid 5030] umount2("./367/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7241] <... chdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./367/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7242] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5030] unlink("./367/binderfs" [pid 7242] <... openat resumed>) = 3 [pid 7241] ioctl(4, LOOP_CLR_FD [pid 5030] <... unlink resumed>) = 0 [pid 7242] chdir("./file0" [pid 7241] <... ioctl resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7245 [pid 5031] <... openat resumed>) = 3 [pid 7242] <... chdir resumed>) = 0 [pid 7241] close(4 [pid 5031] newfstatat(3, "", [pid 7245] <... set_robust_list resumed>) = 0 [pid 7242] ioctl(4, LOOP_CLR_FD [pid 7241] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7242] <... ioctl resumed>) = 0 [pid 7241] exit_group(0 [pid 7245] chdir("./360" [pid 7242] close(4 [pid 5031] getdents64(3, [pid 7242] <... close resumed>) = 0 [pid 7241] <... exit_group resumed>) = ? [pid 5030] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7245] <... chdir resumed>) = 0 [pid 7242] exit_group(0 [pid 7241] +++ exited with 0 +++ [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7245] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7242] <... exit_group resumed>) = ? [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7241, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 5031] umount2("./366/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7245] <... prctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7245] setpgid(0, 0 [pid 7242] +++ exited with 0 +++ [pid 5031] newfstatat(AT_FDCWD, "./366/binderfs", [pid 7245] <... setpgid resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7242, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [pid 5031] unlink("./366/binderfs" [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5032] umount2("./367", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 7245] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7245] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./367", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7245] write(3, "1000", 4) = 4 [pid 5029] umount2("./366", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7245] close(3 [pid 5032] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./366", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./366/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./366/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./367/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./367/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] unlink("./366/binderfs" [pid 5030] <... openat resumed>) = 4 [pid 5029] <... unlink resumed>) = 0 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 7245] <... close resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7245] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 7245] <... symlink resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... close resumed>) = 0 [pid 5032] umount2("./367/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./367/file0" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./367/binderfs", [pid 5030] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./367") = 0 [pid 5030] mkdir("./368", 0777) = 0 [pid 5032] unlink("./367/binderfs" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7245] memfd_create("syzkaller", 0 [pid 5030] <... openat resumed>) = 3 [pid 7245] <... memfd_create resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7245] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 7245] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7246 attached [pid 7246] set_robust_list(0x55555635e660, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7246 [pid 7246] <... set_robust_list resumed>) = 0 [pid 7246] chdir("./368") = 0 [pid 7246] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7246] setpgid(0, 0) = 0 [pid 7246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7246] write(3, "1000", 4 [pid 7244] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... umount2 resumed>) = 0 [pid 7246] <... write resumed>) = 4 [pid 7246] close(3 [pid 5031] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7246] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./366/file0", [pid 7246] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7246] <... symlink resumed>) = 0 [pid 7246] memfd_create("syzkaller", 0) = 3 [pid 7246] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./366/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./366/file0") = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./366") = 0 [pid 5029] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./366/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./367", 0777 [pid 7245] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./366/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./367/file0", [pid 5031] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 4 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(4, "", [pid 5032] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] getdents64(4, [pid 5032] openat(AT_FDCWD, "./367/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] close(3 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... openat resumed>) = 4 [pid 5029] getdents64(4, [pid 5032] newfstatat(4, "", [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(4 [pid 5032] getdents64(4, [pid 5029] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] rmdir("./366/file0" [pid 7244] <... write resumed>) = 2097152 [pid 5032] getdents64(4, [pid 5029] <... rmdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(3, [pid 5032] close(4) = 0 [pid 5031] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./367/file0") = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] close(3 [pid 5032] getdents64(3, [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 7247 attached [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7247 [pid 7247] set_robust_list(0x55555635e660, 24 [pid 5032] close(3 [pid 5029] rmdir("./366" [pid 7247] <... set_robust_list resumed>) = 0 [pid 7244] munmap(0x7ff0df171000, 138412032 [pid 5032] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7247] chdir("./367") = 0 [pid 5032] rmdir("./367" [pid 5029] mkdir("./367", 0777 [pid 7247] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 7244] <... munmap resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5032] mkdir("./368", 0777) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7244] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7247] setpgid(0, 0 [pid 7244] <... openat resumed>) = 4 [pid 5032] <... openat resumed>) = 3 [pid 7247] <... setpgid resumed>) = 0 [pid 7244] ioctl(4, LOOP_SET_FD, 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7248 ./strace-static-x86_64: Process 7248 attached [pid 7247] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7245] <... write resumed>) = 2097152 [pid 7244] <... ioctl resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7248] set_robust_list(0x55555635e660, 24 [pid 5032] close(3) = 0 [pid 7248] <... set_robust_list resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7248] chdir("./367") = 0 [pid 7247] <... openat resumed>) = 3 [pid 7248] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7248] setpgid(0, 0 [pid 7246] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7248] <... setpgid resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7249 ./strace-static-x86_64: Process 7249 attached [pid 7248] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7249] set_robust_list(0x55555635e660, 24 [pid 7248] <... openat resumed>) = 3 [pid 7247] write(3, "1000", 4 [pid 7248] write(3, "1000", 4 [pid 7247] <... write resumed>) = 4 [pid 7247] close(3 [pid 7249] <... set_robust_list resumed>) = 0 [pid 7248] <... write resumed>) = 4 [pid 7247] <... close resumed>) = 0 [pid 7245] munmap(0x7ff0df171000, 138412032 [pid 7249] chdir("./368" [pid 7248] close(3 [pid 7249] <... chdir resumed>) = 0 [pid 7248] <... close resumed>) = 0 [pid 7247] symlink("/dev/binderfs", "./binderfs" [pid 7244] close(3 [pid 7248] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7248] memfd_create("syzkaller", 0 [pid 7244] <... close resumed>) = 0 [pid 7244] mkdir("./file0", 0777) = 0 [pid 7249] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 299.634604][ T7244] loop4: detected capacity change from 0 to 4096 [pid 7249] setpgid(0, 0) = 0 [pid 7248] <... memfd_create resumed>) = 3 [pid 7249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7248] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7249] <... openat resumed>) = 3 [pid 7248] <... mmap resumed>) = 0x7ff0df171000 [pid 7247] <... symlink resumed>) = 0 [pid 7244] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7249] write(3, "1000", 4 [pid 7247] memfd_create("syzkaller", 0 [pid 7245] <... munmap resumed>) = 0 [pid 7249] <... write resumed>) = 4 [pid 7249] close(3) = 0 [pid 7249] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7245] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7247] <... memfd_create resumed>) = 3 [pid 7249] memfd_create("syzkaller", 0 [pid 7245] <... openat resumed>) = 4 [pid 7249] <... memfd_create resumed>) = 3 [pid 7247] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7245] ioctl(4, LOOP_SET_FD, 3 [pid 7246] <... write resumed>) = 2097152 [pid 7247] <... mmap resumed>) = 0x7ff0df171000 [pid 7245] <... ioctl resumed>) = 0 [pid 7245] close(3 [pid 7249] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7245] <... close resumed>) = 0 [pid 7249] <... mmap resumed>) = 0x7ff0df171000 [pid 7245] mkdir("./file0", 0777) = 0 [pid 7245] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [ 299.693099][ T7244] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 299.716078][ T7245] loop5: detected capacity change from 0 to 4096 [pid 7246] munmap(0x7ff0df171000, 138412032) = 0 [pid 7246] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 7246] ioctl(4, LOOP_SET_FD, 3 [pid 7244] <... mount resumed>) = 0 [pid 7244] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7244] chdir("./file0" [pid 7247] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7244] <... chdir resumed>) = 0 [pid 7246] <... ioctl resumed>) = 0 [pid 7245] <... mount resumed>) = 0 [pid 7244] ioctl(4, LOOP_CLR_FD [pid 7248] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7246] close(3 [pid 7245] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7244] <... ioctl resumed>) = 0 [pid 7246] <... close resumed>) = 0 [pid 7245] <... openat resumed>) = 3 [pid 7244] close(4 [pid 7246] mkdir("./file0", 0777 [pid 7245] chdir("./file0" [pid 7244] <... close resumed>) = 0 [pid 7246] <... mkdir resumed>) = 0 [pid 7245] <... chdir resumed>) = 0 [pid 7244] exit_group(0 [pid 7245] ioctl(4, LOOP_CLR_FD [pid 7246] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7245] <... ioctl resumed>) = 0 [pid 7244] <... exit_group resumed>) = ? [pid 7245] close(4 [pid 7244] +++ exited with 0 +++ [pid 7245] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7244, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [ 299.761502][ T7245] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 299.782286][ T7246] loop1: detected capacity change from 0 to 4096 [pid 5033] umount2("./359", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7247] <... write resumed>) = 2097152 [pid 7245] exit_group(0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./359", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7245] <... exit_group resumed>) = ? [pid 5033] <... openat resumed>) = 3 [pid 7245] +++ exited with 0 +++ [pid 5033] newfstatat(3, "", [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7245, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 7247] munmap(0x7ff0df171000, 138412032 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7249] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7247] <... munmap resumed>) = 0 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./360", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./360", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./359/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7247] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./359/binderfs", [pid 7247] <... openat resumed>) = 4 [pid 5034] newfstatat(3, "", [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7247] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 299.834641][ T7246] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./360/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] unlink("./359/binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... unlink resumed>) = 0 [pid 7247] <... ioctl resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./360/binderfs", [pid 5033] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7247] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7248] <... write resumed>) = 2097152 [pid 7247] <... close resumed>) = 0 [pid 5034] unlink("./360/binderfs" [pid 7247] mkdir("./file0", 0777 [pid 5034] <... unlink resumed>) = 0 [pid 7247] <... mkdir resumed>) = 0 [pid 5034] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7247] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7248] munmap(0x7ff0df171000, 138412032) = 0 [pid 7248] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7249] <... write resumed>) = 2097152 [pid 7248] <... openat resumed>) = 4 [ 299.876663][ T7247] loop2: detected capacity change from 0 to 4096 [ 299.901059][ T7247] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7248] ioctl(4, LOOP_SET_FD, 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7246] <... mount resumed>) = 0 [pid 7246] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7246] chdir("./file0") = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./360/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./360/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7249] munmap(0x7ff0df171000, 138412032 [pid 7246] ioctl(4, LOOP_CLR_FD [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 7249] <... munmap resumed>) = 0 [pid 7246] <... ioctl resumed>) = 0 [pid 7246] close(4) = 0 [pid 7246] exit_group(0) = ? [pid 7246] +++ exited with 0 +++ [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7246, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5034] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] umount2("./368", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./368", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7249] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 7249] <... openat resumed>) = 4 [pid 5034] close(4 [pid 5030] newfstatat(3, "", [pid 7249] ioctl(4, LOOP_SET_FD, 3 [pid 7248] <... ioctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] rmdir("./360/file0") = 0 [pid 5034] getdents64(3, [pid 5030] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] umount2("./368/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./368/binderfs", [pid 5033] newfstatat(AT_FDCWD, "./359/file0", [pid 7248] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7248] <... close resumed>) = 0 [pid 5034] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./368/binderfs" [pid 7248] mkdir("./file0", 0777 [pid 7247] <... mount resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] umount2("./359/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 7248] <... mkdir resumed>) = 0 [pid 7247] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] rmdir("./360" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 299.932545][ T7248] loop0: detected capacity change from 0 to 4096 [ 299.966670][ T7249] loop3: detected capacity change from 0 to 4096 [pid 7248] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... rmdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./359/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7247] <... openat resumed>) = 3 [pid 5034] mkdir("./361", 0777 [pid 5033] <... openat resumed>) = 4 [pid 7247] chdir("./file0" [pid 5034] <... mkdir resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 7247] <... chdir resumed>) = 0 [pid 7249] <... ioctl resumed>) = 0 [pid 7247] ioctl(4, LOOP_CLR_FD [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7249] close(3 [pid 7247] <... ioctl resumed>) = 0 [pid 5033] getdents64(4, [pid 7249] <... close resumed>) = 0 [pid 7249] mkdir("./file0", 0777) = 0 [pid 7247] close(4 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7249] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7247] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 5034] <... openat resumed>) = 3 [pid 7247] exit_group(0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 7247] <... exit_group resumed>) = ? [pid 5034] <... ioctl resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5030] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] close(3 [pid 5033] rmdir("./359/file0" [pid 5030] newfstatat(AT_FDCWD, "./368/file0", [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7247] +++ exited with 0 +++ [pid 5033] getdents64(3, [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7247, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=3 /* 0.03 s */} --- [pid 5030] openat(AT_FDCWD, "./368/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5033] close(3 [pid 5030] newfstatat(4, "", [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./359") = 0 [pid 5033] mkdir("./360", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./367", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... mkdir resumed>) = 0 [pid 5030] getdents64(4, [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "./367", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(3, "", [pid 5030] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 5033] close(3 [pid 5031] getdents64(3, [pid 5030] rmdir("./368/file0" [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [ 299.988237][ T7248] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 300.009406][ T7249] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 5031] umount2("./367/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./367/binderfs", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 7250 attached [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] close(3 [pid 7250] set_robust_list(0x55555635e660, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7250 [pid 5031] unlink("./367/binderfs" [pid 5030] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] rmdir("./368" [pid 5031] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7250] <... set_robust_list resumed>) = 0 [pid 7250] chdir("./360") = 0 [pid 7250] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7250] setpgid(0, 0) = 0 [pid 7250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7250] write(3, "1000", 4) = 4 [pid 7250] close(3) = 0 [pid 7250] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5030] mkdir("./369", 0777 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... mkdir resumed>) = 0 [pid 7250] memfd_create("syzkaller", 0./strace-static-x86_64: Process 7251 attached [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7251] set_robust_list(0x55555635e660, 24 [pid 7250] <... memfd_create resumed>) = 3 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7251 [pid 5030] <... openat resumed>) = 3 [pid 7251] <... set_robust_list resumed>) = 0 [pid 7250] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7251] chdir("./361" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7251] <... chdir resumed>) = 0 [pid 7251] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7251] <... prctl resumed>) = 0 [pid 7251] setpgid(0, 0 [pid 7249] <... mount resumed>) = 0 [pid 5030] close(3 [pid 7251] <... setpgid resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 7251] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7249] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 ./strace-static-x86_64: Process 7252 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7252 [pid 7251] <... openat resumed>) = 3 [pid 7249] chdir("./file0") = 0 [pid 7251] write(3, "1000", 4 [pid 7252] set_robust_list(0x55555635e660, 24 [pid 7249] ioctl(4, LOOP_CLR_FD [pid 7252] <... set_robust_list resumed>) = 0 [pid 7251] <... write resumed>) = 4 [pid 7249] <... ioctl resumed>) = 0 [pid 7252] chdir("./369" [pid 7249] close(4 [pid 7252] <... chdir resumed>) = 0 [pid 7249] <... close resumed>) = 0 [pid 7251] close(3) = 0 [pid 7252] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7251] symlink("/dev/binderfs", "./binderfs" [pid 7249] exit_group(0) = ? [pid 7252] <... prctl resumed>) = 0 [pid 7251] <... symlink resumed>) = 0 [pid 7249] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7249, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5032] umount2("./368", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./368", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7252] setpgid(0, 0) = 0 [pid 7248] <... mount resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 7251] memfd_create("syzkaller", 0 [pid 7248] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5032] newfstatat(3, "", [pid 7252] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7248] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./368/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./368/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./368/binderfs" [pid 7248] chdir("./file0" [pid 5032] <... unlink resumed>) = 0 [pid 7248] <... chdir resumed>) = 0 [pid 7248] ioctl(4, LOOP_CLR_FD [pid 5032] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7248] <... ioctl resumed>) = 0 [pid 7248] close(4) = 0 [pid 7248] exit_group(0) = ? [pid 7251] <... memfd_create resumed>) = 3 [pid 7251] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7252] <... openat resumed>) = 3 [pid 7251] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] <... umount2 resumed>) = 0 [pid 7248] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7248, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=11 /* 0.11 s */} --- [pid 5029] umount2("./367", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7252] write(3, "1000", 4 [pid 5031] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7252] <... write resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./367", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7252] close(3 [pid 5029] <... openat resumed>) = 3 [pid 7252] <... close resumed>) = 0 [pid 7252] symlink("/dev/binderfs", "./binderfs" [pid 5029] newfstatat(3, "", [pid 7252] <... symlink resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./367/file0", [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./367/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./367/binderfs", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./367/binderfs" [pid 7252] memfd_create("syzkaller", 0 [pid 5031] openat(AT_FDCWD, "./367/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] <... unlink resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5029] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7252] <... memfd_create resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7252] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] getdents64(4, [pid 7252] <... mmap resumed>) = 0x7ff0df171000 [pid 7250] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./367/file0" [pid 7251] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 5032] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] rmdir("./367" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./368/file0", [pid 5031] <... rmdir resumed>) = 0 [pid 5029] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] mkdir("./368", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./368/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] newfstatat(AT_FDCWD, "./367/file0", [pid 7251] <... write resumed>) = 2097152 [pid 5032] <... openat resumed>) = 4 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7251] munmap(0x7ff0df171000, 138412032 [pid 5032] newfstatat(4, "", [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./367/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7250] <... write resumed>) = 2097152 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5031] close(3 [pid 5029] openat(AT_FDCWD, "./367/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... close resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 7250] munmap(0x7ff0df171000, 138412032 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 7253 attached [pid 7250] <... munmap resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7253 [pid 5029] getdents64(4, [pid 7253] set_robust_list(0x55555635e660, 24 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7253] <... set_robust_list resumed>) = 0 [pid 5032] getdents64(4, [pid 5029] getdents64(4, [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5029] close(4 [pid 7253] chdir("./368" [pid 5029] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] rmdir("./367/file0" [pid 7253] <... chdir resumed>) = 0 [pid 5032] rmdir("./368/file0" [pid 7251] <... munmap resumed>) = 0 [pid 7250] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7253] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] getdents64(3, [pid 7253] <... prctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 7253] setpgid(0, 0) = 0 [pid 7250] <... openat resumed>) = 4 [pid 5032] <... close resumed>) = 0 [pid 5029] getdents64(3, [pid 7253] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7251] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7250] ioctl(4, LOOP_SET_FD, 3 [pid 5032] rmdir("./368" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7253] <... openat resumed>) = 3 [pid 7251] <... openat resumed>) = 4 [pid 7253] write(3, "1000", 4 [pid 7251] ioctl(4, LOOP_SET_FD, 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 7253] <... write resumed>) = 4 [pid 7253] close(3 [pid 5032] mkdir("./369", 0777 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./367") = 0 [pid 5029] mkdir("./368", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 7253] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 7253] symlink("/dev/binderfs", "./binderfs" [pid 7252] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 7253] <... symlink resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7250] <... ioctl resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3./strace-static-x86_64: Process 7254 attached ) = 0 [pid 7254] set_robust_list(0x55555635e660, 24 [pid 7253] memfd_create("syzkaller", 0 [pid 7251] <... ioctl resumed>) = 0 [pid 7250] close(3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7254 [pid 7251] close(3 [pid 7250] <... close resumed>) = 0 [pid 7250] mkdir("./file0", 0777 [pid 7254] <... set_robust_list resumed>) = 0 [pid 7250] <... mkdir resumed>) = 0 [ 300.339062][ T7250] loop4: detected capacity change from 0 to 4096 [ 300.348618][ T7251] loop5: detected capacity change from 0 to 4096 [pid 7254] chdir("./368" [pid 7253] <... memfd_create resumed>) = 3 [pid 7251] <... close resumed>) = 0 ./strace-static-x86_64: Process 7255 attached [pid 7253] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7250] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7255 [pid 7255] set_robust_list(0x55555635e660, 24 [pid 7253] <... mmap resumed>) = 0x7ff0df171000 [pid 7251] mkdir("./file0", 0777 [pid 7255] <... set_robust_list resumed>) = 0 [pid 7254] <... chdir resumed>) = 0 [pid 7251] <... mkdir resumed>) = 0 [pid 7255] chdir("./369" [pid 7254] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7255] <... chdir resumed>) = 0 [pid 7254] setpgid(0, 0) = 0 [pid 7255] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7254] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7251] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7255] <... prctl resumed>) = 0 [pid 7254] write(3, "1000", 4 [pid 7255] setpgid(0, 0 [pid 7254] <... write resumed>) = 4 [pid 7255] <... setpgid resumed>) = 0 [pid 7254] close(3) = 0 [pid 7255] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7254] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7254] memfd_create("syzkaller", 0) = 3 [pid 7254] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7255] <... openat resumed>) = 3 [pid 7255] write(3, "1000", 4) = 4 [pid 7255] close(3 [pid 7252] <... write resumed>) = 2097152 [pid 7255] <... close resumed>) = 0 [pid 7255] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7255] memfd_create("syzkaller", 0 [pid 7252] munmap(0x7ff0df171000, 138412032 [pid 7255] <... memfd_create resumed>) = 3 [pid 7255] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7252] <... munmap resumed>) = 0 [pid 7255] <... mmap resumed>) = 0x7ff0df171000 [pid 7252] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 300.384879][ T7250] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 300.406401][ T7251] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [pid 7252] ioctl(4, LOOP_SET_FD, 3 [pid 7250] <... mount resumed>) = 0 [pid 7250] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7250] chdir("./file0" [pid 7254] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7252] <... ioctl resumed>) = 0 [pid 7250] <... chdir resumed>) = 0 [pid 7253] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7252] close(3 [pid 7250] ioctl(4, LOOP_CLR_FD [pid 7252] <... close resumed>) = 0 [pid 7250] <... ioctl resumed>) = 0 [pid 7250] close(4) = 0 [pid 7252] mkdir("./file0", 0777 [pid 7251] <... mount resumed>) = 0 [pid 7250] exit_group(0 [pid 7251] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7250] <... exit_group resumed>) = ? [pid 7252] <... mkdir resumed>) = 0 [pid 7251] <... openat resumed>) = 3 [pid 7250] +++ exited with 0 +++ [pid 7251] chdir("./file0" [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7250, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=6 /* 0.06 s */} --- [ 300.462819][ T7252] loop1: detected capacity change from 0 to 4096 [pid 7253] <... write resumed>) = 2097152 [pid 7252] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7251] <... chdir resumed>) = 0 [pid 7251] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] umount2("./360", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7253] munmap(0x7ff0df171000, 138412032 [pid 7251] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7251] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./360", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7251] exit_group(0) = ? [pid 5033] <... openat resumed>) = 3 [pid 7251] +++ exited with 0 +++ [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./360/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./360/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./360/binderfs") = 0 [pid 5033] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7253] <... munmap resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7251, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 7255] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7253] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 7253] <... openat resumed>) = 4 [pid 5034] <... restart_syscall resumed>) = 0 [pid 7253] ioctl(4, LOOP_SET_FD, 3 [pid 5034] umount2("./361", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7254] <... write resumed>) = 2097152 [pid 7253] <... ioctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./361", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", [pid 7254] munmap(0x7ff0df171000, 138412032 [pid 7253] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, [pid 7254] <... munmap resumed>) = 0 [pid 7253] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7253] mkdir("./file0", 0777 [pid 5034] umount2("./361/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7253] <... mkdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./361/binderfs", [pid 7253] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 300.527433][ T7252] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 300.553755][ T7253] loop2: detected capacity change from 0 to 4096 [pid 7254] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] unlink("./361/binderfs" [pid 5033] <... umount2 resumed>) = 0 [pid 7255] <... write resumed>) = 2097152 [pid 5034] <... unlink resumed>) = 0 [pid 7254] <... openat resumed>) = 4 [pid 7255] munmap(0x7ff0df171000, 138412032) = 0 [pid 5034] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7254] ioctl(4, LOOP_SET_FD, 3 [pid 5033] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./360/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./360/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./360/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./360/file0" [pid 7255] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5033] <... rmdir resumed>) = 0 [pid 7255] <... openat resumed>) = 4 [pid 7254] <... ioctl resumed>) = 0 [pid 7252] <... mount resumed>) = 0 [pid 5033] getdents64(3, [ 300.592192][ T7253] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 300.609242][ T7254] loop0: detected capacity change from 0 to 4096 [pid 7255] ioctl(4, LOOP_SET_FD, 3 [pid 7254] close(3 [pid 7252] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] <... umount2 resumed>) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7252] <... openat resumed>) = 3 [pid 7252] chdir("./file0" [pid 5033] close(3) = 0 [pid 7252] <... chdir resumed>) = 0 [pid 5033] rmdir("./360" [pid 7254] <... close resumed>) = 0 [pid 5034] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./361/file0", [pid 7254] mkdir("./file0", 0777 [pid 7252] ioctl(4, LOOP_CLR_FD [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7254] <... mkdir resumed>) = 0 [pid 7252] <... ioctl resumed>) = 0 [pid 5034] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] mkdir("./361", 0777 [pid 7252] close(4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./361/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] <... mkdir resumed>) = 0 [pid 7255] <... ioctl resumed>) = 0 [pid 7254] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7252] <... close resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 7255] close(3) = 0 [pid 7252] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7255] mkdir("./file0", 0777 [pid 7252] <... exit_group resumed>) = ? [pid 5034] getdents64(4, [pid 7255] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7255] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7253] <... mount resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7253] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7252] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5033] <... openat resumed>) = 3 [pid 7253] <... openat resumed>) = 3 [pid 7253] chdir("./file0" [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 7253] <... chdir resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7253] ioctl(4, LOOP_CLR_FD [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7252, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=7 /* 0.07 s */} --- [pid 5033] close(3 [pid 7253] <... ioctl resumed>) = 0 [pid 5030] umount2("./369", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 7253] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "./369", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7253] <... close resumed>) = 0 [pid 5034] close(4 [pid 7253] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 7253] <... exit_group resumed>) = ? [pid 5034] rmdir("./361/file0" [pid 5030] <... openat resumed>) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 7253] +++ exited with 0 +++ [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./361") = 0 [pid 5034] mkdir("./362", 0777 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7253, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} --- [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] umount2("./368", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", ./strace-static-x86_64: Process 7256 attached [pid 7256] set_robust_list(0x55555635e660, 24 [pid 5034] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7256] <... set_robust_list resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./368", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 7256] chdir("./361" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7256 [pid 7256] <... chdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7256] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] newfstatat(3, "", [pid 7256] <... prctl resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 7256] setpgid(0, 0 [pid 5030] umount2("./369/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7256] <... setpgid resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7256] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5031] umount2("./368/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 300.639793][ T7255] loop3: detected capacity change from 0 to 4096 [ 300.663979][ T7254] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 300.676701][ T7255] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7256] write(3, "1000", 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./369/binderfs", [pid 7256] <... write resumed>) = 4 [pid 7256] close(3 [pid 5031] newfstatat(AT_FDCWD, "./368/binderfs", [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7256] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./369/binderfs" [pid 7256] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5031] unlink("./368/binderfs") = 0 [pid 5031] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7256] memfd_create("syzkaller", 0) = 3 [pid 7256] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7254] <... mount resumed>) = 0 [pid 7255] <... mount resumed>) = 0 [pid 7255] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7255] chdir("./file0") = 0 [pid 7255] ioctl(4, LOOP_CLR_FD) = 0 [pid 7255] close(4) = 0 [pid 7255] exit_group(0 [pid 7254] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7255] <... exit_group resumed>) = ? [pid 7255] +++ exited with 0 +++ [pid 7254] <... openat resumed>) = 3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7255, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5032] umount2("./369", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./369", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./369/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./369/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7254] chdir("./file0" [pid 5032] unlink("./369/binderfs" [pid 5031] <... umount2 resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7254] <... chdir resumed>) = 0 [pid 5031] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7254] ioctl(4, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7254] <... ioctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./368/file0", [pid 7254] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7254] <... close resumed>) = 0 [pid 5031] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7254] exit_group(0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7254] <... exit_group resumed>) = ? [pid 5034] <... ioctl resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./368/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] close(3 [pid 5031] <... openat resumed>) = 4 [pid 5034] <... close resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7257 attached [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7257] set_robust_list(0x55555635e660, 24 [pid 5031] getdents64(4, [pid 7257] <... set_robust_list resumed>) = 0 [pid 7257] chdir("./362" [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7257] <... chdir resumed>) = 0 [pid 5031] getdents64(4, [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7257 [pid 7257] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7257] setpgid(0, 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 7257] <... setpgid resumed>) = 0 [pid 7256] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7254] +++ exited with 0 +++ [pid 5031] <... close resumed>) = 0 [pid 7257] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7254, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=4 /* 0.04 s */} --- [pid 5031] rmdir("./368/file0") = 0 [pid 7257] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] umount2("./368", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7257] write(3, "1000", 4 [pid 7256] <... write resumed>) = 2097152 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./368") = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7257] <... write resumed>) = 4 [pid 5029] openat(AT_FDCWD, "./368", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7256] munmap(0x7ff0df171000, 138412032 [pid 5031] mkdir("./369", 0777) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7257] close(3 [pid 7256] <... munmap resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 7257] <... close resumed>) = 0 [pid 7256] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7257] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, [pid 7257] <... symlink resumed>) = 0 [pid 7256] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./368/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7256] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./368/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./368/binderfs") = 0 [pid 5029] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7257] memfd_create("syzkaller", 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7258 [pid 5032] <... umount2 resumed>) = 0 [pid 5030] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./369/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7258 attached [pid 5030] openat(AT_FDCWD, "./369/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7256] <... ioctl resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./369/file0") = 0 [pid 5030] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./369") = 0 [pid 5030] mkdir("./370", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 7258] set_robust_list(0x55555635e660, 24 [pid 7257] <... memfd_create resumed>) = 3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 7257] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7258] <... set_robust_list resumed>) = 0 [pid 5032] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 7257] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7258] chdir("./369" [pid 5032] newfstatat(AT_FDCWD, "./369/file0", [pid 7258] <... chdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7259 [pid 7258] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7258] <... prctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7258] setpgid(0, 0 [pid 5032] openat(AT_FDCWD, "./369/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7258] <... setpgid resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 7258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 7258] <... openat resumed>) = 3 [pid 5032] rmdir("./369/file0") = 0 [pid 7258] write(3, "1000", 4) = 4 [pid 7258] close(3) = 0 [pid 7258] symlink("/dev/binderfs", "./binderfs") = 0 ./strace-static-x86_64: Process 7259 attached [pid 7259] set_robust_list(0x55555635e660, 24 [pid 7258] memfd_create("syzkaller", 0 [pid 7256] close(3 [pid 5032] getdents64(3, [pid 7259] <... set_robust_list resumed>) = 0 [pid 7256] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7259] chdir("./370" [pid 5032] close(3 [pid 7256] mkdir("./file0", 0777 [pid 7259] <... chdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./369" [pid 7259] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7258] <... memfd_create resumed>) = 3 [pid 7256] <... mkdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 7258] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] mkdir("./370", 0777) = 0 [pid 7258] <... mmap resumed>) = 0x7ff0df171000 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7259] <... prctl resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 7256] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [ 300.884925][ T7256] loop4: detected capacity change from 0 to 4096 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7259] setpgid(0, 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7260 ./strace-static-x86_64: Process 7260 attached [pid 7260] set_robust_list(0x55555635e660, 24) = 0 [pid 7259] <... setpgid resumed>) = 0 [pid 7260] chdir("./370" [pid 7259] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7260] <... chdir resumed>) = 0 [pid 7260] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7259] <... openat resumed>) = 3 [pid 7260] <... prctl resumed>) = 0 [pid 7259] write(3, "1000", 4 [pid 7260] setpgid(0, 0 [pid 7259] <... write resumed>) = 4 [pid 7260] <... setpgid resumed>) = 0 [pid 7259] close(3 [pid 7260] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7259] <... close resumed>) = 0 [pid 7260] <... openat resumed>) = 3 [pid 7259] symlink("/dev/binderfs", "./binderfs" [pid 7260] write(3, "1000", 4 [pid 5029] <... umount2 resumed>) = 0 [pid 7260] <... write resumed>) = 4 [pid 7260] close(3 [pid 7259] <... symlink resumed>) = 0 [pid 7260] <... close resumed>) = 0 [pid 7260] symlink("/dev/binderfs", "./binderfs" [pid 5029] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7260] <... symlink resumed>) = 0 [pid 7259] memfd_create("syzkaller", 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./368/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./368/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./368/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7260] memfd_create("syzkaller", 0 [pid 7257] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 7260] <... memfd_create resumed>) = 3 [pid 5029] close(4 [pid 7260] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... close resumed>) = 0 [pid 7260] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] rmdir("./368/file0" [pid 7259] <... memfd_create resumed>) = 3 [pid 7259] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7259] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./368") = 0 [pid 5029] mkdir("./369", 0777) = 0 [ 300.946381][ T7256] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7258] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7261 ./strace-static-x86_64: Process 7261 attached [pid 7261] set_robust_list(0x55555635e660, 24) = 0 [pid 7256] <... mount resumed>) = 0 [pid 7256] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7261] chdir("./369" [pid 7256] <... openat resumed>) = 3 [pid 7261] <... chdir resumed>) = 0 [pid 7256] chdir("./file0") = 0 [pid 7261] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7256] ioctl(4, LOOP_CLR_FD [pid 7261] <... prctl resumed>) = 0 [pid 7257] <... write resumed>) = 2097152 [pid 7256] <... ioctl resumed>) = 0 [pid 7261] setpgid(0, 0 [pid 7257] munmap(0x7ff0df171000, 138412032 [pid 7256] close(4 [pid 7261] <... setpgid resumed>) = 0 [pid 7256] <... close resumed>) = 0 [pid 7261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7260] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7257] <... munmap resumed>) = 0 [pid 7256] exit_group(0 [pid 7261] <... openat resumed>) = 3 [pid 7256] <... exit_group resumed>) = ? [pid 7256] +++ exited with 0 +++ [pid 7261] write(3, "1000", 4) = 4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7256, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 7261] close(3 [pid 7258] <... write resumed>) = 2097152 [pid 5033] umount2("./361", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./361", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7261] <... close resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7261] symlink("/dev/binderfs", "./binderfs" [pid 7259] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7261] <... symlink resumed>) = 0 [pid 5033] umount2("./361/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./361/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./361/binderfs" [pid 7261] memfd_create("syzkaller", 0 [pid 7258] munmap(0x7ff0df171000, 138412032 [pid 7257] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... unlink resumed>) = 0 [pid 7258] <... munmap resumed>) = 0 [pid 7257] <... openat resumed>) = 4 [pid 7257] ioctl(4, LOOP_SET_FD, 3 [pid 7258] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5033] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7258] <... openat resumed>) = 4 [pid 7258] ioctl(4, LOOP_SET_FD, 3 [pid 7261] <... memfd_create resumed>) = 3 [pid 7261] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7260] <... write resumed>) = 2097152 [pid 7257] <... ioctl resumed>) = 0 [pid 7257] close(3) = 0 [pid 7257] mkdir("./file0", 0777 [pid 7258] <... ioctl resumed>) = 0 [pid 7257] <... mkdir resumed>) = 0 [pid 7258] close(3) = 0 [ 301.137652][ T7257] loop5: detected capacity change from 0 to 4096 [ 301.148636][ T7258] loop2: detected capacity change from 0 to 4096 [pid 7258] mkdir("./file0", 0777) = 0 [pid 7257] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7258] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7261] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7260] munmap(0x7ff0df171000, 138412032 [pid 7259] <... write resumed>) = 2097152 [pid 7260] <... munmap resumed>) = 0 [pid 7259] munmap(0x7ff0df171000, 138412032) = 0 [pid 7260] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 301.201698][ T7257] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 301.217812][ T7258] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 7260] ioctl(4, LOOP_SET_FD, 3 [pid 7259] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 7259] ioctl(4, LOOP_SET_FD, 3 [pid 5033] <... umount2 resumed>) = 0 [pid 7259] <... ioctl resumed>) = 0 [pid 7259] close(3 [pid 7260] <... ioctl resumed>) = 0 [pid 7257] <... mount resumed>) = 0 [pid 5033] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7257] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7260] close(3 [pid 7259] <... close resumed>) = 0 [pid 7260] <... close resumed>) = 0 [pid 7259] mkdir("./file0", 0777 [pid 7260] mkdir("./file0", 0777 [pid 7259] <... mkdir resumed>) = 0 [pid 7260] <... mkdir resumed>) = 0 [pid 7260] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7259] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7257] <... openat resumed>) = 3 [ 301.252457][ T7260] loop3: detected capacity change from 0 to 4096 [ 301.266403][ T7259] loop1: detected capacity change from 0 to 4096 [pid 7261] <... write resumed>) = 2097152 [pid 7257] chdir("./file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7257] <... chdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./361/file0", [pid 7261] munmap(0x7ff0df171000, 138412032 [pid 7257] ioctl(4, LOOP_CLR_FD) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7261] <... munmap resumed>) = 0 [pid 7257] close(4 [pid 5033] umount2("./361/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7257] <... close resumed>) = 0 [pid 7257] exit_group(0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7261] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7257] <... exit_group resumed>) = ? [pid 5033] openat(AT_FDCWD, "./361/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7261] <... openat resumed>) = 4 [pid 7258] <... mount resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 7261] ioctl(4, LOOP_SET_FD, 3 [pid 7260] <... mount resumed>) = 0 [pid 7257] +++ exited with 0 +++ [pid 5033] newfstatat(4, "", [pid 7258] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 301.301761][ T7260] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 301.310371][ T7259] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7258] <... openat resumed>) = 3 [pid 7260] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7258] chdir("./file0" [pid 7260] chdir("./file0" [pid 7258] <... chdir resumed>) = 0 [pid 7260] <... chdir resumed>) = 0 [pid 7258] ioctl(4, LOOP_CLR_FD [pid 7260] ioctl(4, LOOP_CLR_FD [pid 7258] <... ioctl resumed>) = 0 [pid 7260] <... ioctl resumed>) = 0 [pid 7260] close(4 [pid 7258] close(4 [pid 7260] <... close resumed>) = 0 [pid 7258] <... close resumed>) = 0 [pid 7260] exit_group(0 [pid 7258] exit_group(0 [pid 5033] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7257, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- [pid 7260] <... exit_group resumed>) = ? [pid 7258] <... exit_group resumed>) = ? [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] close(4 [pid 5034] umount2("./362", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 7261] <... ioctl resumed>) = 0 [pid 7258] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./361/file0" [pid 7261] close(3 [pid 5034] openat(AT_FDCWD, "./362", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7258, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} --- [pid 5034] newfstatat(3, "", [pid 5033] getdents64(3, [pid 7261] <... close resumed>) = 0 [pid 7261] mkdir("./file0", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./369", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7261] <... mkdir resumed>) = 0 [pid 7260] +++ exited with 0 +++ [pid 5034] getdents64(3, [pid 5033] close(3 [pid 5031] openat(AT_FDCWD, "./369", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7261] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] <... close resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7260, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- [pid 5031] <... openat resumed>) = 3 [pid 5034] umount2("./362/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./361" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(3, "", [pid 5034] newfstatat(AT_FDCWD, "./362/binderfs", [pid 5033] <... rmdir resumed>) = 0 [pid 5032] umount2("./370", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(3, [pid 5032] openat(AT_FDCWD, "./370", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... openat resumed>) = 3 [pid 5031] umount2("./369/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] mkdir("./362", 0777 [pid 5032] newfstatat(3, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5031] newfstatat(AT_FDCWD, "./369/binderfs", [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./362/binderfs" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] umount2("./370/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./369/binderfs" [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7259] <... mount resumed>) = 0 [pid 5034] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./370/binderfs", [pid 5031] <... unlink resumed>) = 0 [pid 7259] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 301.346517][ T7261] loop0: detected capacity change from 0 to 4096 [pid 5031] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7259] <... openat resumed>) = 3 [pid 5032] unlink("./370/binderfs") = 0 [pid 5032] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7259] chdir("./file0" [pid 5033] close(3 [pid 7259] <... chdir resumed>) = 0 [pid 7259] ioctl(4, LOOP_CLR_FD [pid 5033] <... close resumed>) = 0 [pid 7259] <... ioctl resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7262 attached [pid 7259] close(4 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7262 [pid 7259] <... close resumed>) = 0 [pid 7259] exit_group(0 [pid 7262] set_robust_list(0x55555635e660, 24 [pid 7259] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = 0 [pid 7262] <... set_robust_list resumed>) = 0 [pid 7262] chdir("./362" [pid 7259] +++ exited with 0 +++ [pid 5034] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7262] <... chdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7262] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] newfstatat(AT_FDCWD, "./362/file0", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7259, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=5 /* 0.05 s */} --- [pid 7262] <... prctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7262] setpgid(0, 0 [pid 5034] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7262] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./370", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7262] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] openat(AT_FDCWD, "./362/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7262] <... openat resumed>) = 3 [pid 5034] <... openat resumed>) = 4 [pid 5030] openat(AT_FDCWD, "./370", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7262] write(3, "1000", 4 [pid 5030] newfstatat(3, "", [pid 7262] <... write resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 301.391849][ T7261] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7262] close(3 [pid 5030] getdents64(3, [pid 7262] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7262] symlink("/dev/binderfs", "./binderfs" [pid 5034] getdents64(4, [pid 5030] umount2("./370/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7262] <... symlink resumed>) = 0 [pid 5034] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./370/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./370/binderfs") = 0 [pid 5030] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 7262] memfd_create("syzkaller", 0 [pid 7261] <... mount resumed>) = 0 [pid 5034] rmdir("./362/file0" [pid 7261] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5034] <... rmdir resumed>) = 0 [pid 7261] chdir("./file0") = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7261] ioctl(4, LOOP_CLR_FD) = 0 [pid 5034] close(3 [pid 7261] close(4 [pid 5034] <... close resumed>) = 0 [pid 7261] <... close resumed>) = 0 [pid 7261] exit_group(0) = ? [pid 7261] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7261, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 7262] <... memfd_create resumed>) = 3 [pid 5034] rmdir("./362" [pid 5031] <... umount2 resumed>) = 0 [pid 5029] umount2("./369", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5031] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./369", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", [pid 7262] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] mkdir("./363", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7262] <... mmap resumed>) = 0x7ff0df171000 [pid 5031] newfstatat(AT_FDCWD, "./369/file0", [pid 5029] getdents64(3, [pid 5034] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./369/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./369/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5029] newfstatat(AT_FDCWD, "./369/binderfs", [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(4, [pid 5029] unlink("./369/binderfs" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... unlink resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5032] newfstatat(AT_FDCWD, "./370/file0", [pid 5031] getdents64(4, [pid 5029] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./370/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] close(4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] getdents64(4, [pid 5031] <... close resumed>) = 0 [pid 5034] close(3 [pid 5031] rmdir("./369/file0" [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] close(4 [pid 5031] getdents64(3, [pid 5032] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./370/file0" [pid 5031] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./369" [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5032] rmdir("./370") = 0 [pid 5032] mkdir("./371", 0777 [pid 5031] mkdir("./370", 0777 [pid 5034] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... umount2 resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7263 ./strace-static-x86_64: Process 7263 attached [pid 7263] set_robust_list(0x55555635e660, 24) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 7263] chdir("./371") = 0 [pid 7263] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7263] setpgid(0, 0) = 0 [pid 7263] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7264 ./strace-static-x86_64: Process 7264 attached [pid 7264] set_robust_list(0x55555635e660, 24 [pid 7263] <... openat resumed>) = 3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7264] <... set_robust_list resumed>) = 0 [pid 7264] chdir("./363" [pid 7263] write(3, "1000", 4 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = 0 [pid 7264] <... chdir resumed>) = 0 [pid 7263] <... write resumed>) = 4 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7264] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7263] close(3) = 0 [pid 7263] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7263] memfd_create("syzkaller", 0) = 3 [pid 7263] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5031] close(3 [pid 7264] <... prctl resumed>) = 0 [pid 7264] setpgid(0, 0 [pid 7262] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... close resumed>) = 0 [pid 7264] <... setpgid resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7264] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7265 [pid 5030] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7265 attached [pid 7265] set_robust_list(0x55555635e660, 24) = 0 [pid 7265] chdir("./370") = 0 [pid 7265] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7265] setpgid(0, 0) = 0 [pid 7265] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] newfstatat(AT_FDCWD, "./370/file0", [pid 7265] write(3, "1000", 4) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7265] close(3 [pid 7264] <... openat resumed>) = 3 [pid 5030] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7264] write(3, "1000", 4 [pid 5030] openat(AT_FDCWD, "./370/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7264] <... write resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 7264] close(3 [pid 5029] newfstatat(AT_FDCWD, "./369/file0", [pid 7264] <... close resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7265] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7264] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./369/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7265] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] openat(AT_FDCWD, "./369/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 7265] <... symlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5030] close(4 [pid 5029] newfstatat(4, "", [pid 5030] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] rmdir("./370/file0" [pid 5029] getdents64(4, [pid 7265] memfd_create("syzkaller", 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(3, [pid 5029] getdents64(4, [pid 7265] <... memfd_create resumed>) = 3 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(3 [pid 5029] close(4 [pid 7265] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5030] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 7264] <... symlink resumed>) = 0 [pid 5030] rmdir("./370" [pid 5029] rmdir("./369/file0" [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5029] getdents64(3, [pid 5030] mkdir("./371", 0777 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7264] memfd_create("syzkaller", 0 [pid 7263] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./369" [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7264] <... memfd_create resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 7264] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] mkdir("./370", 0777 [pid 7264] <... mmap resumed>) = 0x7ff0df171000 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ./strace-static-x86_64: Process 7266 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7266 [pid 7266] set_robust_list(0x55555635e660, 24 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7266] <... set_robust_list resumed>) = 0 [pid 7266] chdir("./371" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7266] <... chdir resumed>) = 0 [pid 5029] close(3 [pid 7266] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] <... close resumed>) = 0 [pid 7266] setpgid(0, 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7266] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 7267 attached [pid 7266] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7267 [pid 7267] set_robust_list(0x55555635e660, 24 [pid 7266] <... openat resumed>) = 3 [pid 7267] <... set_robust_list resumed>) = 0 [pid 7267] chdir("./370") = 0 [pid 7267] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7266] write(3, "1000", 4 [pid 7267] setpgid(0, 0) = 0 [pid 7267] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7267] write(3, "1000", 4) = 4 [pid 7267] close(3) = 0 [pid 7267] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7266] <... write resumed>) = 4 [pid 7265] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7262] <... write resumed>) = 2097152 [pid 7266] close(3) = 0 [pid 7266] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7267] memfd_create("syzkaller", 0 [pid 7266] memfd_create("syzkaller", 0 [pid 7262] munmap(0x7ff0df171000, 138412032) = 0 [pid 7262] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7267] <... memfd_create resumed>) = 3 [pid 7267] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7263] <... write resumed>) = 2097152 [pid 7267] <... mmap resumed>) = 0x7ff0df171000 [pid 7262] <... openat resumed>) = 4 [pid 7266] <... memfd_create resumed>) = 3 [pid 7262] ioctl(4, LOOP_SET_FD, 3 [pid 7266] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7264] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7263] munmap(0x7ff0df171000, 138412032 [pid 7262] <... ioctl resumed>) = 0 [pid 7263] <... munmap resumed>) = 0 [pid 7265] <... write resumed>) = 2097152 [pid 7262] close(3) = 0 [pid 7262] mkdir("./file0", 0777) = 0 [pid 7263] openat(AT_FDCWD, "/dev/loop3", O_RDWR [ 301.765100][ T7262] loop4: detected capacity change from 0 to 4096 [pid 7262] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7265] munmap(0x7ff0df171000, 138412032) = 0 [pid 7263] <... openat resumed>) = 4 [pid 7263] ioctl(4, LOOP_SET_FD, 3 [pid 7265] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 7267] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7265] ioctl(4, LOOP_SET_FD, 3 [pid 7263] <... ioctl resumed>) = 0 [pid 7263] close(3 [pid 7264] <... write resumed>) = 2097152 [pid 7263] <... close resumed>) = 0 [pid 7264] munmap(0x7ff0df171000, 138412032 [pid 7263] mkdir("./file0", 0777) = 0 [pid 7265] <... ioctl resumed>) = 0 [pid 7263] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7265] close(3) = 0 [ 301.808987][ T7262] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 301.820590][ T7263] loop3: detected capacity change from 0 to 4096 [ 301.830949][ T7265] loop2: detected capacity change from 0 to 4096 [pid 7265] mkdir("./file0", 0777) = 0 [pid 7265] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7264] <... munmap resumed>) = 0 [pid 7264] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7266] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7264] <... openat resumed>) = 4 [pid 7264] ioctl(4, LOOP_SET_FD, 3 [pid 7267] <... write resumed>) = 2097152 [pid 7267] munmap(0x7ff0df171000, 138412032) = 0 [pid 7267] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 7267] ioctl(4, LOOP_SET_FD, 3 [pid 7264] <... ioctl resumed>) = 0 [pid 7264] close(3) = 0 [pid 7264] mkdir("./file0", 0777 [pid 7267] <... ioctl resumed>) = 0 [pid 7267] close(3) = 0 [pid 7264] <... mkdir resumed>) = 0 [pid 7264] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7267] mkdir("./file0", 0777) = 0 [ 301.855476][ T7263] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 301.874617][ T7265] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 301.885112][ T7264] loop5: detected capacity change from 0 to 4096 [ 301.892386][ T7267] loop0: detected capacity change from 0 to 4096 [pid 7267] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7263] <... mount resumed>) = 0 [pid 7263] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7263] chdir("./file0") = 0 [pid 7263] ioctl(4, LOOP_CLR_FD) = 0 [pid 7263] close(4) = 0 [pid 7266] <... write resumed>) = 2097152 [pid 7263] exit_group(0 [pid 7266] munmap(0x7ff0df171000, 138412032 [pid 7263] <... exit_group resumed>) = ? [pid 7262] <... mount resumed>) = 0 [pid 7263] +++ exited with 0 +++ [pid 7262] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7265] <... mount resumed>) = 0 [pid 7262] <... openat resumed>) = 3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7263, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=7 /* 0.07 s */} --- [pid 7265] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7262] chdir("./file0") = 0 [pid 7262] ioctl(4, LOOP_CLR_FD) = 0 [pid 7265] <... openat resumed>) = 3 [pid 7262] close(4 [pid 7265] chdir("./file0" [pid 7262] <... close resumed>) = 0 [pid 7265] <... chdir resumed>) = 0 [pid 7262] exit_group(0 [pid 7266] <... munmap resumed>) = 0 [pid 7265] ioctl(4, LOOP_CLR_FD [pid 7262] <... exit_group resumed>) = ? [pid 5032] umount2("./371", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7265] <... ioctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./371", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7265] close(4 [pid 5032] getdents64(3, [pid 7265] <... close resumed>) = 0 [pid 7265] exit_group(0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7266] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7265] <... exit_group resumed>) = ? [ 301.910084][ T7264] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 301.920729][ T7267] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5032] umount2("./371/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7266] <... openat resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./371/binderfs", [pid 7266] ioctl(4, LOOP_SET_FD, 3 [pid 7262] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7267] <... mount resumed>) = 0 [pid 7265] +++ exited with 0 +++ [pid 5032] unlink("./371/binderfs" [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7265, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7262, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5033] umount2("./362", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./362", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] umount2("./370", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./370", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(3, "", [pid 5031] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] newfstatat(3, "", [pid 5033] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] getdents64(3, [pid 7266] <... ioctl resumed>) = 0 [pid 5033] umount2("./362/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7266] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./370/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7266] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./362/binderfs", [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7267] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7266] mkdir("./file0", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./370/binderfs", [pid 7266] <... mkdir resumed>) = 0 [pid 7267] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7267] chdir("./file0") = 0 [pid 5031] unlink("./370/binderfs" [pid 7267] ioctl(4, LOOP_CLR_FD [pid 5031] <... unlink resumed>) = 0 [pid 7267] <... ioctl resumed>) = 0 [pid 7266] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7267] close(4 [pid 5031] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7267] <... close resumed>) = 0 [pid 7264] <... mount resumed>) = 0 [pid 7267] exit_group(0 [pid 7264] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7267] <... exit_group resumed>) = ? [pid 7264] <... openat resumed>) = 3 [pid 5033] unlink("./362/binderfs") = 0 [pid 7267] +++ exited with 0 +++ [pid 7264] chdir("./file0") = 0 [pid 7264] ioctl(4, LOOP_CLR_FD) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7267, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7264] close(4) = 0 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7264] exit_group(0 [pid 5033] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7264] <... exit_group resumed>) = ? [pid 5029] <... restart_syscall resumed>) = 0 [pid 7264] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7264, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=3 /* 0.03 s */} --- [pid 5032] <... umount2 resumed>) = 0 [pid 5029] umount2("./370", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./370", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./363", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./371/file0", [pid 5029] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(3, "", [pid 5034] openat(AT_FDCWD, "./363", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] getdents64(3, [pid 5034] newfstatat(3, "", [pid 5032] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(3, [pid 5032] openat(AT_FDCWD, "./371/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./370/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... openat resumed>) = 4 [pid 5034] umount2("./363/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(4, "", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./370/binderfs", [pid 5034] newfstatat(AT_FDCWD, "./363/binderfs", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5029] unlink("./370/binderfs" [pid 5034] unlink("./363/binderfs" [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] <... unlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5034] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./371/file0") = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [ 301.975821][ T7266] loop1: detected capacity change from 0 to 4096 [ 302.008256][ T7266] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5032] close(3) = 0 [pid 5032] rmdir("./371") = 0 [pid 5032] mkdir("./372", 0777 [pid 5031] <... umount2 resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 7266] <... mount resumed>) = 0 [pid 7266] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5033] <... umount2 resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5031] newfstatat(AT_FDCWD, "./370/file0", [pid 5032] <... close resumed>) = 0 [pid 5033] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7268 attached [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7268 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7268] set_robust_list(0x55555635e660, 24 [pid 7266] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./362/file0", [pid 5031] openat(AT_FDCWD, "./370/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(AT_FDCWD, "./370/file0", [pid 7268] <... set_robust_list resumed>) = 0 [pid 7266] chdir("./file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7268] chdir("./372" [pid 7266] <... chdir resumed>) = 0 [pid 5033] umount2("./362/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(4, "", [pid 5029] umount2("./370/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7268] <... chdir resumed>) = 0 [pid 7266] ioctl(4, LOOP_CLR_FD [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7266] <... ioctl resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./370/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7266] close(4 [pid 5029] <... openat resumed>) = 4 [pid 7266] <... close resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 7266] exit_group(0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7266] <... exit_group resumed>) = ? [pid 5029] getdents64(4, [pid 7266] +++ exited with 0 +++ [pid 5031] getdents64(4, [pid 7268] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] openat(AT_FDCWD, "./362/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7268] <... prctl resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7268] setpgid(0, 0 [pid 5033] newfstatat(4, "", [pid 5031] getdents64(4, [pid 7268] <... setpgid resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7266, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=9 /* 0.09 s */} --- [pid 5029] getdents64(4, [pid 5033] getdents64(4, [pid 5031] close(4 [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5029] close(4 [pid 7268] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] rmdir("./370/file0" [pid 5029] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7268] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] rmdir("./370/file0" [pid 7268] write(3, "1000", 4 [pid 5033] getdents64(4, [pid 5031] getdents64(3, [pid 7268] <... write resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7268] close(3 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7268] <... close resumed>) = 0 [pid 5033] close(4 [pid 5031] close(3 [pid 7268] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] rmdir("./370" [pid 7268] <... symlink resumed>) = 0 [pid 5033] rmdir("./362/file0" [pid 5031] <... rmdir resumed>) = 0 [pid 5030] umount2("./371", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 5030] openat(AT_FDCWD, "./371", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] close(3 [pid 7268] memfd_create("syzkaller", 0 [pid 5031] mkdir("./371", 0777 [pid 5030] newfstatat(3, "", [pid 5029] <... close resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] rmdir("./370" [pid 5030] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] mkdir("./371", 0777 [pid 5031] <... mkdir resumed>) = 0 [pid 5033] getdents64(3, [pid 7268] <... memfd_create resumed>) = 3 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] umount2("./371/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 [pid 7268] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] close(3 [pid 7268] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] newfstatat(AT_FDCWD, "./371/binderfs", [pid 5034] newfstatat(AT_FDCWD, "./363/file0", [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] close(3 [pid 5030] unlink("./371/binderfs" [pid 5029] <... openat resumed>) = 3 [pid 5034] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./362" [pid 5031] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] openat(AT_FDCWD, "./363/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 7269 attached ) = 4 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 5034] newfstatat(4, "", [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7269 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./371/file0", [pid 5034] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7270 ./strace-static-x86_64: Process 7270 attached [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] mkdir("./363", 0777 [pid 5030] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./371/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] rmdir("./363/file0" [pid 5030] <... openat resumed>) = 4 [pid 7270] set_robust_list(0x55555635e660, 24 [pid 7269] set_robust_list(0x55555635e660, 24 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 7270] <... set_robust_list resumed>) = 0 [pid 7269] <... set_robust_list resumed>) = 0 [pid 7270] chdir("./371" [pid 7269] chdir("./371" [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7269] <... chdir resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 7270] <... chdir resumed>) = 0 [pid 7269] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] getdents64(3, [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(4, [pid 7270] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7269] <... prctl resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7270] <... prctl resumed>) = 0 [pid 7269] setpgid(0, 0 [pid 7270] setpgid(0, 0 [pid 7269] <... setpgid resumed>) = 0 [pid 5033] close(3 [pid 7270] <... setpgid resumed>) = 0 [pid 7270] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7269] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 7269] <... openat resumed>) = 3 [pid 5030] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 7270] <... openat resumed>) = 3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7270] write(3, "1000", 4 [pid 7269] write(3, "1000", 4 [pid 5034] close(3 [pid 5030] <... close resumed>) = 0 [pid 7269] <... write resumed>) = 4 [pid 5034] <... close resumed>) = 0 [pid 5030] rmdir("./371/file0" [pid 7269] close(3) = 0 [pid 7270] <... write resumed>) = 4 [pid 7269] symlink("/dev/binderfs", "./binderfs" [pid 5034] rmdir("./363" [pid 5030] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 7271 attached [pid 7270] close(3) = 0 [pid 7270] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7271 [pid 7271] set_robust_list(0x55555635e660, 24 [pid 7270] <... symlink resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] getdents64(3, [pid 7271] <... set_robust_list resumed>) = 0 [pid 7269] <... symlink resumed>) = 0 [pid 7271] chdir("./363" [pid 5034] mkdir("./364", 0777 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5030] close(3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 7271] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5030] rmdir("./371" [pid 7271] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7270] memfd_create("syzkaller", 0 [pid 7269] memfd_create("syzkaller", 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5030] <... rmdir resumed>) = 0 [pid 7271] <... prctl resumed>) = 0 [pid 7270] <... memfd_create resumed>) = 3 [pid 7269] <... memfd_create resumed>) = 3 [pid 7268] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] mkdir("./372", 0777 [pid 7271] setpgid(0, 0 [pid 7270] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7269] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] close(3 [pid 5030] <... mkdir resumed>) = 0 [pid 7271] <... setpgid resumed>) = 0 [pid 7270] <... mmap resumed>) = 0x7ff0df171000 [pid 7269] <... mmap resumed>) = 0x7ff0df171000 [pid 5034] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7271] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7271] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7272 attached [pid 7271] write(3, "1000", 4 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7272 [pid 7271] <... write resumed>) = 4 [pid 7271] close(3 [pid 7272] set_robust_list(0x55555635e660, 24 [pid 7271] <... close resumed>) = 0 [pid 7272] <... set_robust_list resumed>) = 0 [pid 7271] symlink("/dev/binderfs", "./binderfs" [pid 7272] chdir("./364") = 0 [pid 7271] <... symlink resumed>) = 0 [pid 7272] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7271] memfd_create("syzkaller", 0 [pid 7272] setpgid(0, 0) = 0 [pid 7272] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7273 [pid 7272] write(3, "1000", 4./strace-static-x86_64: Process 7273 attached ) = 4 [pid 7271] <... memfd_create resumed>) = 3 [pid 7271] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7273] set_robust_list(0x55555635e660, 24 [pid 7272] close(3 [pid 7271] <... mmap resumed>) = 0x7ff0df171000 [pid 7273] <... set_robust_list resumed>) = 0 [pid 7272] <... close resumed>) = 0 [pid 7273] chdir("./372" [pid 7272] symlink("/dev/binderfs", "./binderfs" [pid 7273] <... chdir resumed>) = 0 [pid 7272] <... symlink resumed>) = 0 [pid 7273] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7272] memfd_create("syzkaller", 0 [pid 7273] <... prctl resumed>) = 0 [pid 7273] setpgid(0, 0) = 0 [pid 7273] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7273] write(3, "1000", 4 [pid 7272] <... memfd_create resumed>) = 3 [pid 7273] <... write resumed>) = 4 [pid 7272] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7273] close(3 [pid 7272] <... mmap resumed>) = 0x7ff0df171000 [pid 7273] <... close resumed>) = 0 [pid 7273] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7273] memfd_create("syzkaller", 0) = 3 [pid 7273] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7268] <... write resumed>) = 2097152 [pid 7268] munmap(0x7ff0df171000, 138412032 [pid 7269] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7268] <... munmap resumed>) = 0 [pid 7271] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7268] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 7268] ioctl(4, LOOP_SET_FD, 3 [pid 7272] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7270] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7273] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7268] <... ioctl resumed>) = 0 [pid 7268] close(3) = 0 [ 302.407350][ T7268] loop3: detected capacity change from 0 to 4096 [pid 7268] mkdir("./file0", 0777) = 0 [pid 7271] <... write resumed>) = 2097152 [pid 7269] <... write resumed>) = 2097152 [pid 7268] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7271] munmap(0x7ff0df171000, 138412032 [pid 7272] <... write resumed>) = 2097152 [pid 7271] <... munmap resumed>) = 0 [pid 7269] munmap(0x7ff0df171000, 138412032 [pid 7272] munmap(0x7ff0df171000, 138412032 [pid 7271] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7270] <... write resumed>) = 2097152 [pid 7269] <... munmap resumed>) = 0 [pid 7272] <... munmap resumed>) = 0 [pid 7271] <... openat resumed>) = 4 [pid 7270] munmap(0x7ff0df171000, 138412032 [pid 7271] ioctl(4, LOOP_SET_FD, 3 [pid 7268] <... mount resumed>) = 0 [pid 7268] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7273] <... write resumed>) = 2097152 [pid 7272] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7269] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7268] <... openat resumed>) = 3 [pid 7271] <... ioctl resumed>) = 0 [pid 7273] munmap(0x7ff0df171000, 138412032 [pid 7272] <... openat resumed>) = 4 [pid 7271] close(3 [pid 7270] <... munmap resumed>) = 0 [pid 7269] <... openat resumed>) = 4 [pid 7268] chdir("./file0" [pid 7271] <... close resumed>) = 0 [pid 7268] <... chdir resumed>) = 0 [pid 7271] mkdir("./file0", 0777 [pid 7270] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7269] ioctl(4, LOOP_SET_FD, 3 [pid 7268] ioctl(4, LOOP_CLR_FD [pid 7272] ioctl(4, LOOP_SET_FD, 3 [pid 7270] <... openat resumed>) = 4 [pid 7268] <... ioctl resumed>) = 0 [ 302.487445][ T7268] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 302.515615][ T7271] loop4: detected capacity change from 0 to 4096 [pid 7268] close(4 [pid 7273] <... munmap resumed>) = 0 [pid 7271] <... mkdir resumed>) = 0 [pid 7270] ioctl(4, LOOP_SET_FD, 3 [pid 7269] <... ioctl resumed>) = 0 [pid 7268] <... close resumed>) = 0 [pid 7272] <... ioctl resumed>) = 0 [pid 7271] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7270] <... ioctl resumed>) = 0 [pid 7268] exit_group(0 [pid 7273] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 7273] ioctl(4, LOOP_SET_FD, 3 [pid 7272] close(3 [pid 7268] <... exit_group resumed>) = ? [pid 7273] <... ioctl resumed>) = 0 [pid 7273] close(3) = 0 [pid 7273] mkdir("./file0", 0777 [pid 7272] <... close resumed>) = 0 [pid 7273] <... mkdir resumed>) = 0 [pid 7273] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7268] +++ exited with 0 +++ [pid 7272] mkdir("./file0", 0777 [pid 7270] close(3) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7268, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=8 /* 0.08 s */} --- [pid 7270] mkdir("./file0", 0777 [pid 7272] <... mkdir resumed>) = 0 [pid 7272] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7270] <... mkdir resumed>) = 0 [pid 5032] umount2("./372", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7269] close(3) = 0 [pid 7269] mkdir("./file0", 0777) = 0 [pid 7269] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [ 302.531886][ T7269] loop2: detected capacity change from 0 to 4096 [ 302.532512][ T7272] loop5: detected capacity change from 0 to 4096 [ 302.543183][ T7270] loop0: detected capacity change from 0 to 4096 [ 302.552877][ T7273] loop1: detected capacity change from 0 to 4096 [ 302.553533][ T7271] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 302.576789][ T7273] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7270] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./372", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] umount2("./372/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./372/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./372/binderfs") = 0 [pid 5032] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7271] <... mount resumed>) = 0 [pid 7271] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7271] chdir("./file0") = 0 [pid 7271] ioctl(4, LOOP_CLR_FD) = 0 [pid 7271] close(4) = 0 [pid 7271] exit_group(0) = ? [pid 7271] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7271, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 5033] umount2("./363", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./363", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./363/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./363/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./363/binderfs" [pid 7272] <... mount resumed>) = 0 [ 302.587720][ T7269] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 302.598512][ T7272] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 302.609738][ T7270] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 7273] <... mount resumed>) = 0 [pid 7272] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7269] <... mount resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 7272] <... openat resumed>) = 3 [pid 7269] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7273] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7272] chdir("./file0" [pid 7270] <... mount resumed>) = 0 [pid 7269] <... openat resumed>) = 3 [pid 5033] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = 0 [pid 7273] <... openat resumed>) = 3 [pid 7272] <... chdir resumed>) = 0 [pid 7273] chdir("./file0" [pid 7272] ioctl(4, LOOP_CLR_FD [pid 7269] chdir("./file0" [pid 5032] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7273] <... chdir resumed>) = 0 [pid 7272] <... ioctl resumed>) = 0 [pid 7270] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7269] <... chdir resumed>) = 0 [pid 7273] ioctl(4, LOOP_CLR_FD [pid 7272] close(4 [pid 7270] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7272] <... close resumed>) = 0 [pid 7269] ioctl(4, LOOP_CLR_FD [pid 7272] exit_group(0 [pid 7270] chdir("./file0" [pid 7269] <... ioctl resumed>) = 0 [pid 7272] <... exit_group resumed>) = ? [pid 7270] <... chdir resumed>) = 0 [pid 7269] close(4 [pid 7272] +++ exited with 0 +++ [pid 7270] ioctl(4, LOOP_CLR_FD) = 0 [pid 7269] <... close resumed>) = 0 [pid 7269] exit_group(0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7272, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7270] close(4 [pid 7269] <... exit_group resumed>) = ? [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 7270] <... close resumed>) = 0 [pid 7269] +++ exited with 0 +++ [pid 7270] exit_group(0 [pid 5034] umount2("./364", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./364", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7270] <... exit_group resumed>) = ? [pid 5034] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", [pid 7270] +++ exited with 0 +++ [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./364/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7273] <... ioctl resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7270, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} --- [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./364/binderfs", [pid 7273] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./372/file0", [pid 5034] unlink("./364/binderfs" [pid 7273] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7269, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=6 /* 0.06 s */} --- [pid 5029] umount2("./371", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7273] exit_group(0 [pid 5034] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./371", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7273] <... exit_group resumed>) = ? [pid 5032] openat(AT_FDCWD, "./372/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./371", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5032] <... openat resumed>) = 4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] newfstatat(4, "", [pid 5031] openat(AT_FDCWD, "./371", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./371/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./371/binderfs", [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5031] newfstatat(3, "", [pid 5029] unlink("./371/binderfs" [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5029] <... unlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./372/file0") = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] getdents64(3, [pid 7273] +++ exited with 0 +++ [pid 5033] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5033] newfstatat(AT_FDCWD, "./363/file0", [pid 5032] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7273, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = 0 [pid 5033] umount2("./363/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./372" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./364/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./363/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5032] mkdir("./373", 0777 [pid 5030] umount2("./372", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./364/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] getdents64(4, [pid 5030] openat(AT_FDCWD, "./372", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... openat resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 5033] close(4 [pid 5030] newfstatat(3, "", [pid 5032] <... mkdir resumed>) = 0 [pid 5031] umount2("./371/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] getdents64(4, [pid 5033] rmdir("./363/file0" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(AT_FDCWD, "./371/binderfs", [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] close(3 [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] umount2("./372/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(4, [pid 5033] getdents64(3, [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 5033] close(3 [pid 5034] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5034] rmdir("./364/file0" [pid 5033] rmdir("./363" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(AT_FDCWD, "./372/binderfs", [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7274 [pid 5031] unlink("./371/binderfs" [pid 5034] getdents64(3, [pid 5033] mkdir("./364", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] unlink("./372/binderfs" [pid 5034] close(3 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5031] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 7274 attached [pid 5034] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 7274] set_robust_list(0x55555635e660, 24 [pid 5034] rmdir("./364" [pid 5030] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7274] <... set_robust_list resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 7274] chdir("./373" [pid 5034] mkdir("./365", 0777 [pid 7274] <... chdir resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 7274] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7274] <... prctl resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 7274] setpgid(0, 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7274] <... setpgid resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7274] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] close(3 [pid 7274] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7274] write(3, "1000", 4./strace-static-x86_64: Process 7275 attached ) = 4 [pid 7274] close(3 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 7274] <... close resumed>) = 0 [pid 5033] close(3 [pid 7275] set_robust_list(0x55555635e660, 24 [pid 7274] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7275] <... set_robust_list resumed>) = 0 [pid 7274] <... symlink resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7276 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7275 [pid 7275] chdir("./365") = 0 [pid 7275] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7274] memfd_create("syzkaller", 0 [pid 7275] <... prctl resumed>) = 0 [pid 7275] setpgid(0, 0) = 0 [pid 7275] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7275] write(3, "1000", 4 [pid 7274] <... memfd_create resumed>) = 3 [pid 7275] <... write resumed>) = 4 [pid 7274] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 7276 attached [pid 7275] close(3 [pid 7274] <... mmap resumed>) = 0x7ff0df171000 [pid 7276] set_robust_list(0x55555635e660, 24 [pid 7275] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 7276] <... set_robust_list resumed>) = 0 [pid 7275] symlink("/dev/binderfs", "./binderfs" [pid 7276] chdir("./364" [pid 7275] <... symlink resumed>) = 0 [pid 7276] <... chdir resumed>) = 0 [pid 7275] memfd_create("syzkaller", 0) = 3 [pid 7275] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7276] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7276] <... prctl resumed>) = 0 [pid 7276] setpgid(0, 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7276] <... setpgid resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./371/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./371/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7276] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 7276] <... openat resumed>) = 3 [pid 7276] write(3, "1000", 4 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] getdents64(4, [pid 7276] <... write resumed>) = 4 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7276] close(3 [pid 5031] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = 0 [pid 5029] close(4 [pid 7276] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7276] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./371/file0", [pid 7276] <... symlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] rmdir("./371/file0" [pid 5030] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7276] memfd_create("syzkaller", 0 [pid 5030] newfstatat(AT_FDCWD, "./372/file0", [pid 7276] <... memfd_create resumed>) = 3 [pid 5031] umount2("./371/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 7276] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7276] <... mmap resumed>) = 0x7ff0df171000 [pid 7274] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] openat(AT_FDCWD, "./371/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 7275] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5031] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", [pid 5030] openat(AT_FDCWD, "./372/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5031] getdents64(4, [pid 5029] close(3 [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 5029] rmdir("./371" [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(4, "", [pid 5029] <... rmdir resumed>) = 0 [pid 5031] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 5029] mkdir("./372", 0777 [pid 5031] rmdir("./371/file0" [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] getdents64(4, [pid 5029] <... mkdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5031] getdents64(3, [pid 5030] rmdir("./372/file0" [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5031] close(3 [pid 5029] <... openat resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5031] rmdir("./371" [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... rmdir resumed>) = 0 [pid 5030] close(3 [pid 5029] close(3 [pid 5031] mkdir("./372", 0777 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./372" [pid 5029] <... close resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5030] mkdir("./373", 0777) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555635e650) = 7277 [pid 5031] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7278 attached ./strace-static-x86_64: Process 7277 attached [pid 5031] ioctl(3, LOOP_CLR_FD [pid 7278] set_robust_list(0x55555635e660, 24 [pid 7277] set_robust_list(0x55555635e660, 24 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7278] <... set_robust_list resumed>) = 0 [pid 7277] <... set_robust_list resumed>) = 0 [pid 5031] close(3 [pid 7278] chdir("./372" [pid 7277] chdir("./373" [pid 5031] <... close resumed>) = 0 [pid 7278] <... chdir resumed>) = 0 [pid 7277] <... chdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7278 [pid 7277] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7277] setpgid(0, 0) = 0 [pid 7277] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7278] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 7279 attached ) = 0 [pid 7277] <... openat resumed>) = 3 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7279 [pid 7279] set_robust_list(0x55555635e660, 24 [pid 7278] setpgid(0, 0 [pid 7277] write(3, "1000", 4 [pid 7279] <... set_robust_list resumed>) = 0 [pid 7279] chdir("./372" [pid 7277] <... write resumed>) = 4 [pid 7277] close(3) = 0 [pid 7277] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7279] <... chdir resumed>) = 0 [pid 7278] <... setpgid resumed>) = 0 [pid 7277] memfd_create("syzkaller", 0 [pid 7279] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7278] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7279] setpgid(0, 0) = 0 [pid 7277] <... memfd_create resumed>) = 3 [pid 7279] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7277] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7279] <... openat resumed>) = 3 [pid 7278] <... openat resumed>) = 3 [pid 7277] <... mmap resumed>) = 0x7ff0df171000 [pid 7279] write(3, "1000", 4 [pid 7278] write(3, "1000", 4 [pid 7276] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7279] <... write resumed>) = 4 [pid 7275] <... write resumed>) = 2097152 [pid 7279] close(3) = 0 [pid 7279] symlink("/dev/binderfs", "./binderfs" [pid 7278] <... write resumed>) = 4 [pid 7278] close(3 [pid 7279] <... symlink resumed>) = 0 [pid 7278] <... close resumed>) = 0 [pid 7278] symlink("/dev/binderfs", "./binderfs" [pid 7279] memfd_create("syzkaller", 0 [pid 7278] <... symlink resumed>) = 0 [pid 7274] <... write resumed>) = 2097152 [pid 7279] <... memfd_create resumed>) = 3 [pid 7278] memfd_create("syzkaller", 0 [pid 7279] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7278] <... memfd_create resumed>) = 3 [pid 7278] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7274] munmap(0x7ff0df171000, 138412032 [pid 7278] <... mmap resumed>) = 0x7ff0df171000 [pid 7274] <... munmap resumed>) = 0 [pid 7275] munmap(0x7ff0df171000, 138412032) = 0 [pid 7274] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 7274] ioctl(4, LOOP_SET_FD, 3 [pid 7275] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 7275] ioctl(4, LOOP_SET_FD, 3 [pid 7276] <... write resumed>) = 2097152 [pid 7274] <... ioctl resumed>) = 0 [pid 7274] close(3) = 0 [pid 7277] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7274] mkdir("./file0", 0777 [pid 7275] <... ioctl resumed>) = 0 [ 303.046155][ T7274] loop3: detected capacity change from 0 to 4096 [ 303.048570][ T7275] loop5: detected capacity change from 0 to 4096 [pid 7275] close(3) = 0 [pid 7275] mkdir("./file0", 0777) = 0 [pid 7274] <... mkdir resumed>) = 0 [pid 7275] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7276] munmap(0x7ff0df171000, 138412032 [pid 7274] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7276] <... munmap resumed>) = 0 [pid 7279] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7278] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7276] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 303.121889][ T7275] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 303.133176][ T7274] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [pid 7276] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 7277] <... write resumed>) = 2097152 [pid 7276] close(3) = 0 [pid 7276] mkdir("./file0", 0777) = 0 [pid 7279] <... write resumed>) = 2097152 [pid 7276] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7277] munmap(0x7ff0df171000, 138412032) = 0 [pid 7278] <... write resumed>) = 2097152 [ 303.171984][ T7276] loop4: detected capacity change from 0 to 4096 [pid 7275] <... mount resumed>) = 0 [pid 7279] munmap(0x7ff0df171000, 138412032 [pid 7277] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7279] <... munmap resumed>) = 0 [pid 7277] <... openat resumed>) = 4 [pid 7277] ioctl(4, LOOP_SET_FD, 3 [pid 7275] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7274] <... mount resumed>) = 0 [pid 7274] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7275] <... openat resumed>) = 3 [pid 7275] chdir("./file0") = 0 [pid 7274] <... openat resumed>) = 3 [pid 7274] chdir("./file0" [pid 7275] ioctl(4, LOOP_CLR_FD [pid 7274] <... chdir resumed>) = 0 [pid 7275] <... ioctl resumed>) = 0 [pid 7275] close(4 [pid 7274] ioctl(4, LOOP_CLR_FD [pid 7275] <... close resumed>) = 0 [pid 7274] <... ioctl resumed>) = 0 [pid 7279] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7275] exit_group(0 [pid 7274] close(4 [pid 7279] <... openat resumed>) = 4 [pid 7275] <... exit_group resumed>) = ? [pid 7279] ioctl(4, LOOP_SET_FD, 3 [pid 7274] <... close resumed>) = 0 [pid 7275] +++ exited with 0 +++ [pid 7274] exit_group(0) = ? [pid 7278] munmap(0x7ff0df171000, 138412032 [pid 7274] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7275, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- [pid 5034] umount2("./365", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7274, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./365", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5034] umount2("./365/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./373", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./365/binderfs", [pid 5032] openat(AT_FDCWD, "./373", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7278] <... munmap resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5034] unlink("./365/binderfs" [pid 5032] newfstatat(3, "", [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 7277] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7277] close(3 [pid 5032] umount2("./373/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7277] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7278] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7277] mkdir("./file0", 0777 [pid 5032] newfstatat(AT_FDCWD, "./373/binderfs", [pid 7279] <... ioctl resumed>) = 0 [pid 7278] <... openat resumed>) = 4 [pid 7277] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7279] close(3 [pid 7278] ioctl(4, LOOP_SET_FD, 3 [pid 5032] unlink("./373/binderfs" [pid 7279] <... close resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [ 303.229614][ T7276] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 303.236900][ T7277] loop1: detected capacity change from 0 to 4096 [ 303.252972][ T7279] loop2: detected capacity change from 0 to 4096 [pid 7279] mkdir("./file0", 0777 [pid 7277] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 5032] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7279] <... mkdir resumed>) = 0 [pid 7276] <... mount resumed>) = 0 [pid 7279] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7276] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7276] chdir("./file0") = 0 [pid 7276] ioctl(4, LOOP_CLR_FD) = 0 [pid 7278] <... ioctl resumed>) = 0 [pid 7278] close(3) = 0 [pid 7278] mkdir("./file0", 0777) = 0 [pid 7278] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [ 303.287417][ T7278] loop0: detected capacity change from 0 to 4096 [ 303.298523][ T7279] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 303.310872][ T7277] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7276] close(4) = 0 [pid 7276] exit_group(0 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./365/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./365/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 7279] <... mount resumed>) = 0 [pid 7279] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7276] <... exit_group resumed>) = ? [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7276] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7276, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} --- [pid 7279] <... openat resumed>) = 3 [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] umount2("./364", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./364", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", [pid 7279] chdir("./file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 303.340679][ T7278] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5033] getdents64(3, [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] umount2("./364/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./364/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./364/binderfs" [pid 5034] getdents64(4, [pid 5033] <... unlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 7279] <... chdir resumed>) = 0 [pid 5034] close(4 [pid 5033] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7279] ioctl(4, LOOP_CLR_FD [pid 5034] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = 0 [pid 7279] <... ioctl resumed>) = 0 [pid 7277] <... mount resumed>) = 0 [pid 5034] rmdir("./365/file0" [pid 5032] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7279] close(4 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7279] <... close resumed>) = 0 [pid 7277] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./373/file0", [pid 7279] exit_group(0 [pid 7277] <... openat resumed>) = 3 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7279] <... exit_group resumed>) = ? [pid 7277] chdir("./file0" [pid 5034] close(3 [pid 5032] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7277] <... chdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 7277] ioctl(4, LOOP_CLR_FD [pid 5034] rmdir("./365" [pid 7279] +++ exited with 0 +++ [pid 7277] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7277] close(4 [pid 5032] openat(AT_FDCWD, "./373/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7279, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7277] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5031] umount2("./372", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./366", 0777 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(4, "", [pid 7277] exit_group(0 [pid 5031] openat(AT_FDCWD, "./372", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7277] <... exit_group resumed>) = ? [pid 5031] <... openat resumed>) = 3 [pid 7278] <... mount resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] newfstatat(3, "", [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(3, [pid 5034] <... openat resumed>) = 3 [pid 7278] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7277] +++ exited with 0 +++ [pid 7278] <... openat resumed>) = 3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7277, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7278] chdir("./file0") = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7278] ioctl(4, LOOP_CLR_FD [pid 5033] newfstatat(AT_FDCWD, "./364/file0", [pid 7278] <... ioctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./364/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./372/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7278] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./373", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7278] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./372/binderfs", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./364/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "./373", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] getdents64(4, [pid 7278] exit_group(0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... openat resumed>) = 4 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./372/binderfs" [pid 5030] <... openat resumed>) = 3 [pid 7278] <... exit_group resumed>) = ? [pid 5034] close(3 [pid 5033] newfstatat(4, "", [pid 5032] close(4 [pid 5030] newfstatat(3, "", [pid 5034] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] getdents64(4, [pid 5032] rmdir("./373/file0" [pid 5031] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5033] getdents64(4, [pid 5030] umount2("./373/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7278] +++ exited with 0 +++ [pid 5033] close(4 [pid 5030] newfstatat(AT_FDCWD, "./373/binderfs", ./strace-static-x86_64: Process 7280 attached [pid 5033] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7280] set_robust_list(0x55555635e660, 24 [pid 5033] rmdir("./364/file0" [pid 5030] unlink("./373/binderfs" [pid 7280] <... set_robust_list resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7280 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5030] <... unlink resumed>) = 0 [pid 7280] chdir("./366" [pid 5033] getdents64(3, [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7278, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} --- [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5032] close(3 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 7280] <... chdir resumed>) = 0 [pid 5033] close(3 [pid 5032] <... close resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 7280] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... close resumed>) = 0 [pid 7280] <... prctl resumed>) = 0 [pid 5033] rmdir("./364" [pid 5032] rmdir("./373" [pid 7280] setpgid(0, 0 [pid 5033] <... rmdir resumed>) = 0 [pid 7280] <... setpgid resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./372", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] mkdir("./374", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./372", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 7280] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] <... openat resumed>) = 3 [pid 5029] newfstatat(3, "", [pid 5033] mkdir("./365", 0777) = 0 [pid 7280] write(3, "1000", 4) = 4 [pid 7280] close(3) = 0 [pid 7280] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 7280] memfd_create("syzkaller", 0 [pid 5033] <... openat resumed>) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 7280] <... memfd_create resumed>) = 3 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] newfstatat(AT_FDCWD, "./372/file0", [pid 7280] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7281 [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5029] umount2("./372/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./372/binderfs", ./strace-static-x86_64: Process 7281 attached [pid 5032] <... openat resumed>) = 3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./372/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] unlink("./372/binderfs" [pid 7281] set_robust_list(0x55555635e660, 24 [pid 5031] <... openat resumed>) = 4 [pid 7281] <... set_robust_list resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5029] <... unlink resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7281] chdir("./365" [pid 5032] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7281] <... chdir resumed>) = 0 [pid 7281] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7281] setpgid(0, 0) = 0 [pid 5032] <... close resumed>) = 0 [pid 7281] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] getdents64(4, [pid 7281] <... openat resumed>) = 3 [pid 7281] write(3, "1000", 4) = 4 [pid 7281] close(3) = 0 [pid 7281] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, ./strace-static-x86_64: Process 7282 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7282 [pid 5031] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 7282] set_robust_list(0x55555635e660, 24 [pid 5031] <... close resumed>) = 0 [pid 7282] <... set_robust_list resumed>) = 0 [pid 5031] rmdir("./372/file0" [pid 5030] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7282] chdir("./374") = 0 [pid 7281] <... symlink resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7282] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7281] memfd_create("syzkaller", 0 [pid 5030] newfstatat(AT_FDCWD, "./373/file0", [pid 5031] getdents64(3, [pid 7282] <... prctl resumed>) = 0 [pid 7282] setpgid(0, 0 [pid 5031] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7282] <... setpgid resumed>) = 0 [pid 5030] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(3 [pid 7282] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5031] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7281] <... memfd_create resumed>) = 3 [pid 7281] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7282] <... openat resumed>) = 3 [pid 5031] rmdir("./372" [pid 5030] openat(AT_FDCWD, "./373/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5031] mkdir("./373", 0777 [pid 7282] write(3, "1000", 4 [pid 5030] newfstatat(4, "", [pid 7282] <... write resumed>) = 4 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7282] close(3 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] getdents64(4, [pid 7282] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./372/file0", [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(4, [pid 7282] symlink("/dev/binderfs", "./binderfs" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./372/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7282] <... symlink resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./372/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... close resumed>) = 0 [pid 7282] memfd_create("syzkaller", 0 [pid 5031] close(3 [pid 5030] rmdir("./373/file0" [pid 5029] <... openat resumed>) = 4 [pid 7282] <... memfd_create resumed>) = 3 [pid 5031] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 7282] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7282] <... mmap resumed>) = 0x7ff0df171000 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7283 [pid 7280] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152./strace-static-x86_64: Process 7283 attached [pid 5030] getdents64(3, [pid 5029] getdents64(4, [pid 7283] set_robust_list(0x55555635e660, 24 [pid 5029] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 7283] <... set_robust_list resumed>) = 0 [pid 5030] close(3 [pid 5029] close(4 [pid 7283] chdir("./373" [pid 7281] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 5030] <... close resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./372/file0" [pid 5030] rmdir("./373" [pid 7283] <... chdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] mkdir("./374", 0777 [pid 5029] getdents64(3, [pid 5030] <... mkdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] rmdir("./372" [pid 7283] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... rmdir resumed>) = 0 [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7283] <... prctl resumed>) = 0 [pid 5029] mkdir("./373", 0777 [pid 7283] setpgid(0, 0) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7284 [pid 7283] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7283] <... openat resumed>) = 3 [pid 5029] <... openat resumed>) = 3 ./strace-static-x86_64: Process 7284 attached [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7284] set_robust_list(0x55555635e660, 24 [pid 7283] write(3, "1000", 4 [pid 7284] <... set_robust_list resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 7284] chdir("./374" [pid 7280] <... write resumed>) = 2097152 [pid 5029] <... close resumed>) = 0 [pid 7284] <... chdir resumed>) = 0 [pid 7284] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7284] setpgid(0, 0) = 0 [pid 7284] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7283] <... write resumed>) = 4 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 7284] <... openat resumed>) = 3 [pid 7283] close(3 [pid 7284] write(3, "1000", 4) = 4 [pid 7284] close(3./strace-static-x86_64: Process 7285 attached ) = 0 [pid 7283] <... close resumed>) = 0 [pid 7282] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7285] set_robust_list(0x55555635e660, 24 [pid 7284] symlink("/dev/binderfs", "./binderfs" [pid 7283] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7285 [pid 7285] <... set_robust_list resumed>) = 0 [pid 7284] <... symlink resumed>) = 0 [pid 7285] chdir("./373" [pid 7284] memfd_create("syzkaller", 0 [pid 7283] <... symlink resumed>) = 0 [pid 7285] <... chdir resumed>) = 0 [pid 7284] <... memfd_create resumed>) = 3 [pid 7284] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7285] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7284] <... mmap resumed>) = 0x7ff0df171000 [pid 7280] munmap(0x7ff0df171000, 138412032 [pid 7285] <... prctl resumed>) = 0 [pid 7280] <... munmap resumed>) = 0 [pid 7285] setpgid(0, 0) = 0 [pid 7283] memfd_create("syzkaller", 0 [pid 7285] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7280] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7283] <... memfd_create resumed>) = 3 [pid 7283] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7280] <... openat resumed>) = 4 [pid 7285] <... openat resumed>) = 3 [pid 7280] ioctl(4, LOOP_SET_FD, 3 [pid 7285] write(3, "1000", 4 [pid 7283] <... mmap resumed>) = 0x7ff0df171000 [pid 7285] <... write resumed>) = 4 [pid 7285] close(3) = 0 [pid 7285] symlink("/dev/binderfs", "./binderfs") = 0 [pid 7281] <... write resumed>) = 2097152 [pid 7285] memfd_create("syzkaller", 0 [pid 7281] munmap(0x7ff0df171000, 138412032 [pid 7280] <... ioctl resumed>) = 0 [pid 7285] <... memfd_create resumed>) = 3 [pid 7285] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7282] <... write resumed>) = 2097152 [pid 7281] <... munmap resumed>) = 0 [pid 7280] close(3) = 0 [ 303.685146][ T7280] loop5: detected capacity change from 0 to 4096 [pid 7280] mkdir("./file0", 0777) = 0 [pid 7280] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7282] munmap(0x7ff0df171000, 138412032) = 0 [pid 7281] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 7281] ioctl(4, LOOP_SET_FD, 3 [pid 7283] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7282] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7281] <... ioctl resumed>) = 0 [pid 7282] <... openat resumed>) = 4 [pid 7282] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 7282] close(3) = 0 [pid 7282] mkdir("./file0", 0777) = 0 [pid 7281] close(3) = 0 [pid 7281] mkdir("./file0", 0777 [pid 7282] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7281] <... mkdir resumed>) = 0 [ 303.751423][ T7280] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 303.764842][ T7281] loop4: detected capacity change from 0 to 4096 [ 303.784855][ T7282] loop3: detected capacity change from 0 to 4096 [pid 7284] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7281] mount("/dev/loop4", "./file0", "ntfs3", 0, "" [pid 7285] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7280] <... mount resumed>) = 0 [pid 7280] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7280] chdir("./file0") = 0 [pid 7280] ioctl(4, LOOP_CLR_FD) = 0 [pid 7280] close(4) = 0 [ 303.818257][ T7282] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 303.828498][ T7281] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [pid 7280] exit_group(0 [pid 7283] <... write resumed>) = 2097152 [pid 7280] <... exit_group resumed>) = ? [pid 7284] <... write resumed>) = 2097152 [pid 7283] munmap(0x7ff0df171000, 138412032 [pid 7280] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7280, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=5 /* 0.05 s */} --- [pid 7284] munmap(0x7ff0df171000, 138412032 [pid 5034] umount2("./366", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./366", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 7283] <... munmap resumed>) = 0 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7283] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7281] <... mount resumed>) = 0 [pid 5034] getdents64(3, [pid 7284] <... munmap resumed>) = 0 [pid 7283] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7283] ioctl(4, LOOP_SET_FD, 3 [pid 7281] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5034] umount2("./366/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7284] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7281] <... openat resumed>) = 3 [pid 7284] <... openat resumed>) = 4 [pid 7281] chdir("./file0" [pid 7284] ioctl(4, LOOP_SET_FD, 3 [pid 7281] <... chdir resumed>) = 0 [pid 7285] <... write resumed>) = 2097152 [pid 7283] <... ioctl resumed>) = 0 [pid 7281] ioctl(4, LOOP_CLR_FD [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7285] munmap(0x7ff0df171000, 138412032 [pid 7284] <... ioctl resumed>) = 0 [pid 7283] close(3 [pid 5034] newfstatat(AT_FDCWD, "./366/binderfs", [pid 7281] <... ioctl resumed>) = 0 [pid 7281] close(4) = 0 [pid 7284] close(3 [pid 7283] <... close resumed>) = 0 [pid 7282] <... mount resumed>) = 0 [pid 7281] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7284] <... close resumed>) = 0 [pid 7283] mkdir("./file0", 0777 [pid 5034] unlink("./366/binderfs" [pid 7285] <... munmap resumed>) = 0 [pid 7284] mkdir("./file0", 0777 [pid 7282] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7281] <... exit_group resumed>) = ? [pid 7281] +++ exited with 0 +++ [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7285] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7284] <... mkdir resumed>) = 0 [pid 7283] <... mkdir resumed>) = 0 [pid 7282] <... openat resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7281, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} --- [pid 7282] chdir("./file0" [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 7285] <... openat resumed>) = 4 [pid 7284] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7282] <... chdir resumed>) = 0 [pid 5033] <... restart_syscall resumed>) = 0 [pid 7282] ioctl(4, LOOP_CLR_FD) = 0 [pid 7283] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7285] ioctl(4, LOOP_SET_FD, 3 [pid 7282] close(4 [ 303.921486][ T7283] loop2: detected capacity change from 0 to 4096 [ 303.923283][ T7284] loop1: detected capacity change from 0 to 4096 [ 303.961169][ T7283] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./365", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7282] <... close resumed>) = 0 [pid 7282] exit_group(0) = ? [pid 7282] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7282, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5032] umount2("./374", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./365", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./374", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", [pid 5033] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 7285] <... ioctl resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5032] getdents64(3, [pid 7285] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 7285] <... close resumed>) = 0 [pid 5033] getdents64(3, [pid 5032] umount2("./374/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7285] mkdir("./file0", 0777 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7285] <... mkdir resumed>) = 0 [pid 5033] umount2("./365/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./374/binderfs", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(AT_FDCWD, "./365/binderfs", [pid 5032] unlink("./374/binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5033] unlink("./365/binderfs" [pid 5032] umount2("./374/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7285] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 5033] <... unlink resumed>) = 0 [ 303.961971][ T7285] loop0: detected capacity change from 0 to 4096 [ 303.977657][ T7284] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 5033] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7284] <... mount resumed>) = 0 [pid 7283] <... mount resumed>) = 0 [pid 7284] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 7283] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 7284] <... openat resumed>) = 3 [pid 7283] chdir("./file0" [pid 7284] chdir("./file0" [pid 7283] <... chdir resumed>) = 0 [pid 7284] <... chdir resumed>) = 0 [pid 7283] ioctl(4, LOOP_CLR_FD [pid 7284] ioctl(4, LOOP_CLR_FD [pid 7283] <... ioctl resumed>) = 0 [pid 7284] <... ioctl resumed>) = 0 [pid 7283] close(4) = 0 [pid 7283] exit_group(0 [pid 7284] close(4) = 0 [pid 7283] <... exit_group resumed>) = ? [pid 7283] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7283, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=7 /* 0.07 s */} --- [pid 5032] <... umount2 resumed>) = 0 [pid 7284] exit_group(0 [pid 5032] umount2("./374/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./373", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7284] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./374/file0", [pid 5031] openat(AT_FDCWD, "./373", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5031] umount2("./373/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7284] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./374/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./373/binderfs", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7284, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=8 /* 0.08 s */} --- [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] openat(AT_FDCWD, "./374/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 304.018112][ T7285] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [pid 5031] unlink("./373/binderfs" [pid 5032] <... openat resumed>) = 4 [pid 5031] <... unlink resumed>) = 0 [pid 5030] umount2("./374", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(4, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./374", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5032] getdents64(4, [pid 5034] <... umount2 resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5034] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./374/file0" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./366/file0", [pid 5032] getdents64(3, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] umount2("./366/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./374" [pid 5034] openat(AT_FDCWD, "./366/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] umount2("./374/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(4, "", [pid 5032] mkdir("./375", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5032] <... mkdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./374/binderfs", [pid 5034] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, [pid 5032] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5034] close(4 [pid 5030] unlink("./374/binderfs" [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./366/file0" [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] umount2("./374/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./366") = 0 [pid 5034] mkdir("./367", 0777) = 0 [pid 7285] <... mount resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... openat resumed>) = 3 [pid 7285] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 7285] chdir("./file0" [pid 5034] <... openat resumed>) = 3 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7285] <... chdir resumed>) = 0 [pid 5032] close(3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 7285] ioctl(4, LOOP_CLR_FD) = 0 [pid 7285] close(4) = 0 [pid 7285] exit_group(0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7285] <... exit_group resumed>) = ? [pid 5034] close(3 [pid 5032] <... close resumed>) = 0 [pid 7285] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7285, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- [pid 5034] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./373", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./373", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] getdents64(3, 0x55555635f6f0 /* 4 entries */, 32768) = 112 [pid 5029] umount2("./373/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 7286 attached [pid 5029] newfstatat(AT_FDCWD, "./373/binderfs", [pid 7286] set_robust_list(0x55555635e660, 24 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 7286] <... set_robust_list resumed>) = 0 [pid 5029] unlink("./373/binderfs") = 0 [pid 5029] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7286] chdir("./375") = 0 [pid 7286] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 7287 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555635e650) = 7287 [pid 5032] <... clone resumed>, child_tidptr=0x55555635e650) = 7286 [pid 7287] set_robust_list(0x55555635e660, 24 [pid 7286] <... prctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 7287] <... set_robust_list resumed>) = 0 [pid 7286] setpgid(0, 0) = 0 [pid 7286] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 7286] write(3, "1000", 4) = 4 [pid 7287] chdir("./367" [pid 7286] close(3 [pid 7287] <... chdir resumed>) = 0 [pid 7286] <... close resumed>) = 0 [pid 7286] symlink("/dev/binderfs", "./binderfs" [pid 7287] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7286] <... symlink resumed>) = 0 [pid 7287] <... prctl resumed>) = 0 [pid 7287] setpgid(0, 0 [pid 7286] memfd_create("syzkaller", 0) = 3 [pid 7287] <... setpgid resumed>) = 0 [pid 7286] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7287] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7287] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = 0 [pid 7287] write(3, "1000", 4 [pid 5033] newfstatat(AT_FDCWD, "./365/file0", [pid 5030] umount2("./374/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7287] <... write resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./365/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7287] close(3 [pid 5030] newfstatat(AT_FDCWD, "./374/file0", [pid 7287] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 7287] symlink("/dev/binderfs", "./binderfs" [pid 5033] openat(AT_FDCWD, "./365/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5030] umount2("./374/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 7287] <... symlink resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./374/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] newfstatat(4, "", [pid 5031] newfstatat(AT_FDCWD, "./373/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] openat(AT_FDCWD, "./373/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5033] close(4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./365/file0" [pid 5030] newfstatat(4, "", [pid 5031] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./373/file0") = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 5033] getdents64(3, [pid 5030] <... getdents64 resumed>0x555556367730 /* 2 entries */, 32768) = 48 [pid 5033] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 7287] memfd_create("syzkaller", 0 [pid 5031] getdents64(3, 0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5031] close(3 [pid 5030] <... getdents64 resumed>0x555556367730 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] close(4 [pid 5031] rmdir("./373" [pid 7287] <... memfd_create resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5031] mkdir("./374", 0777 [pid 7287] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] rmdir("./365" [pid 5031] <... mkdir resumed>) = 0 [pid 5030] rmdir("./374/file0" [pid 5029] <... umount2 resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 7287] <... mmap resumed>) = 0x7ff0df171000 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./373/file0", [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] umount2("./373/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./373/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] <... clone resumed>, child_tidptr=0x55555635e650) = 7288 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x555556367730 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x555556367730 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5033] mkdir("./366", 0777 [pid 5030] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./373/file0" [pid 5033] <... mkdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] close(3) = 0 [pid 5029] getdents64(3, [pid 5033] <... openat resumed>) = 3 [pid 5030] rmdir("./374" [pid 5029] <... getdents64 resumed>0x55555635f6f0 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./373"./strace-static-x86_64: Process 7288 attached [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] mkdir("./375", 0777 [pid 7288] set_robust_list(0x55555635e660, 24 [pid 5029] mkdir("./374", 0777 [pid 7288] <... set_robust_list resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7288] chdir("./374" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 7288] <... chdir resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 3 [pid 5033] close(3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 7288] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] <... close resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 7288] <... prctl resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 7288] setpgid(0, 0) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] close(3 [pid 7288] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... close resumed>) = 0 [pid 7288] <... openat resumed>) = 3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7289 attached [pid 7288] write(3, "1000", 4 [pid 7289] set_robust_list(0x55555635e660, 24 [pid 7288] <... write resumed>) = 4 [pid 7286] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7289] <... set_robust_list resumed>) = 0 [pid 7288] close(3./strace-static-x86_64: Process 7290 attached [pid 7289] chdir("./374" [pid 7288] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555635e650) = 7289 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... clone resumed>, child_tidptr=0x55555635e650) = 7290 [pid 7290] set_robust_list(0x55555635e660, 24 [pid 7288] symlink("/dev/binderfs", "./binderfs" [pid 7289] <... chdir resumed>) = 0 [pid 7288] <... symlink resumed>) = 0 [pid 7290] <... set_robust_list resumed>) = 0 [pid 7289] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7288] memfd_create("syzkaller", 0 [pid 7289] <... prctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555635e650) = 7291 [pid 7290] chdir("./375" [pid 7289] setpgid(0, 0./strace-static-x86_64: Process 7291 attached [pid 7290] <... chdir resumed>) = 0 [pid 7289] <... setpgid resumed>) = 0 [pid 7291] set_robust_list(0x55555635e660, 24 [pid 7290] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 7289] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7287] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7291] <... set_robust_list resumed>) = 0 [pid 7290] <... prctl resumed>) = 0 [pid 7291] chdir("./366" [pid 7290] setpgid(0, 0 [pid 7289] <... openat resumed>) = 3 [pid 7288] <... memfd_create resumed>) = 3 [pid 7290] <... setpgid resumed>) = 0 [pid 7289] write(3, "1000", 4 [pid 7288] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7289] <... write resumed>) = 4 [pid 7288] <... mmap resumed>) = 0x7ff0df171000 [pid 7291] <... chdir resumed>) = 0 [pid 7290] <... openat resumed>) = 3 [pid 7289] close(3 [pid 7291] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 7290] write(3, "1000", 4 [pid 7289] <... close resumed>) = 0 [pid 7290] <... write resumed>) = 4 [pid 7289] symlink("/dev/binderfs", "./binderfs" [pid 7291] setpgid(0, 0 [pid 7290] close(3) = 0 [pid 7291] <... setpgid resumed>) = 0 [pid 7290] symlink("/dev/binderfs", "./binderfs" [pid 7289] <... symlink resumed>) = 0 [pid 7291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 7290] <... symlink resumed>) = 0 [pid 7291] <... openat resumed>) = 3 [pid 7289] memfd_create("syzkaller", 0) = 3 [pid 7291] write(3, "1000", 4 [pid 7289] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7291] <... write resumed>) = 4 [pid 7290] memfd_create("syzkaller", 0 [pid 7291] close(3 [pid 7290] <... memfd_create resumed>) = 3 [pid 7291] <... close resumed>) = 0 [pid 7290] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 7287] <... write resumed>) = 2097152 [pid 7291] symlink("/dev/binderfs", "./binderfs" [pid 7290] <... mmap resumed>) = 0x7ff0df171000 [pid 7287] munmap(0x7ff0df171000, 138412032) = 0 [pid 7291] <... symlink resumed>) = 0 [pid 7287] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 7286] <... write resumed>) = 2097152 [pid 7287] <... openat resumed>) = 4 [pid 7291] memfd_create("syzkaller", 0 [pid 7288] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7287] ioctl(4, LOOP_SET_FD, 3 [pid 7286] munmap(0x7ff0df171000, 138412032 [pid 7291] <... memfd_create resumed>) = 3 [pid 7290] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7287] <... ioctl resumed>) = 0 [pid 7286] <... munmap resumed>) = 0 [pid 7291] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff0df171000 [pid 7289] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7287] close(3 [pid 7286] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 7287] <... close resumed>) = 0 [pid 7286] <... openat resumed>) = 4 [pid 7287] mkdir("./file0", 0777 [pid 7286] ioctl(4, LOOP_SET_FD, 3 [pid 7287] <... mkdir resumed>) = 0 [ 304.422724][ T7287] loop5: detected capacity change from 0 to 4096 [ 304.458706][ T7286] loop3: detected capacity change from 0 to 4096 [pid 7287] mount("/dev/loop5", "./file0", "ntfs3", 0, "" [pid 7288] <... write resumed>) = 2097152 [pid 7286] <... ioctl resumed>) = 0 [pid 7286] close(3) = 0 [pid 7286] mkdir("./file0", 0777) = 0 [pid 7286] mount("/dev/loop3", "./file0", "ntfs3", 0, "" [pid 7290] <... write resumed>) = 2097152 [pid 7288] munmap(0x7ff0df171000, 138412032) = 0 [pid 7288] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 7289] <... write resumed>) = 2097152 [pid 7288] <... openat resumed>) = 4 [pid 7288] ioctl(4, LOOP_SET_FD, 3 [pid 7290] munmap(0x7ff0df171000, 138412032) = 0 [pid 7290] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 7289] munmap(0x7ff0df171000, 138412032 [pid 7290] <... openat resumed>) = 4 [pid 7289] <... munmap resumed>) = 0 [pid 7289] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 304.473589][ T7287] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 304.491410][ T7286] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 304.507649][ T7288] loop2: detected capacity change from 0 to 4096 [pid 7290] ioctl(4, LOOP_SET_FD, 3 [pid 7289] ioctl(4, LOOP_SET_FD, 3 [pid 7291] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x40\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\xf4\x00\x00\x00\x5c\xdb\x3c\x27\x8b\x67\x89\x70\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152 [pid 7290] <... ioctl resumed>) = 0 [pid 7288] <... ioctl resumed>) = 0 [pid 7290] close(3) = 0 [pid 7290] mkdir("./file0", 0777) = 0 [pid 7288] close(3) = 0 [pid 7288] mkdir("./file0", 0777 [pid 7290] mount("/dev/loop1", "./file0", "ntfs3", 0, "" [pid 7288] <... mkdir resumed>) = 0 [pid 7288] mount("/dev/loop2", "./file0", "ntfs3", 0, "" [pid 7289] <... ioctl resumed>) = 0 [pid 7289] close(3) = 0 [pid 7289] mkdir("./file0", 0777) = 0 [ 304.526121][ T7290] loop1: detected capacity change from 0 to 4096 [ 304.528381][ T7289] loop0: detected capacity change from 0 to 4096 [ 304.547603][ T7288] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 304.548722][ T7290] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [pid 7289] mount("/dev/loop0", "./file0", "ntfs3", 0, "" [pid 7291] <... write resumed>) = 2097152 [pid 7291] munmap(0x7ff0df171000, 138412032) = 0 [pid 7291] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 7291] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 7291] close(3) = 0 [pid 7291] mkdir("./file0", 0777) = 0 [ 304.573385][ C0] ================================================================== [ 304.581523][ C0] BUG: KASAN: out-of-bounds in end_buffer_read_sync+0xc1/0xd0 [ 304.589185][ C0] Write of size 4 at addr ffffc9000a827740 by task ksoftirqd/0/16 [ 304.597023][ C0] [ 304.599382][ C0] CPU: 0 PID: 16 Comm: ksoftirqd/0 Not tainted 6.6.0-rc5-syzkaller-00234-g8cb1f10d8c4b #0 [ 304.600102][ T7291] loop4: detected capacity change from 0 to 4096 [ 304.609293][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 304.609317][ C0] Call Trace: [ 304.609328][ C0] [ 304.609336][ C0] dump_stack_lvl+0x1e7/0x2d0 [ 304.609432][ C0] ? nf_tcp_handle_invalid+0x650/0x650 [ 304.625664][ T7289] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 304.625820][ C0] ? panic+0x770/0x770 [ 304.655352][ C0] ? _printk+0xd5/0x120 [ 304.659530][ C0] print_report+0x163/0x540 [ 304.664141][ C0] ? wake_up_bit+0x226/0x2c0 [ 304.668758][ C0] ? bio_uninit+0x56/0x3b0 [ 304.673237][ C0] ? __virt_addr_valid+0xbd/0x2e0 [ 304.678302][ C0] ? end_buffer_read_sync+0xc1/0xd0 [ 304.683508][ C0] kasan_report+0x175/0x1b0 [ 304.688025][ C0] ? end_buffer_read_sync+0xc1/0xd0 [ 304.693228][ C0] ? __wait_on_buffer+0x90/0x90 [ 304.698088][ C0] kasan_check_range+0x27e/0x290 [ 304.703040][ C0] end_buffer_read_sync+0xc1/0xd0 [ 304.708072][ C0] end_bio_bh_io_sync+0xb7/0x110 [ 304.713078][ C0] blk_update_request+0x53f/0x1020 [ 304.718259][ C0] ? print_irqtrace_events+0x220/0x220 [ 304.723730][ C0] blk_mq_end_request+0x3e/0x70 [ 304.728594][ C0] blk_done_softirq+0x103/0x150 [ 304.733455][ C0] __do_softirq+0x2ab/0x908 [ 304.738041][ C0] ? run_ksoftirqd+0xc5/0x120 [ 304.742746][ C0] ? __lock_text_end+0xc/0xc [ 304.747347][ C0] run_ksoftirqd+0xc5/0x120 [ 304.751880][ C0] ? ksoftirqd_should_run+0x20/0x20 [ 304.757107][ C0] ? ksoftirqd_should_run+0x20/0x20 [ 304.762410][ C0] smpboot_thread_fn+0x530/0x9f0 [ 304.767361][ C0] ? smpboot_thread_fn+0x4e/0x9f0 [ 304.772406][ C0] kthread+0x2d3/0x370 [ 304.776481][ C0] ? smpboot_unregister_percpu_thread+0x130/0x130 [ 304.782907][ C0] ? kthread_blkcg+0xd0/0xd0 [ 304.787511][ C0] ret_from_fork+0x48/0x80 [ 304.791943][ C0] ? kthread_blkcg+0xd0/0xd0 [ 304.796543][ C0] ret_from_fork_asm+0x11/0x20 [ 304.801354][ C0] [ 304.804374][ C0] [ 304.806700][ C0] The buggy address belongs to the virtual mapping at [ 304.806700][ C0] [ffffc9000a820000, ffffc9000a829000) created by: [ 304.806700][ C0] copy_process+0x5d1/0x41a0 [ 304.824337][ C0] [ 304.826656][ C0] The buggy address belongs to the physical page: [ 304.833067][ C0] page:ffffea0000a0c780 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2831e [ 304.843316][ C0] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 304.850433][ C0] page_type: 0xffffffff() [ 304.854840][ C0] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 304.863470][ C0] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 304.872054][ C0] page dumped because: kasan: bad access detected [ 304.878460][ C0] page_owner tracks the page as allocated [ 304.884188][ C0] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), pid 5030, tgid 5030 (syz-executor184), ts 300903791573, free_ts 300841419340 [ 304.903960][ C0] post_alloc_hook+0x1e6/0x210 [ 304.908838][ C0] get_page_from_freelist+0x31db/0x3360 [ 304.914426][ C0] __alloc_pages+0x255/0x670 [ 304.919025][ C0] __vmalloc_node_range+0x9a3/0x1490 [ 304.924316][ C0] dup_task_struct+0x3e5/0x7d0 [ 304.929088][ C0] copy_process+0x5d1/0x41a0 [ 304.933688][ C0] kernel_clone+0x222/0x840 [ 304.938195][ C0] __x64_sys_clone+0x258/0x2a0 [ 304.942963][ C0] do_syscall_64+0x41/0xc0 [ 304.947393][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 304.953421][ C0] page last free stack trace: [ 304.958092][ C0] free_unref_page_prepare+0x8c3/0x9f0 [ 304.963562][ C0] free_unref_page_list+0x596/0x830 [ 304.968770][ C0] release_pages+0x2113/0x23f0 [ 304.973599][ C0] __folio_batch_release+0x84/0x100 [ 304.978935][ C0] truncate_inode_pages_range+0x45d/0x11a0 [ 304.984789][ C0] blkdev_flush_mapping+0x15a/0x2b0 [ 304.989998][ C0] blkdev_put+0x4a9/0x770 [ 304.994332][ C0] blkdev_release+0x86/0x90 [ 304.998843][ C0] __fput+0x3f8/0x910 [ 305.002923][ C0] __se_sys_close+0x15f/0x220 [ 305.007612][ C0] do_syscall_64+0x41/0xc0 [ 305.012033][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 305.017940][ C0] [ 305.020261][ C0] Memory state around the buggy address: [ 305.025892][ C0] ffffc9000a827600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 305.033959][ C0] ffffc9000a827680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 305.042025][ C0] >ffffc9000a827700: 00 00 00 00 f1 f1 f1 f1 00 00 00 00 00 00 00 f2 [ 305.050085][ C0] ^ [ 305.056500][ C0] ffffc9000a827780: f2 f2 f2 f2 00 f2 f2 f2 01 f3 f3 f3 00 00 00 00 [ 305.064566][ C0] ffffc9000a827800: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 [ 305.072630][ C0] ================================================================== [ 305.080793][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 305.083693][ T7291] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 305.096942][ C0] CPU: 0 PID: 16 Comm: ksoftirqd/0 Not tainted 6.6.0-rc5-syzkaller-00234-g8cb1f10d8c4b #0 [ 305.106875][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 305.116967][ C0] Call Trace: [ 305.120282][ C0] [ 305.123234][ C0] dump_stack_lvl+0x1e7/0x2d0 [ 305.127933][ C0] ? nf_tcp_handle_invalid+0x650/0x650 [ 305.133401][ C0] ? panic+0x770/0x770 [ 305.137484][ C0] ? lock_release+0xbf/0x9d0 [ 305.142090][ C0] ? vscnprintf+0x5d/0x80 [ 305.146434][ C0] panic+0x30f/0x770 [ 305.150348][ C0] ? check_panic_on_warn+0x21/0xa0 [ 305.155469][ C0] ? __memcpy_flushcache+0x2b0/0x2b0 [ 305.160766][ C0] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 305.166752][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 305.172696][ C0] ? _raw_spin_unlock+0x40/0x40 [ 305.177578][ C0] ? print_report+0x4fb/0x540 [ 305.182263][ C0] check_panic_on_warn+0x82/0xa0 [ 305.187238][ C0] ? end_buffer_read_sync+0xc1/0xd0 [ 305.192468][ C0] end_report+0x6e/0x130 [ 305.196733][ C0] kasan_report+0x186/0x1b0 [ 305.201267][ C0] ? end_buffer_read_sync+0xc1/0xd0 [ 305.206496][ C0] ? __wait_on_buffer+0x90/0x90 [ 305.211366][ C0] kasan_check_range+0x27e/0x290 [ 305.216313][ C0] end_buffer_read_sync+0xc1/0xd0 [ 305.221332][ C0] end_bio_bh_io_sync+0xb7/0x110 [ 305.226266][ C0] blk_update_request+0x53f/0x1020 [ 305.231379][ C0] ? print_irqtrace_events+0x220/0x220 [ 305.236873][ C0] blk_mq_end_request+0x3e/0x70 [ 305.241731][ C0] blk_done_softirq+0x103/0x150 [ 305.246574][ C0] __do_softirq+0x2ab/0x908 [ 305.251070][ C0] ? run_ksoftirqd+0xc5/0x120 [ 305.255741][ C0] ? __lock_text_end+0xc/0xc [ 305.260320][ C0] run_ksoftirqd+0xc5/0x120 [ 305.264881][ C0] ? ksoftirqd_should_run+0x20/0x20 [ 305.270074][ C0] ? ksoftirqd_should_run+0x20/0x20 [ 305.275360][ C0] smpboot_thread_fn+0x530/0x9f0 [ 305.280291][ C0] ? smpboot_thread_fn+0x4e/0x9f0 [ 305.285311][ C0] kthread+0x2d3/0x370 [ 305.289433][ C0] ? smpboot_unregister_percpu_thread+0x130/0x130 [ 305.295976][ C0] ? kthread_blkcg+0xd0/0xd0 [ 305.300617][ C0] ret_from_fork+0x48/0x80 [ 305.305057][ C0] ? kthread_blkcg+0xd0/0xd0 [ 305.309650][ C0] ret_from_fork_asm+0x11/0x20 [ 305.314414][ C0] [ 305.317641][ C0] Kernel Offset: disabled [ 305.321987][ C0] Rebooting in 86400 seconds..