./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3463961392 <...> Warning: Permanently added '10.128.0.7' (ED25519) to the list of known hosts. execve("./syz-executor3463961392", ["./syz-executor3463961392"], 0x7fff0a1e2d50 /* 10 vars */) = 0 brk(NULL) = 0x55558e440000 brk(0x55558e440d00) = 0x55558e440d00 arch_prctl(ARCH_SET_FS, 0x55558e440380) = 0 set_tid_address(0x55558e440650) = 5841 set_robust_list(0x55558e440660, 24) = 0 rseq(0x55558e440ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3463961392", 4096) = 28 getrandom("\x27\xd7\xbd\x50\xe8\x8a\x43\x1f", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558e440d00 brk(0x55558e461d00) = 0x55558e461d00 brk(0x55558e462000) = 0x55558e462000 mprotect(0x7f1028172000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5842 ./strace-static-x86_64: Process 5842 attached [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] set_robust_list(0x55558e440660, 24) = 0 ./strace-static-x86_64: Process 5843 attached [pid 5841] <... clone resumed>, child_tidptr=0x55558e440650) = 5843 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] set_robust_list(0x55558e440660, 24 [pid 5842] mkdir("./syzkaller.uX1cbH", 0700 [pid 5843] <... set_robust_list resumed>) = 0 [pid 5842] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5844 attached [pid 5843] mkdir("./syzkaller.LoQaHx", 0700 [pid 5841] <... clone resumed>, child_tidptr=0x55558e440650) = 5844 [pid 5842] chmod("./syzkaller.uX1cbH", 0777 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] set_robust_list(0x55558e440660, 24 [pid 5842] <... chmod resumed>) = 0 [pid 5844] <... set_robust_list resumed>) = 0 [pid 5843] <... mkdir resumed>) = 0 [pid 5842] chdir("./syzkaller.uX1cbH") = 0 [pid 5842] mkdir("./0", 0777./strace-static-x86_64: Process 5845 attached [pid 5844] mkdir("./syzkaller.sDtF2o", 0700 [pid 5843] chmod("./syzkaller.LoQaHx", 0777 [pid 5842] <... mkdir resumed>) = 0 [pid 5841] <... clone resumed>, child_tidptr=0x55558e440650) = 5845 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5845] set_robust_list(0x55558e440660, 24 [pid 5844] <... mkdir resumed>) = 0 [pid 5843] <... chmod resumed>) = 0 [pid 5842] <... openat resumed>) = 3 [pid 5845] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5846 attached [pid 5845] mkdir("./syzkaller.N9OQbE", 0700 [pid 5844] chmod("./syzkaller.sDtF2o", 0777 [pid 5843] chdir("./syzkaller.LoQaHx" [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5841] <... clone resumed>, child_tidptr=0x55558e440650) = 5846 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] set_robust_list(0x55558e440660, 24 [pid 5845] <... mkdir resumed>) = 0 [pid 5844] <... chmod resumed>) = 0 [pid 5843] <... chdir resumed>) = 0 [pid 5845] chmod("./syzkaller.N9OQbE", 0777./strace-static-x86_64: Process 5847 attached [pid 5846] <... set_robust_list resumed>) = 0 [pid 5844] chdir("./syzkaller.sDtF2o" [pid 5843] mkdir("./0", 0777 [pid 5842] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5841] <... clone resumed>, child_tidptr=0x55558e440650) = 5847 [pid 5847] set_robust_list(0x55558e440660, 24 [pid 5845] <... chmod resumed>) = 0 [pid 5842] close(3 [pid 5846] mkdir("./syzkaller.pebuug", 0700 [pid 5844] <... chdir resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5843] <... mkdir resumed>) = 0 [pid 5847] <... set_robust_list resumed>) = 0 [pid 5847] getrandom( [pid 5845] chdir("./syzkaller.N9OQbE" [pid 5844] mkdir("./0", 0777 [pid 5845] <... chdir resumed>) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] <... getrandom resumed>"\xf2\x5e\xcc\xc0\xa2\x9f\xbf\xa4", 8, GRND_NONBLOCK) = 8 [pid 5844] <... mkdir resumed>) = 0 [pid 5845] mkdir("./0", 0777./strace-static-x86_64: Process 5848 attached [pid 5847] mkdir("./syzkaller.MUizNd", 0700 [pid 5845] <... mkdir resumed>) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5846] <... mkdir resumed>) = 0 [pid 5847] <... mkdir resumed>) = 0 [pid 5848] set_robust_list(0x55558e440660, 24) = 0 [pid 5848] chdir("./0" [pid 5847] chmod("./syzkaller.MUizNd", 0777 [pid 5846] chmod("./syzkaller.pebuug", 0777 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5848] <... chdir resumed>) = 0 [pid 5847] <... chmod resumed>) = 0 [pid 5846] <... chmod resumed>) = 0 [pid 5846] chdir("./syzkaller.pebuug" [pid 5845] <... openat resumed>) = 3 [pid 5843] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5846] <... chdir resumed>) = 0 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5843] close(3 [pid 5846] mkdir("./0", 0777 [pid 5845] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5843] <... close resumed>) = 0 [pid 5846] <... mkdir resumed>) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5848 [pid 5848] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] chdir("./syzkaller.MUizNd" [pid 5844] <... openat resumed>) = 3 [pid 5848] <... prctl resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5848] setpgid(0, 0 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5847] <... chdir resumed>) = 0 [pid 5848] <... setpgid resumed>) = 0 [pid 5844] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5851 attached ./strace-static-x86_64: Process 5850 attached [pid 5846] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5850 [pid 5846] close(3) = 0 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5851 [pid 5851] set_robust_list(0x55558e440660, 24 [pid 5850] set_robust_list(0x55558e440660, 24 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5850] <... set_robust_list resumed>) = 0 [pid 5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] mkdir("./0", 0777 [pid 5844] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5851] <... set_robust_list resumed>) = 0 [pid 5850] chdir("./0" [pid 5851] chdir("./0" [pid 5850] <... chdir resumed>) = 0 [pid 5844] close(3 [pid 5850] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] <... chdir resumed>) = 0 [pid 5850] <... prctl resumed>) = 0 [pid 5851] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5850] setpgid(0, 0 [pid 5851] <... prctl resumed>) = 0 [pid 5850] <... setpgid resumed>) = 0 [pid 5851] setpgid(0, 0 [pid 5850] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... mkdir resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5851] <... setpgid resumed>) = 0 [pid 5850] <... openat resumed>) = 3 [pid 5848] <... openat resumed>) = 3 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5852 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5850] write(3, "1000", 4 [pid 5851] <... openat resumed>) = 3 [pid 5850] <... write resumed>) = 4 [pid 5850] close(3) = 0 [pid 5850] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5851] write(3, "1000", 4) = 4 [pid 5851] close(3./strace-static-x86_64: Process 5853 attached ) = 0 [pid 5850] write(1, "executing program\n", 18 [pid 5848] write(3, "1000", 4 [pid 5847] <... openat resumed>) = 3 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5853 [pid 5853] set_robust_list(0x55558e440660, 24 [pid 5848] <... write resumed>) = 4 [pid 5853] <... set_robust_list resumed>) = 0 [pid 5848] close(3 [pid 5847] ioctl(3, LOOP_CLR_FDexecuting program [pid 5851] symlink("/dev/binderfs", "./binderfs" [pid 5850] <... write resumed>) = 18 [pid 5851] <... symlink resumed>) = 0 [pid 5850] memfd_create("syzkaller", 0executing program ) = 3 ./strace-static-x86_64: Process 5852 attached [pid 5853] chdir("./0" [pid 5851] write(1, "executing program\n", 18 [pid 5850] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5848] <... close resumed>) = 0 [pid 5847] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5853] <... chdir resumed>) = 0 [pid 5852] set_robust_list(0x55558e440660, 24 [pid 5851] <... write resumed>) = 18 [pid 5850] <... mmap resumed>) = 0x7f101fc00000 [pid 5848] symlink("/dev/binderfs", "./binderfs" [pid 5847] close(3executing program [pid 5853] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5852] <... set_robust_list resumed>) = 0 [pid 5851] memfd_create("syzkaller", 0 [pid 5848] <... symlink resumed>) = 0 [pid 5847] <... close resumed>) = 0 [pid 5853] <... prctl resumed>) = 0 [pid 5853] setpgid(0, 0 [pid 5852] chdir("./0" [pid 5848] write(1, "executing program\n", 18 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5853] <... setpgid resumed>) = 0 [pid 5851] <... memfd_create resumed>) = 3 [pid 5851] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5848] <... write resumed>) = 18 ./strace-static-x86_64: Process 5855 attached [pid 5855] set_robust_list(0x55558e440660, 24) = 0 [pid 5855] chdir("./0") = 0 [pid 5855] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5848] memfd_create("syzkaller", 0 [pid 5852] <... chdir resumed>) = 0 [pid 5855] <... prctl resumed>) = 0 [pid 5855] setpgid(0, 0) = 0 [pid 5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5855] <... openat resumed>) = 3 [pid 5855] write(3, "1000", 4) = 4 [pid 5853] <... openat resumed>) = 3 [pid 5852] <... prctl resumed>) = 0 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5855 [pid 5848] <... memfd_create resumed>) = 3 [pid 5855] close(3 [pid 5852] setpgid(0, 0 [pid 5853] write(3, "1000", 4 [pid 5852] <... setpgid resumed>) = 0 executing program [pid 5855] <... close resumed>) = 0 [pid 5853] <... write resumed>) = 4 [pid 5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5848] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5855] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5855] write(1, "executing program\n", 18) = 18 [pid 5855] memfd_create("syzkaller", 0 [pid 5852] <... openat resumed>) = 3 [pid 5853] close(3 [pid 5852] write(3, "1000", 4 [pid 5848] <... mmap resumed>) = 0x7f101fc00000 [pid 5853] <... close resumed>) = 0 [pid 5852] <... write resumed>) = 4 [pid 5855] <... memfd_create resumed>) = 3 [pid 5853] symlink("/dev/binderfs", "./binderfs" [pid 5852] close(3 [pid 5855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program [pid 5853] <... symlink resumed>) = 0 [pid 5852] <... close resumed>) = 0 [pid 5852] symlink("/dev/binderfs", "./binderfs" [pid 5853] write(1, "executing program\n", 18 [pid 5855] <... mmap resumed>) = 0x7f101fc00000 [pid 5853] <... write resumed>) = 18 [pid 5852] <... symlink resumed>) = 0 [pid 5853] memfd_create("syzkaller", 0 [pid 5852] write(1, "executing program\n", 18executing program [pid 5853] <... memfd_create resumed>) = 3 [pid 5852] <... write resumed>) = 18 [pid 5853] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5852] memfd_create("syzkaller", 0 [pid 5853] <... mmap resumed>) = 0x7f101fc00000 [pid 5852] <... memfd_create resumed>) = 3 [pid 5852] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5851] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5853] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5850] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5848] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5855] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 91.214425][ T1202] cfg80211: failed to load regulatory.db [pid 5852] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5851] <... write resumed>) = 16777216 [pid 5851] munmap(0x7f101fc00000, 138412032) = 0 [pid 5851] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5851] ioctl(4, LOOP_SET_FD, 3 [pid 5853] <... write resumed>) = 16777216 [pid 5850] <... write resumed>) = 16777216 [pid 5853] munmap(0x7f101fc00000, 138412032 [pid 5851] <... ioctl resumed>) = 0 [pid 5850] munmap(0x7f101fc00000, 138412032 [pid 5851] close(3) = 0 [pid 5851] close(4) = 0 [ 91.390364][ T5851] loop1: detected capacity change from 0 to 32768 [pid 5853] <... munmap resumed>) = 0 [pid 5851] mkdir("./file1", 0777) = 0 [pid 5851] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5850] <... munmap resumed>) = 0 [pid 5853] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5850] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5853] <... openat resumed>) = 4 [pid 5850] <... openat resumed>) = 4 [pid 5853] ioctl(4, LOOP_SET_FD, 3 [pid 5850] ioctl(4, LOOP_SET_FD, 3 [pid 5855] <... write resumed>) = 16777216 [pid 5853] <... ioctl resumed>) = 0 [pid 5850] <... ioctl resumed>) = 0 [pid 5855] munmap(0x7f101fc00000, 138412032 [pid 5850] close(3 [pid 5853] close(3) = 0 [pid 5853] close(4 [pid 5850] <... close resumed>) = 0 [pid 5850] close(4 [pid 5853] <... close resumed>) = 0 [pid 5853] mkdir("./file1", 0777) = 0 [pid 5853] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5851] <... mount resumed>) = 0 [pid 5850] <... close resumed>) = 0 [pid 5851] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5850] mkdir("./file1", 0777 [pid 5851] <... openat resumed>) = 3 [ 91.457450][ T5853] loop2: detected capacity change from 0 to 32768 [ 91.469143][ T5850] loop3: detected capacity change from 0 to 32768 [pid 5852] <... write resumed>) = 16777216 [pid 5851] chdir("./file1" [pid 5850] <... mkdir resumed>) = 0 [pid 5851] <... chdir resumed>) = 0 [pid 5852] munmap(0x7f101fc00000, 138412032 [pid 5851] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5850] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5853] <... mount resumed>) = 0 [pid 5853] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5851] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5853] <... openat resumed>) = 3 [pid 5851] exit_group(0 [pid 5853] chdir("./file1") = 0 [pid 5851] <... exit_group resumed>) = ? [pid 5853] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5853] exit_group(0) = ? [pid 5853] +++ exited with 0 +++ [pid 5851] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5853, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5851, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=26 /* 0.26 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5848] <... write resumed>) = 16777216 [pid 5848] munmap(0x7f101fc00000, 138412032 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5844] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5855] <... munmap resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... openat resumed>) = 3 [pid 5843] <... openat resumed>) = 3 [pid 5844] newfstatat(3, "", [pid 5843] newfstatat(3, "", [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, [pid 5843] getdents64(3, [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5855] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5844] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5855] <... openat resumed>) = 4 [pid 5855] ioctl(4, LOOP_SET_FD, 3 [pid 5852] <... munmap resumed>) = 0 [pid 5850] <... mount resumed>) = 0 [pid 5848] <... munmap resumed>) = 0 [pid 5850] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5850] chdir("./file1") = 0 [pid 5848] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5843] <... umount2 resumed>) = 0 [pid 5852] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5848] <... openat resumed>) = 4 [pid 5844] <... umount2 resumed>) = 0 [pid 5843] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5850] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./0/file1", [pid 5844] newfstatat(AT_FDCWD, "./0/file1", [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5852] <... openat resumed>) = 4 [pid 5844] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5852] ioctl(4, LOOP_SET_FD, 3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 91.574705][ T5855] loop5: detected capacity change from 0 to 32768 [pid 5843] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5850] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5848] ioctl(4, LOOP_SET_FD, 3 [pid 5844] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... openat resumed>) = 4 [pid 5844] <... openat resumed>) = 4 [pid 5843] newfstatat(4, "", [pid 5844] newfstatat(4, "", [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, [pid 5844] getdents64(4, [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, [pid 5844] getdents64(4, [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4 [pid 5844] close(4 [pid 5843] <... close resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5843] rmdir("./0/file1" [pid 5850] exit_group(0 [pid 5848] <... ioctl resumed>) = 0 [pid 5844] rmdir("./0/file1" [pid 5843] <... rmdir resumed>) = 0 [pid 5850] <... exit_group resumed>) = ? [pid 5844] <... rmdir resumed>) = 0 [pid 5843] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5844] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5855] <... ioctl resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./0/binderfs" [pid 5855] close(3 [pid 5844] unlink("./0/binderfs" [pid 5843] <... unlink resumed>) = 0 [pid 5850] +++ exited with 0 +++ [pid 5855] <... close resumed>) = 0 [pid 5844] <... unlink resumed>) = 0 [pid 5843] getdents64(3, [pid 5855] close(4 [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5850, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=23 /* 0.23 s */} --- [pid 5844] getdents64(3, [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5855] <... close resumed>) = 0 [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5855] mkdir("./file1", 0777 [pid 5843] close(3 [pid 5855] <... mkdir resumed>) = 0 [pid 5844] close(3 [pid 5843] <... close resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5843] rmdir("./0" [pid 5844] rmdir("./0" [pid 5843] <... rmdir resumed>) = 0 [pid 5855] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5844] <... rmdir resumed>) = 0 [pid 5843] mkdir("./1", 0777 [pid 5845] <... restart_syscall resumed>) = 0 [pid 5843] <... mkdir resumed>) = 0 [pid 5845] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] mkdir("./1", 0777 [pid 5852] <... ioctl resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... mkdir resumed>) = 0 [pid 5852] close(3 [pid 5845] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5852] <... close resumed>) = 0 [pid 5845] <... openat resumed>) = 3 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5852] close(4 [pid 5845] newfstatat(3, "", [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] <... openat resumed>) = 3 [pid 5852] <... close resumed>) = 0 [pid 5852] mkdir("./file1", 0777 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5852] <... mkdir resumed>) = 0 [pid 5845] getdents64(3, [pid 5844] <... openat resumed>) = 3 [pid 5843] <... ioctl resumed>) = 0 [pid 5855] <... mount resumed>) = 0 [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5843] close(3 [pid 5855] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5852] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... ioctl resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5855] <... openat resumed>) = 3 [pid 5844] close(3 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5858 attached [pid 5855] chdir("./file1") = 0 [pid 5844] <... close resumed>) = 0 [pid 5855] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5858] set_robust_list(0x55558e440660, 24 [pid 5855] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5859 attached [pid 5855] exit_group(0 [pid 5858] <... set_robust_list resumed>) = 0 [pid 5855] <... exit_group resumed>) = ? [ 91.615672][ T5852] loop4: detected capacity change from 0 to 32768 [ 91.624821][ T5848] loop0: detected capacity change from 0 to 32768 [pid 5859] set_robust_list(0x55558e440660, 24 [pid 5858] chdir("./1" [pid 5855] +++ exited with 0 +++ [pid 5845] <... umount2 resumed>) = 0 [pid 5859] <... set_robust_list resumed>) = 0 [pid 5858] <... chdir resumed>) = 0 [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5855, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=25 /* 0.25 s */} --- [pid 5845] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5858 [pid 5858] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5859 [pid 5859] chdir("./1" [pid 5858] <... prctl resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5859] <... chdir resumed>) = 0 [pid 5847] <... restart_syscall resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./0/file1", [pid 5859] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5859] setpgid(0, 0) = 0 [pid 5859] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5858] setpgid(0, 0 [pid 5847] <... openat resumed>) = 3 [pid 5845] <... openat resumed>) = 4 [pid 5847] newfstatat(3, "", [pid 5859] <... openat resumed>) = 3 [pid 5858] <... setpgid resumed>) = 0 [pid 5858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5859] write(3, "1000", 4 [pid 5858] <... openat resumed>) = 3 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5859] <... write resumed>) = 4 [pid 5858] write(3, "1000", 4 [pid 5847] getdents64(3, [pid 5848] close(3 [pid 5845] newfstatat(4, "", executing program executing program [pid 5859] close(3 [pid 5858] <... write resumed>) = 4 [pid 5848] <... close resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5858] close(3 [pid 5859] <... close resumed>) = 0 [pid 5859] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5858] <... close resumed>) = 0 [pid 5858] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5859] write(1, "executing program\n", 18) = 18 [pid 5859] memfd_create("syzkaller", 0 [pid 5858] write(1, "executing program\n", 18) = 18 [pid 5858] memfd_create("syzkaller", 0 [pid 5859] <... memfd_create resumed>) = 3 [pid 5859] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5858] <... memfd_create resumed>) = 3 [pid 5847] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5848] close(4 [pid 5845] getdents64(4, [pid 5858] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5848] <... close resumed>) = 0 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5848] mkdir("./file1", 0777 [pid 5845] getdents64(4, [pid 5848] <... mkdir resumed>) = 0 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5848] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] close(4) = 0 [pid 5845] rmdir("./0/file1" [pid 5852] <... mount resumed>) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5852] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5852] <... openat resumed>) = 3 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5852] chdir("./file1" [pid 5847] <... umount2 resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5852] <... chdir resumed>) = 0 [pid 5852] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5847] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5852] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5848] <... mount resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] unlink("./0/binderfs" [pid 5848] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5847] newfstatat(AT_FDCWD, "./0/file1", [pid 5845] <... unlink resumed>) = 0 [pid 5852] exit_group(0) = ? [pid 5852] +++ exited with 0 +++ [pid 5848] <... openat resumed>) = 3 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] getdents64(3, [pid 5848] chdir("./file1" [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5848] <... chdir resumed>) = 0 [pid 5845] close(3 [pid 5847] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5848] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... close resumed>) = 0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5852, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=28 /* 0.28 s */} --- [pid 5845] rmdir("./0" [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5848] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5847] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] <... restart_syscall resumed>) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5848] exit_group(0 [pid 5847] <... openat resumed>) = 4 [pid 5845] mkdir("./1", 0777 [pid 5848] <... exit_group resumed>) = ? [pid 5847] newfstatat(4, "", [pid 5846] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... mkdir resumed>) = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5848] +++ exited with 0 +++ [pid 5847] getdents64(4, [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5847] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5848, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5846] <... openat resumed>) = 3 [pid 5845] <... openat resumed>) = 3 [pid 5847] getdents64(4, [pid 5846] newfstatat(3, "", [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5847] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, [pid 5842] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] close(4 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] <... ioctl resumed>) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] <... close resumed>) = 0 [pid 5845] close(3 [pid 5842] newfstatat(3, "", [pid 5845] <... close resumed>) = 0 [pid 5847] rmdir("./0/file1" [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, [pid 5847] <... rmdir resumed>) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5862 attached [pid 5847] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5862 [pid 5847] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5862] set_robust_list(0x55558e440660, 24 [pid 5847] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./0/binderfs" [pid 5862] <... set_robust_list resumed>) = 0 [pid 5847] <... unlink resumed>) = 0 [pid 5862] chdir("./1" [pid 5847] getdents64(3, [pid 5862] <... chdir resumed>) = 0 [pid 5862] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5846] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4) = 0 [pid 5862] <... prctl resumed>) = 0 [pid 5847] close(3 [pid 5846] rmdir("./0/file1" [pid 5862] setpgid(0, 0 [pid 5847] <... close resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5842] <... umount2 resumed>) = 0 [pid 5847] rmdir("./0" [pid 5862] <... setpgid resumed>) = 0 [pid 5842] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5862] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] <... rmdir resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5862] <... openat resumed>) = 3 [pid 5847] mkdir("./1", 0777 [pid 5842] newfstatat(AT_FDCWD, "./0/file1", [pid 5862] write(3, "1000", 4 [pid 5847] <... mkdir resumed>) = 0 [pid 5846] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5862] <... write resumed>) = 4 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 executing program [pid 5862] close(3 [pid 5847] <... openat resumed>) = 3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5862] <... close resumed>) = 0 [pid 5847] ioctl(3, LOOP_CLR_FD [pid 5862] symlink("/dev/binderfs", "./binderfs" [pid 5847] <... ioctl resumed>) = 0 [pid 5846] unlink("./0/binderfs" [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5862] <... symlink resumed>) = 0 [pid 5846] <... unlink resumed>) = 0 [pid 5847] close(3 [pid 5842] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5847] <... close resumed>) = 0 [pid 5846] getdents64(3, [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] <... openat resumed>) = 4 [pid 5862] write(1, "executing program\n", 18./strace-static-x86_64: Process 5863 attached ) = 18 [pid 5846] close(3 [pid 5842] newfstatat(4, "", [pid 5862] memfd_create("syzkaller", 0 [pid 5846] <... close resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5863] set_robust_list(0x55558e440660, 24 [pid 5862] <... memfd_create resumed>) = 3 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5863 [pid 5846] rmdir("./0" [pid 5842] getdents64(4, [pid 5863] <... set_robust_list resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5846] mkdir("./1", 0777 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5863] chdir("./1" [pid 5846] <... mkdir resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5842] getdents64(4, [pid 5863] <... chdir resumed>) = 0 [pid 5862] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... ioctl resumed>) = 0 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5863] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5862] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] close(3 [pid 5842] close(4 [pid 5863] <... prctl resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5863] setpgid(0, 0) = 0 [pid 5842] rmdir("./0/file1" [pid 5863] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... rmdir resumed>) = 0 [pid 5863] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5864 attached [pid 5863] write(3, "1000", 4 [pid 5864] set_robust_list(0x55558e440660, 24 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5864 [pid 5864] <... set_robust_list resumed>) = 0 [pid 5864] chdir("./1" [pid 5863] <... write resumed>) = 4 [pid 5864] <... chdir resumed>) = 0 [pid 5864] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5864] setpgid(0, 0) = 0 [pid 5864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5863] close(3 [pid 5842] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5863] <... close resumed>) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5863] symlink("/dev/binderfs", "./binderfs" [pid 5842] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5864] write(3, "1000", 4 [pid 5863] <... symlink resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5864] <... write resumed>) = 4 [pid 5863] write(1, "executing program\n", 18 [pid 5864] close(3) = 0 [pid 5864] symlink("/dev/binderfs", "./binderfs"executing program executing program ) = 0 [pid 5863] <... write resumed>) = 18 [pid 5842] unlink("./0/binderfs" [pid 5864] write(1, "executing program\n", 18) = 18 [pid 5864] memfd_create("syzkaller", 0 [pid 5842] <... unlink resumed>) = 0 [pid 5864] <... memfd_create resumed>) = 3 [pid 5863] memfd_create("syzkaller", 0 [pid 5842] getdents64(3, [pid 5864] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3 [pid 5864] <... mmap resumed>) = 0x7f101fc00000 [pid 5863] <... memfd_create resumed>) = 3 [pid 5842] <... close resumed>) = 0 [pid 5863] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] rmdir("./0" [pid 5863] <... mmap resumed>) = 0x7f101fc00000 [pid 5842] <... rmdir resumed>) = 0 [pid 5842] mkdir("./1", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5867 attached [pid 5867] set_robust_list(0x55558e440660, 24 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5867 [pid 5867] <... set_robust_list resumed>) = 0 [pid 5867] chdir("./1") = 0 [pid 5867] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5867] setpgid(0, 0) = 0 [pid 5867] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5867] write(3, "1000", 4) = 4 [pid 5867] close(3) = 0 [pid 5867] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5867] write(1, "executing program\n", 18) = 18 [pid 5867] memfd_create("syzkaller", 0) = 3 [pid 5867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5858] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5859] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5862] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5863] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5864] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5867] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5859] <... write resumed>) = 16777216 [pid 5859] munmap(0x7f101fc00000, 138412032) = 0 [pid 5859] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5859] ioctl(4, LOOP_SET_FD, 3 [pid 5858] <... write resumed>) = 16777216 [pid 5859] <... ioctl resumed>) = 0 [pid 5858] munmap(0x7f101fc00000, 138412032 [pid 5859] close(3) = 0 [pid 5859] close(4) = 0 [pid 5859] mkdir("./file1", 0777) = 0 [pid 5859] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5859] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5859] chdir("./file1") = 0 [pid 5859] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5859] exit_group(0) = ? [pid 5859] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5859, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} --- [ 93.159862][ T5859] loop2: detected capacity change from 0 to 32768 [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5858] <... munmap resumed>) = 0 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5844] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5858] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5858] ioctl(4, LOOP_SET_FD, 3 [pid 5844] <... umount2 resumed>) = 0 [pid 5844] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5844] rmdir("./1/file1") = 0 [pid 5844] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./1/binderfs") = 0 [pid 5844] getdents64(3, [pid 5858] <... ioctl resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5858] close(3 [pid 5844] close(3 [pid 5862] <... write resumed>) = 16777216 [pid 5858] <... close resumed>) = 0 [pid 5862] munmap(0x7f101fc00000, 138412032 [pid 5858] close(4 [pid 5844] <... close resumed>) = 0 [pid 5858] <... close resumed>) = 0 [pid 5844] rmdir("./1" [pid 5858] mkdir("./file1", 0777 [pid 5844] <... rmdir resumed>) = 0 [pid 5858] <... mkdir resumed>) = 0 [pid 5858] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5864] <... write resumed>) = 16777216 [pid 5844] mkdir("./2", 0777 [pid 5864] munmap(0x7f101fc00000, 138412032 [pid 5844] <... mkdir resumed>) = 0 [ 93.259291][ T5858] loop1: detected capacity change from 0 to 32768 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5872 ./strace-static-x86_64: Process 5872 attached [pid 5872] set_robust_list(0x55558e440660, 24) = 0 [pid 5872] chdir("./2") = 0 [pid 5872] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5862] <... munmap resumed>) = 0 [pid 5872] <... prctl resumed>) = 0 [pid 5862] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5858] <... mount resumed>) = 0 [pid 5872] setpgid(0, 0 [pid 5863] <... write resumed>) = 16777216 [pid 5862] <... openat resumed>) = 4 [pid 5858] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5872] <... setpgid resumed>) = 0 [pid 5872] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5872] write(3, "1000", 4) = 4 [pid 5872] close(3) = 0 [pid 5872] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5864] <... munmap resumed>) = 0 [pid 5862] ioctl(4, LOOP_SET_FD, 3 [pid 5858] <... openat resumed>) = 3 executing program [pid 5858] chdir("./file1" [pid 5872] write(1, "executing program\n", 18) = 18 [pid 5872] memfd_create("syzkaller", 0) = 3 [pid 5872] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5863] munmap(0x7f101fc00000, 138412032 [pid 5858] <... chdir resumed>) = 0 [pid 5858] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5858] exit_group(0) = ? [pid 5864] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5858] +++ exited with 0 +++ [pid 5864] <... openat resumed>) = 4 [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5858, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5864] ioctl(4, LOOP_SET_FD, 3 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5867] <... write resumed>) = 16777216 [pid 5862] <... ioctl resumed>) = 0 [pid 5867] munmap(0x7f101fc00000, 138412032 [pid 5862] close(3 [pid 5843] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5862] <... close resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5862] close(4 [pid 5843] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5862] <... close resumed>) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5862] mkdir("./file1", 0777 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5862] <... mkdir resumed>) = 0 [pid 5862] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5864] <... ioctl resumed>) = 0 [pid 5863] <... munmap resumed>) = 0 [pid 5862] <... mount resumed>) = 0 [pid 5862] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5864] close(3) = 0 [pid 5862] <... openat resumed>) = 3 [pid 5862] chdir("./file1") = 0 [pid 5862] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [ 93.367926][ T5862] loop3: detected capacity change from 0 to 32768 [ 93.395111][ T5864] loop4: detected capacity change from 0 to 32768 [pid 5862] exit_group(0) = ? [pid 5864] close(4 [pid 5863] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5864] <... close resumed>) = 0 [pid 5863] <... openat resumed>) = 4 [pid 5864] mkdir("./file1", 0777 [pid 5863] ioctl(4, LOOP_SET_FD, 3 [pid 5864] <... mkdir resumed>) = 0 [pid 5862] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5862, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=24 /* 0.24 s */} --- [pid 5864] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5864] <... mount resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5864] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5864] <... openat resumed>) = 3 [pid 5863] <... ioctl resumed>) = 0 [pid 5843] <... openat resumed>) = 4 [pid 5864] chdir("./file1") = 0 [pid 5863] close(3 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5864] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5863] <... close resumed>) = 0 [pid 5843] getdents64(4, [pid 5863] close(4 [pid 5864] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5863] <... close resumed>) = 0 [pid 5863] mkdir("./file1", 0777 [pid 5864] exit_group(0 [pid 5863] <... mkdir resumed>) = 0 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, [pid 5864] <... exit_group resumed>) = ? [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5863] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] close(4) = 0 [ 93.439333][ T5863] loop5: detected capacity change from 0 to 32768 [pid 5864] +++ exited with 0 +++ [pid 5843] rmdir("./1/file1" [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5864, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5846] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... openat resumed>) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] newfstatat(AT_FDCWD, "./1/binderfs", [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5867] <... munmap resumed>) = 0 [pid 5845] <... umount2 resumed>) = 0 [pid 5843] unlink("./1/binderfs" [pid 5863] <... mount resumed>) = 0 [pid 5845] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... unlink resumed>) = 0 [pid 5863] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] getdents64(3, [pid 5863] <... openat resumed>) = 3 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5863] chdir("./file1" [pid 5843] close(3 [pid 5863] <... chdir resumed>) = 0 [pid 5863] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5845] newfstatat(AT_FDCWD, "./1/file1", [pid 5867] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5863] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... close resumed>) = 0 [pid 5867] <... openat resumed>) = 4 [pid 5867] ioctl(4, LOOP_SET_FD, 3 [pid 5843] rmdir("./1" [pid 5863] exit_group(0) = ? [pid 5845] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", [pid 5863] +++ exited with 0 +++ [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5845] getdents64(4, [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5863, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=24 /* 0.24 s */} --- [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] mkdir("./2", 0777 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./1/file1") = 0 [pid 5843] <... mkdir resumed>) = 0 [pid 5845] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./1/binderfs", [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./1/binderfs") = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5847] <... restart_syscall resumed>) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3 [pid 5847] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... close resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] rmdir("./1" [pid 5843] <... openat resumed>) = 3 [pid 5845] <... rmdir resumed>) = 0 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5847] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... ioctl resumed>) = 0 [pid 5847] <... openat resumed>) = 3 [pid 5846] <... umount2 resumed>) = 0 [pid 5843] close(3 [pid 5847] newfstatat(3, "", [pid 5846] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] mkdir("./2", 0777 [pid 5847] getdents64(3, [pid 5846] newfstatat(AT_FDCWD, "./1/file1", [pid 5845] <... mkdir resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5873 attached ) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5846] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] <... openat resumed>) = 3 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5873 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5873] set_robust_list(0x55558e440660, 24 [pid 5845] close(3 [pid 5873] <... set_robust_list resumed>) = 0 [pid 5845] <... close resumed>) = 0 [pid 5873] chdir("./2" [pid 5867] <... ioctl resumed>) = 0 [pid 5846] <... openat resumed>) = 4 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5867] close(3) = 0 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5873] <... chdir resumed>) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5873] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5873] setpgid(0, 0 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5873] <... setpgid resumed>) = 0 [pid 5873] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] close(4) = 0 [ 93.531555][ T5867] loop0: detected capacity change from 0 to 32768 [pid 5846] rmdir("./1/file1"./strace-static-x86_64: Process 5874 attached [pid 5867] close(4 [pid 5846] <... rmdir resumed>) = 0 [pid 5873] <... openat resumed>) = 3 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5874 [pid 5873] write(3, "1000", 4 [pid 5874] set_robust_list(0x55558e440660, 24 [pid 5873] <... write resumed>) = 4 [pid 5867] <... close resumed>) = 0 [pid 5846] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5873] close(3 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5874] <... set_robust_list resumed>) = 0 [pid 5873] <... close resumed>) = 0 [pid 5867] mkdir("./file1", 0777 [pid 5846] unlink("./1/binderfs" [pid 5874] chdir("./2" [pid 5873] symlink("/dev/binderfs", "./binderfs" [pid 5867] <... mkdir resumed>) = 0 [pid 5846] <... unlink resumed>) = 0 executing program [pid 5874] <... chdir resumed>) = 0 [pid 5873] <... symlink resumed>) = 0 [pid 5867] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5847] <... umount2 resumed>) = 0 [pid 5846] getdents64(3, [pid 5874] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5874] <... prctl resumed>) = 0 [pid 5873] write(1, "executing program\n", 18 [pid 5847] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] close(3 [pid 5873] <... write resumed>) = 18 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... close resumed>) = 0 [pid 5874] setpgid(0, 0 [pid 5873] memfd_create("syzkaller", 0) = 3 [pid 5873] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5874] <... setpgid resumed>) = 0 [pid 5846] rmdir("./1" [pid 5874] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] <... rmdir resumed>) = 0 [pid 5847] newfstatat(AT_FDCWD, "./1/file1", [pid 5874] <... openat resumed>) = 3 [pid 5874] write(3, "1000", 4 [pid 5867] <... mount resumed>) = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] mkdir("./2", 0777 [pid 5874] <... write resumed>) = 4 [pid 5867] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5847] <... openat resumed>) = 4 [pid 5846] <... mkdir resumed>) = 0 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5874] close(3 [pid 5867] <... openat resumed>) = 3 [pid 5847] close(4 [pid 5846] <... openat resumed>) = 3 [pid 5874] <... close resumed>) = 0 [pid 5867] chdir("./file1" [pid 5847] <... close resumed>) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5874] symlink("/dev/binderfs", "./binderfs" [pid 5867] <... chdir resumed>) = 0 [pid 5846] <... ioctl resumed>) = 0 [pid 5874] <... symlink resumed>) = 0 [pid 5867] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5847] rmdir("./1/file1") = 0 [pid 5846] close(3 [pid 5847] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... close resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program ./strace-static-x86_64: Process 5875 attached [pid 5874] write(1, "executing program\n", 18 [pid 5867] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5847] newfstatat(AT_FDCWD, "./1/binderfs", [pid 5874] <... write resumed>) = 18 [pid 5867] exit_group(0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5867] <... exit_group resumed>) = ? [pid 5874] memfd_create("syzkaller", 0 [pid 5847] unlink("./1/binderfs") = 0 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5875 [pid 5867] +++ exited with 0 +++ [pid 5874] <... memfd_create resumed>) = 3 [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5867, si_uid=0, si_status=0, si_utime=0, si_stime=31 /* 0.31 s */} --- [pid 5875] set_robust_list(0x55558e440660, 24 [pid 5874] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] getdents64(3, [pid 5874] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5875] <... set_robust_list resumed>) = 0 [pid 5847] close(3) = 0 [pid 5842] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5875] chdir("./2" [pid 5847] rmdir("./1" [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5875] <... chdir resumed>) = 0 [pid 5847] <... rmdir resumed>) = 0 [pid 5842] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5875] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] <... openat resumed>) = 3 [pid 5875] <... prctl resumed>) = 0 [pid 5842] newfstatat(3, "", [pid 5875] setpgid(0, 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5875] <... setpgid resumed>) = 0 [pid 5842] getdents64(3, [pid 5875] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] mkdir("./2", 0777 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] <... mkdir resumed>) = 0 [pid 5842] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5875] <... openat resumed>) = 3 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5875] write(3, "1000", 4 [pid 5847] close(3) = 0 [pid 5875] <... write resumed>) = 4 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5875] close(3) = 0 [pid 5875] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5876 [pid 5875] write(1, "executing program\n", 18executing program ) = 18 [pid 5875] memfd_create("syzkaller", 0) = 3 [pid 5875] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 ./strace-static-x86_64: Process 5876 attached [pid 5876] set_robust_list(0x55558e440660, 24) = 0 [pid 5876] chdir("./2") = 0 [pid 5876] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5876] setpgid(0, 0) = 0 [pid 5876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5876] write(3, "1000", 4) = 4 [pid 5876] close(3) = 0 [pid 5842] <... umount2 resumed>) = 0 [pid 5876] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5876] write(1, "executing program\n", 18 [pid 5842] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program [pid 5876] <... write resumed>) = 18 [pid 5876] memfd_create("syzkaller", 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5876] <... memfd_create resumed>) = 3 [pid 5842] newfstatat(AT_FDCWD, "./1/file1", [pid 5876] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5876] <... mmap resumed>) = 0x7f101fc00000 [pid 5842] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./1/file1") = 0 [pid 5842] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5872] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./1/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./1") = 0 [pid 5842] mkdir("./2", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3 [pid 5873] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5874] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5876] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5875] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] <... close resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5877 attached , child_tidptr=0x55558e440650) = 5877 executing program [pid 5877] set_robust_list(0x55558e440660, 24) = 0 [pid 5877] chdir("./2") = 0 [pid 5877] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5877] setpgid(0, 0) = 0 [pid 5877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5877] write(3, "1000", 4) = 4 [pid 5877] close(3) = 0 [pid 5877] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5877] write(1, "executing program\n", 18) = 18 [pid 5877] memfd_create("syzkaller", 0) = 3 [pid 5877] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5872] <... write resumed>) = 16777216 [pid 5872] munmap(0x7f101fc00000, 138412032) = 0 [pid 5872] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5872] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5872] close(3) = 0 [pid 5872] close(4) = 0 [pid 5872] mkdir("./file1", 0777) = 0 [ 94.805954][ T5872] loop2: detected capacity change from 0 to 32768 [pid 5872] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5872] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5872] chdir("./file1") = 0 [pid 5872] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5872] exit_group(0) = ? [pid 5872] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5872, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=25 /* 0.25 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5844] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5875] <... write resumed>) = 16777216 [pid 5875] munmap(0x7f101fc00000, 138412032 [pid 5873] <... write resumed>) = 16777216 [pid 5844] <... umount2 resumed>) = 0 [pid 5844] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5873] munmap(0x7f101fc00000, 138412032 [pid 5844] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5844] rmdir("./2/file1") = 0 [pid 5844] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./2/binderfs") = 0 [pid 5844] getdents64(3, [pid 5874] <... write resumed>) = 16777216 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3 [pid 5874] munmap(0x7f101fc00000, 138412032 [pid 5844] <... close resumed>) = 0 [pid 5844] rmdir("./2") = 0 [pid 5844] mkdir("./3", 0777) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5878 [pid 5873] <... munmap resumed>) = 0 ./strace-static-x86_64: Process 5878 attached [pid 5878] set_robust_list(0x55558e440660, 24) = 0 [pid 5878] chdir("./3") = 0 [pid 5878] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5875] <... munmap resumed>) = 0 [pid 5878] <... prctl resumed>) = 0 [pid 5875] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5873] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5878] setpgid(0, 0 [pid 5875] <... openat resumed>) = 4 [pid 5873] <... openat resumed>) = 4 [pid 5875] ioctl(4, LOOP_SET_FD, 3 [pid 5878] <... setpgid resumed>) = 0 [pid 5873] ioctl(4, LOOP_SET_FD, 3 [pid 5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5878] write(3, "1000", 4 [pid 5874] <... munmap resumed>) = 0 [pid 5878] <... write resumed>) = 4 [ 94.995046][ T5875] loop4: detected capacity change from 0 to 32768 [ 95.005395][ T5873] loop1: detected capacity change from 0 to 32768 [pid 5878] close(3 [pid 5874] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5875] <... ioctl resumed>) = 0 [pid 5875] close(3) = 0 [pid 5875] close(4) = 0 [pid 5875] mkdir("./file1", 0777 [pid 5878] <... close resumed>) = 0 [pid 5875] <... mkdir resumed>) = 0 [pid 5874] <... openat resumed>) = 4 [pid 5875] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5878] symlink("/dev/binderfs", "./binderfs" [pid 5874] ioctl(4, LOOP_SET_FD, 3 [pid 5873] <... ioctl resumed>) = 0 [pid 5878] <... symlink resumed>) = 0 [pid 5876] <... write resumed>) = 16777216 executing program [pid 5878] write(1, "executing program\n", 18 [pid 5873] close(3 [pid 5878] <... write resumed>) = 18 [pid 5873] <... close resumed>) = 0 [pid 5876] munmap(0x7f101fc00000, 138412032 [pid 5878] memfd_create("syzkaller", 0 [pid 5875] <... mount resumed>) = 0 [pid 5873] close(4 [pid 5874] <... ioctl resumed>) = 0 [pid 5878] <... memfd_create resumed>) = 3 [pid 5874] close(3 [pid 5873] <... close resumed>) = 0 [pid 5878] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5873] mkdir("./file1", 0777 [pid 5874] <... close resumed>) = 0 [pid 5875] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5874] close(4 [pid 5873] <... mkdir resumed>) = 0 [pid 5875] <... openat resumed>) = 3 [pid 5875] chdir("./file1") = 0 [pid 5874] <... close resumed>) = 0 [pid 5873] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5875] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5875] exit_group(0 [pid 5874] mkdir("./file1", 0777 [pid 5875] <... exit_group resumed>) = ? [pid 5875] +++ exited with 0 +++ [pid 5874] <... mkdir resumed>) = 0 [pid 5874] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5875, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5846] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 95.041292][ T5874] loop3: detected capacity change from 0 to 32768 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5877] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] <... umount2 resumed>) = 0 [pid 5846] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5873] <... mount resumed>) = 0 [pid 5846] newfstatat(4, "", [pid 5873] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5874] <... mount resumed>) = 0 [pid 5873] <... openat resumed>) = 3 [pid 5874] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5873] chdir("./file1" [pid 5846] getdents64(4, [pid 5874] <... openat resumed>) = 3 [pid 5873] <... chdir resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5874] chdir("./file1" [pid 5873] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5846] close(4 [pid 5874] <... chdir resumed>) = 0 [pid 5873] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5846] <... close resumed>) = 0 [pid 5874] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5873] exit_group(0 [pid 5846] rmdir("./2/file1" [pid 5874] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5873] <... exit_group resumed>) = ? [pid 5846] <... rmdir resumed>) = 0 [pid 5846] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./2/binderfs", [pid 5874] exit_group(0 [pid 5873] +++ exited with 0 +++ [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5874] <... exit_group resumed>) = ? [pid 5846] unlink("./2/binderfs") = 0 [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5873, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=23 /* 0.23 s */} --- [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5846] close(3) = 0 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5846] rmdir("./2") = 0 [pid 5843] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5876] <... munmap resumed>) = 0 [pid 5874] +++ exited with 0 +++ [pid 5846] mkdir("./3", 0777 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5874, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=21 /* 0.21 s */} --- [pid 5843] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", [pid 5845] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] <... mkdir resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] getdents64(3, [pid 5876] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5845] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5876] <... openat resumed>) = 4 [pid 5845] <... openat resumed>) = 3 [pid 5843] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5876] ioctl(4, LOOP_SET_FD, 3 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] <... openat resumed>) = 3 [pid 5845] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5879 attached , child_tidptr=0x55558e440650) = 5879 [pid 5879] set_robust_list(0x55558e440660, 24) = 0 [pid 5843] <... umount2 resumed>) = 0 [pid 5879] chdir("./3" [pid 5843] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5879] <... chdir resumed>) = 0 [pid 5843] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5879] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5843] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5879] <... prctl resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5879] setpgid(0, 0 [pid 5843] <... openat resumed>) = 4 [pid 5879] <... setpgid resumed>) = 0 [pid 5843] newfstatat(4, "", [pid 5879] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, [pid 5879] <... openat resumed>) = 3 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5879] write(3, "1000", 4 [pid 5845] <... umount2 resumed>) = 0 [pid 5879] <... write resumed>) = 4 [pid 5843] rmdir("./2/file1" [pid 5879] close(3 [pid 5876] <... ioctl resumed>) = 0 [pid 5843] <... rmdir resumed>) = 0 executing program [pid 5879] <... close resumed>) = 0 [pid 5876] close(3 [pid 5845] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5879] symlink("/dev/binderfs", "./binderfs" [pid 5876] <... close resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./2/file1", [pid 5879] <... symlink resumed>) = 0 [pid 5843] newfstatat(AT_FDCWD, "./2/binderfs", [pid 5879] write(1, "executing program\n", 18 [pid 5876] close(4 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5879] <... write resumed>) = 18 [pid 5876] <... close resumed>) = 0 [pid 5879] memfd_create("syzkaller", 0 [pid 5876] mkdir("./file1", 0777 [pid 5845] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] unlink("./2/binderfs" [pid 5879] <... memfd_create resumed>) = 3 [pid 5876] <... mkdir resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... unlink resumed>) = 0 [pid 5879] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5876] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5879] <... mmap resumed>) = 0x7f101fc00000 [pid 5845] <... openat resumed>) = 4 [pid 5843] getdents64(3, [ 95.194563][ T5876] loop5: detected capacity change from 0 to 32768 [pid 5845] newfstatat(4, "", [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] close(3 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] <... close resumed>) = 0 [pid 5845] getdents64(4, [pid 5843] rmdir("./2" [pid 5845] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./2/file1" [pid 5876] <... mount resumed>) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5876] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] mkdir("./3", 0777 [pid 5876] <... openat resumed>) = 3 [pid 5845] newfstatat(AT_FDCWD, "./2/binderfs", [pid 5843] <... mkdir resumed>) = 0 [pid 5876] chdir("./file1" [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./2/binderfs" [pid 5876] <... chdir resumed>) = 0 [pid 5845] <... unlink resumed>) = 0 [pid 5876] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5845] getdents64(3, [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5876] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5845] close(3 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5876] exit_group(0 [pid 5845] <... close resumed>) = 0 [pid 5843] <... ioctl resumed>) = 0 [pid 5876] <... exit_group resumed>) = ? [pid 5845] rmdir("./2" [pid 5843] close(3 [pid 5845] <... rmdir resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5876] +++ exited with 0 +++ [pid 5845] mkdir("./3", 0777 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... mkdir resumed>) = 0 [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5876, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=22 /* 0.22 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5880 [pid 5845] <... openat resumed>) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5881 attached [pid 5847] <... restart_syscall resumed>) = 0 [pid 5847] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5880 attached [pid 5847] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5881] set_robust_list(0x55558e440660, 24 [pid 5847] newfstatat(3, "", [pid 5881] <... set_robust_list resumed>) = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5881] chdir("./3" [pid 5880] set_robust_list(0x55558e440660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5881 [pid 5847] getdents64(3, [pid 5880] <... set_robust_list resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5881] <... chdir resumed>) = 0 [pid 5847] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5881] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5880] chdir("./3" [pid 5881] <... prctl resumed>) = 0 [pid 5881] setpgid(0, 0) = 0 [pid 5881] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5881] write(3, "1000", 4 [pid 5880] <... chdir resumed>) = 0 [pid 5881] <... write resumed>) = 4 [pid 5881] close(3) = 0 [pid 5880] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5881] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5880] <... prctl resumed>) = 0 [pid 5881] write(1, "executing program\n", 18executing program [pid 5880] setpgid(0, 0 [pid 5881] <... write resumed>) = 18 [pid 5881] memfd_create("syzkaller", 0 [pid 5880] <... setpgid resumed>) = 0 [pid 5881] <... memfd_create resumed>) = 3 [pid 5881] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5880] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5880] write(3, "1000", 4) = 4 [pid 5880] close(3) = 0 [pid 5880] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5880] write(1, "executing program\n", 18executing program [pid 5847] <... umount2 resumed>) = 0 [pid 5880] <... write resumed>) = 18 [pid 5880] memfd_create("syzkaller", 0 [pid 5847] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5880] <... memfd_create resumed>) = 3 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5880] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./2/file1") = 0 [pid 5880] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./2/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./2") = 0 [pid 5847] mkdir("./3", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5882 attached [pid 5882] set_robust_list(0x55558e440660, 24 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5882 [pid 5882] <... set_robust_list resumed>) = 0 [pid 5882] chdir("./3") = 0 [pid 5882] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5882] setpgid(0, 0) = 0 [pid 5882] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5882] write(3, "1000", 4) = 4 [pid 5882] close(3) = 0 [pid 5882] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5882] write(1, "executing program\n", 18) = 18 [pid 5882] memfd_create("syzkaller", 0) = 3 [pid 5882] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5878] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5879] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5881] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5880] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5882] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5877] <... write resumed>) = 16777216 [pid 5877] munmap(0x7f101fc00000, 138412032) = 0 [pid 5877] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5877] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5877] close(3) = 0 [pid 5877] close(4) = 0 [pid 5877] mkdir("./file1", 0777) = 0 [ 96.212401][ T5877] loop0: detected capacity change from 0 to 32768 [pid 5877] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5877] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5877] chdir("./file1") = 0 [pid 5877] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5877] exit_group(0) = ? [pid 5877] +++ exited with 0 +++ [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5877, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=29 /* 0.29 s */} --- [pid 5842] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5842] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./2/file1", [pid 5878] <... write resumed>) = 16777216 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5878] munmap(0x7f101fc00000, 138412032 [pid 5842] rmdir("./2/file1") = 0 [pid 5842] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./2/binderfs" [pid 5878] <... munmap resumed>) = 0 [pid 5842] <... unlink resumed>) = 0 [pid 5878] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5878] <... openat resumed>) = 4 [pid 5842] close(3) = 0 [pid 5842] rmdir("./2") = 0 [pid 5842] mkdir("./3", 0777) = 0 [pid 5878] ioctl(4, LOOP_SET_FD, 3 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3 [pid 5878] <... ioctl resumed>) = 0 [pid 5878] close(3) = 0 [pid 5878] close(4) = 0 [ 96.500590][ T5878] loop2: detected capacity change from 0 to 32768 [pid 5878] mkdir("./file1", 0777) = 0 [pid 5881] <... write resumed>) = 16777216 [pid 5879] <... write resumed>) = 16777216 [pid 5878] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5881] munmap(0x7f101fc00000, 138412032 [pid 5879] munmap(0x7f101fc00000, 138412032) = 0 [pid 5879] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5879] ioctl(4, LOOP_SET_FD, 3 [pid 5881] <... munmap resumed>) = 0 [pid 5879] <... ioctl resumed>) = 0 [pid 5878] <... mount resumed>) = 0 [pid 5878] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5878] chdir("./file1" [pid 5881] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5878] <... chdir resumed>) = 0 [pid 5878] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5881] <... openat resumed>) = 4 [pid 5878] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5881] ioctl(4, LOOP_SET_FD, 3 [pid 5879] close(3 [pid 5878] exit_group(0 [pid 5879] <... close resumed>) = 0 [pid 5879] close(4) = 0 [pid 5879] mkdir("./file1", 0777) = 0 [ 96.632624][ T5879] loop4: detected capacity change from 0 to 32768 [pid 5879] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5878] <... exit_group resumed>) = ? [pid 5878] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5878, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=29 /* 0.29 s */} --- [pid 5844] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5880] <... write resumed>) = 16777216 [pid 5844] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", [pid 5880] munmap(0x7f101fc00000, 138412032 [pid 5881] <... ioctl resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5881] close(3 [pid 5844] getdents64(3, [pid 5879] <... mount resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5881] <... close resumed>) = 0 [pid 5881] close(4 [pid 5879] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5844] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5881] <... close resumed>) = 0 [pid 5881] mkdir("./file1", 0777 [pid 5879] <... openat resumed>) = 3 [pid 5879] chdir("./file1") = 0 [pid 5879] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5879] exit_group(0) = ? [pid 5881] <... mkdir resumed>) = 0 [pid 5879] +++ exited with 0 +++ [ 96.680260][ T5881] loop3: detected capacity change from 0 to 32768 [pid 5882] <... write resumed>) = 16777216 [pid 5881] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5879, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=25 /* 0.25 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5880] <... munmap resumed>) = 0 [pid 5882] munmap(0x7f101fc00000, 138412032 [pid 5846] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5881] <... mount resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... umount2 resumed>) = 0 [pid 5881] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5881] <... openat resumed>) = 3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... openat resumed>) = 3 [pid 5846] newfstatat(3, "", [pid 5844] newfstatat(AT_FDCWD, "./3/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] getdents64(3, [pid 5881] chdir("./file1" [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5881] <... chdir resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5880] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5844] <... openat resumed>) = 4 [pid 5881] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5880] <... openat resumed>) = 4 [pid 5844] newfstatat(4, "", [pid 5880] ioctl(4, LOOP_SET_FD, 3 [pid 5846] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5881] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] getdents64(4, [pid 5881] exit_group(0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, [pid 5881] <... exit_group resumed>) = ? [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4 [pid 5881] +++ exited with 0 +++ [pid 5844] <... close resumed>) = 0 [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5881, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5844] rmdir("./3/file1") = 0 [pid 5880] <... ioctl resumed>) = 0 [pid 5844] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5880] close(3 [pid 5845] <... restart_syscall resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5880] <... close resumed>) = 0 [pid 5880] close(4 [pid 5845] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5880] <... close resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] newfstatat(AT_FDCWD, "./3/binderfs", [pid 5845] <... openat resumed>) = 3 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] newfstatat(3, "", [pid 5844] unlink("./3/binderfs" [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... unlink resumed>) = 0 [pid 5845] getdents64(3, [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] close(3 [pid 5880] mkdir("./file1", 0777) = 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5845] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = 0 [pid 5844] rmdir("./3" [pid 5846] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5880] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... rmdir resumed>) = 0 [pid 5846] newfstatat(AT_FDCWD, "./3/file1", [pid 5844] mkdir("./4", 0777) = 0 [ 96.770026][ T5880] loop1: detected capacity change from 0 to 32768 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5880] <... mount resumed>) = 0 [pid 5846] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5880] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5882] <... munmap resumed>) = 0 [pid 5880] <... openat resumed>) = 3 [pid 5846] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5882] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5880] chdir("./file1" [pid 5846] <... openat resumed>) = 4 [pid 5882] <... openat resumed>) = 4 [pid 5880] <... chdir resumed>) = 0 [pid 5846] newfstatat(4, "", [pid 5880] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5882] ioctl(4, LOOP_SET_FD, 3 [pid 5880] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] <... umount2 resumed>) = 0 [pid 5880] exit_group(0 [pid 5846] getdents64(4, [pid 5845] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5880] <... exit_group resumed>) = ? [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] newfstatat(AT_FDCWD, "./3/file1", [pid 5846] getdents64(4, [pid 5880] +++ exited with 0 +++ [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] close(4 [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5880, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- [pid 5845] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... close resumed>) = 0 [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5846] rmdir("./3/file1" [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5882] <... ioctl resumed>) = 0 [pid 5845] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... openat resumed>) = 3 [pid 5845] <... openat resumed>) = 4 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5845] newfstatat(4, "", [pid 5844] <... ioctl resumed>) = 0 [pid 5882] close(3 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] close(3 [pid 5845] getdents64(4, [pid 5882] <... close resumed>) = 0 [pid 5882] close(4) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5846] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] getdents64(4, [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5882] mkdir("./file1", 0777 [pid 5843] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] close(4 [pid 5846] newfstatat(AT_FDCWD, "./3/binderfs", [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... close resumed>) = 0 [pid 5882] <... mkdir resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] rmdir("./3/file1" [pid 5843] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] unlink("./3/binderfs" [pid 5845] <... rmdir resumed>) = 0 [pid 5843] newfstatat(3, "", [pid 5845] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] <... unlink resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] newfstatat(AT_FDCWD, "./3/binderfs", [pid 5882] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] getdents64(3, [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] unlink("./3/binderfs") = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [ 96.843473][ T5882] loop5: detected capacity change from 0 to 32768 [pid 5845] close(3) = 0 [pid 5845] rmdir("./3" [pid 5882] <... mount resumed>) = 0 [pid 5882] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5846] close(3 [pid 5845] <... rmdir resumed>) = 0 [pid 5882] chdir("./file1") = 0 [pid 5882] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5846] <... close resumed>) = 0 [pid 5845] mkdir("./4", 0777 [pid 5882] exit_group(0) = ? [pid 5882] +++ exited with 0 +++ [pid 5846] rmdir("./3" [pid 5845] <... mkdir resumed>) = 0 [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5882, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=30 /* 0.30 s */} --- [pid 5846] <... rmdir resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5846] mkdir("./4", 0777 [pid 5845] <... openat resumed>) = 3 [pid 5843] <... umount2 resumed>) = 0 [pid 5846] <... mkdir resumed>) = 0 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5843] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5845] <... ioctl resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5845] close(3 [pid 5843] newfstatat(AT_FDCWD, "./3/file1", [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... ioctl resumed>) = 0 [pid 5845] <... close resumed>) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] close(3 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] <... openat resumed>) = 3 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5883 [pid 5843] <... close resumed>) = 0 [pid 5843] rmdir("./3/file1") = 0 [pid 5843] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5883 attached [pid 5843] unlink("./3/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3 [pid 5883] set_robust_list(0x55558e440660, 24 [pid 5843] <... close resumed>) = 0 [pid 5883] <... set_robust_list resumed>) = 0 [pid 5843] rmdir("./3" [pid 5883] chdir("./4" [pid 5847] newfstatat(3, "", [pid 5843] <... rmdir resumed>) = 0 [pid 5883] <... chdir resumed>) = 0 [pid 5883] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5883] setpgid(0, 0) = 0 [pid 5883] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5843] mkdir("./4", 0777) = 0 [pid 5883] write(3, "1000", 4) = 4 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5883] close(3) = 0 [pid 5883] symlink("/dev/binderfs", "./binderfs" [pid 5847] getdents64(3, [pid 5883] <... symlink resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5847] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... openat resumed>) = 3 executing program [pid 5883] write(1, "executing program\n", 18 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5883] <... write resumed>) = 18 [pid 5883] memfd_create("syzkaller", 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5884 attached [pid 5883] <... memfd_create resumed>) = 3 [pid 5883] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5884 [pid 5883] <... mmap resumed>) = 0x7f101fc00000 [pid 5884] set_robust_list(0x55558e440660, 24) = 0 [pid 5884] chdir("./4") = 0 [pid 5847] <... umount2 resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5884] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5884] <... prctl resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] newfstatat(AT_FDCWD, "./3/file1", [pid 5884] setpgid(0, 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5885 attached [pid 5885] set_robust_list(0x55558e440660, 24 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5885 [pid 5885] <... set_robust_list resumed>) = 0 [pid 5885] chdir("./3") = 0 [pid 5885] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 executing program [pid 5884] <... setpgid resumed>) = 0 [pid 5847] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5885] setpgid(0, 0 [pid 5884] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5885] <... setpgid resumed>) = 0 [pid 5884] <... openat resumed>) = 3 [pid 5847] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5884] write(3, "1000", 4 [pid 5847] <... openat resumed>) = 4 [pid 5884] <... write resumed>) = 4 [pid 5847] newfstatat(4, "", [pid 5884] close(3 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5884] <... close resumed>) = 0 [pid 5847] getdents64(4, [pid 5884] symlink("/dev/binderfs", "./binderfs" [pid 5847] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5884] <... symlink resumed>) = 0 [pid 5847] getdents64(4, [pid 5884] write(1, "executing program\n", 18 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5885] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5884] <... write resumed>) = 18 [pid 5847] close(4 [pid 5885] <... openat resumed>) = 3 [pid 5884] memfd_create("syzkaller", 0 [pid 5847] <... close resumed>) = 0 [pid 5884] <... memfd_create resumed>) = 3 [pid 5847] rmdir("./3/file1" [pid 5884] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] <... rmdir resumed>) = 0 [pid 5847] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5884] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5885] write(3, "1000", 4 [pid 5847] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./3/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5885] <... write resumed>) = 4 [pid 5885] close(3) = 0 [pid 5885] symlink("/dev/binderfs", "./binderfs" [pid 5847] rmdir("./3") = 0 [pid 5847] mkdir("./4", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5886 attached [pid 5885] <... symlink resumed>) = 0 [pid 5885] write(1, "executing program\n", 18executing program [pid 5886] set_robust_list(0x55558e440660, 24 [pid 5885] <... write resumed>) = 18 [pid 5886] <... set_robust_list resumed>) = 0 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5886 [pid 5886] chdir("./4" [pid 5885] memfd_create("syzkaller", 0 [pid 5886] <... chdir resumed>) = 0 [pid 5886] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5886] setpgid(0, 0) = 0 [pid 5886] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5886] write(3, "1000", 4) = 4 [pid 5886] close(3) = 0 [pid 5886] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5886] write(1, "executing program\n", 18 [pid 5885] <... memfd_create resumed>) = 3 executing program [pid 5886] <... write resumed>) = 18 [pid 5885] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5886] memfd_create("syzkaller", 0 [pid 5885] <... mmap resumed>) = 0x7f101fc00000 [pid 5886] <... memfd_create resumed>) = 3 [pid 5886] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5883] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5844] <... close resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5887 attached , child_tidptr=0x55558e440650) = 5887 [pid 5887] set_robust_list(0x55558e440660, 24) = 0 [pid 5887] chdir("./4") = 0 [pid 5887] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5887] setpgid(0, 0) = 0 [pid 5887] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5887] write(3, "1000", 4) = 4 [pid 5887] close(3) = 0 [pid 5887] symlink("/dev/binderfs", "./binderfs" [pid 5846] <... close resumed>) = 0 [pid 5887] <... symlink resumed>) = 0 executing program [pid 5887] write(1, "executing program\n", 18) = 18 [pid 5887] memfd_create("syzkaller", 0) = 3 [pid 5887] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5888 attached [pid 5888] set_robust_list(0x55558e440660, 24 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5888 [pid 5888] <... set_robust_list resumed>) = 0 [pid 5888] chdir("./4") = 0 [pid 5884] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5888] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5888] setpgid(0, 0) = 0 [pid 5888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5888] write(3, "1000", 4) = 4 [pid 5888] close(3) = 0 [pid 5888] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5888] write(1, "executing program\n", 18executing program ) = 18 [pid 5888] memfd_create("syzkaller", 0) = 3 [pid 5888] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5885] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5886] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5887] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5888] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5883] <... write resumed>) = 16777216 [pid 5883] munmap(0x7f101fc00000, 138412032) = 0 [pid 5883] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5883] ioctl(4, LOOP_SET_FD, 3 [pid 5884] <... write resumed>) = 16777216 [pid 5884] munmap(0x7f101fc00000, 138412032 [pid 5883] <... ioctl resumed>) = 0 [pid 5883] close(3) = 0 [pid 5883] close(4) = 0 [ 98.096737][ T5883] loop3: detected capacity change from 0 to 32768 [pid 5883] mkdir("./file1", 0777 [pid 5884] <... munmap resumed>) = 0 [pid 5883] <... mkdir resumed>) = 0 [pid 5883] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5884] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5883] <... mount resumed>) = 0 [pid 5884] ioctl(4, LOOP_SET_FD, 3 [pid 5883] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5883] chdir("./file1") = 0 [pid 5883] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5883] exit_group(0) = ? [pid 5883] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5883, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=26 /* 0.26 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5884] <... ioctl resumed>) = 0 [pid 5884] close(3) = 0 [pid 5884] close(4) = 0 [pid 5884] mkdir("./file1", 0777) = 0 [pid 5884] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5884] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5884] chdir("./file1") = 0 [pid 5884] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5884] exit_group(0) = ? [pid 5884] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5884, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=26 /* 0.26 s */} --- [ 98.181320][ T5884] loop1: detected capacity change from 0 to 32768 [pid 5845] <... umount2 resumed>) = 0 [pid 5885] <... write resumed>) = 16777216 [pid 5885] munmap(0x7f101fc00000, 138412032 [pid 5845] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] <... openat resumed>) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, [pid 5843] <... openat resumed>) = 3 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] newfstatat(3, "", [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./4/file1") = 0 [pid 5845] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5886] <... write resumed>) = 16777216 [pid 5845] unlink("./4/binderfs" [pid 5843] getdents64(3, [pid 5845] <... unlink resumed>) = 0 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5886] munmap(0x7f101fc00000, 138412032 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./4") = 0 [pid 5845] mkdir("./5", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3 [pid 5885] <... munmap resumed>) = 0 [pid 5845] <... close resumed>) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5885] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ./strace-static-x86_64: Process 5889 attached [pid 5885] ioctl(4, LOOP_SET_FD, 3 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5889 [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5889] set_robust_list(0x55558e440660, 24) = 0 [pid 5843] rmdir("./4/file1" [pid 5889] chdir("./5") = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5889] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5843] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./4/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3 [pid 5889] setpgid(0, 0 [pid 5843] <... close resumed>) = 0 [pid 5889] <... setpgid resumed>) = 0 [pid 5889] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5885] <... ioctl resumed>) = 0 [pid 5889] write(3, "1000", 4) = 4 [pid 5889] close(3) = 0 [pid 5889] symlink("/dev/binderfs", "./binderfs" [pid 5885] close(3 [pid 5889] <... symlink resumed>) = 0 [pid 5885] <... close resumed>) = 0 [pid 5889] write(1, "executing program\n", 18 [pid 5885] close(4) = 0 [pid 5843] rmdir("./4" [pid 5885] mkdir("./file1", 0777 [pid 5843] <... rmdir resumed>) = 0 [pid 5885] <... mkdir resumed>) = 0 executing program [pid 5886] <... munmap resumed>) = 0 [pid 5843] mkdir("./5", 0777) = 0 [pid 5889] <... write resumed>) = 18 [pid 5885] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5889] memfd_create("syzkaller", 0 [pid 5843] <... openat resumed>) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5886] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5843] <... ioctl resumed>) = 0 [pid 5886] <... openat resumed>) = 4 [pid 5843] close(3 [pid 5889] <... memfd_create resumed>) = 3 [pid 5843] <... close resumed>) = 0 [pid 5889] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5889] <... mmap resumed>) = 0x7f101fc00000 [pid 5885] <... mount resumed>) = 0 [pid 5885] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5890 attached [ 98.319545][ T5885] loop0: detected capacity change from 0 to 32768 [pid 5886] ioctl(4, LOOP_SET_FD, 3 [pid 5890] set_robust_list(0x55558e440660, 24 [pid 5885] <... openat resumed>) = 3 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5890 [pid 5885] chdir("./file1" [pid 5890] <... set_robust_list resumed>) = 0 [pid 5885] <... chdir resumed>) = 0 [pid 5885] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5890] chdir("./5") = 0 [pid 5885] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5890] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5890] setpgid(0, 0) = 0 [pid 5890] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5885] exit_group(0 [pid 5890] <... openat resumed>) = 3 [pid 5885] <... exit_group resumed>) = ? [pid 5890] write(3, "1000", 4) = 4 [pid 5890] close(3) = 0 [pid 5890] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5890] write(1, "executing program\n", 18 [pid 5886] <... ioctl resumed>) = 0 [pid 5890] <... write resumed>) = 18 [pid 5886] close(3 [pid 5890] memfd_create("syzkaller", 0 [pid 5886] <... close resumed>) = 0 [pid 5885] +++ exited with 0 +++ [pid 5890] <... memfd_create resumed>) = 3 [pid 5886] close(4 [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5885, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=25 /* 0.25 s */} --- [pid 5890] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5886] <... close resumed>) = 0 [pid 5890] <... mmap resumed>) = 0x7f101fc00000 [pid 5886] mkdir("./file1", 0777) = 0 [pid 5842] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5886] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5842] <... openat resumed>) = 3 [ 98.367126][ T5886] loop5: detected capacity change from 0 to 32768 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5886] <... mount resumed>) = 0 [pid 5886] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5886] chdir("./file1") = 0 [pid 5886] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5886] exit_group(0) = ? [pid 5886] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5886, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5842] <... umount2 resumed>) = 0 [pid 5847] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./3/file1", [pid 5847] <... openat resumed>) = 3 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] <... openat resumed>) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, [pid 5847] getdents64(3, [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./3/file1") = 0 [pid 5842] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./3/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./3") = 0 [pid 5842] mkdir("./4", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5891 attached , child_tidptr=0x55558e440650) = 5891 [pid 5891] set_robust_list(0x55558e440660, 24) = 0 [pid 5891] chdir("./4") = 0 [pid 5891] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5891] setpgid(0, 0) = 0 [pid 5891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5891] write(3, "1000", 4) = 4 [pid 5891] close(3) = 0 [pid 5891] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5891] write(1, "executing program\n", 18) = 18 [pid 5891] memfd_create("syzkaller", 0) = 3 [pid 5891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5887] <... write resumed>) = 16777216 [pid 5847] <... umount2 resumed>) = 0 [pid 5847] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, [pid 5887] munmap(0x7f101fc00000, 138412032 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./4/file1") = 0 [pid 5888] <... write resumed>) = 16777216 [pid 5847] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5887] <... munmap resumed>) = 0 [pid 5847] unlink("./4/binderfs" [pid 5888] munmap(0x7f101fc00000, 138412032 [pid 5847] <... unlink resumed>) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./4") = 0 [pid 5847] mkdir("./5", 0777) = 0 [pid 5888] <... munmap resumed>) = 0 [pid 5887] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5887] <... openat resumed>) = 4 [pid 5887] ioctl(4, LOOP_SET_FD, 3 [pid 5888] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3 [pid 5888] <... openat resumed>) = 4 [pid 5847] <... close resumed>) = 0 [pid 5888] ioctl(4, LOOP_SET_FD, 3 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5892 attached [pid 5888] <... ioctl resumed>) = 0 [pid 5887] <... ioctl resumed>) = 0 [pid 5892] set_robust_list(0x55558e440660, 24 [pid 5887] close(3 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5892 [pid 5887] <... close resumed>) = 0 [pid 5892] <... set_robust_list resumed>) = 0 [pid 5888] close(3 [pid 5887] close(4 [pid 5892] chdir("./5" [pid 5888] <... close resumed>) = 0 [pid 5887] <... close resumed>) = 0 [pid 5892] <... chdir resumed>) = 0 [pid 5887] mkdir("./file1", 0777 [pid 5888] close(4) = 0 [pid 5892] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5888] mkdir("./file1", 0777 [pid 5887] <... mkdir resumed>) = 0 [pid 5892] <... prctl resumed>) = 0 [ 98.715528][ T5887] loop2: detected capacity change from 0 to 32768 [ 98.743797][ T5888] loop4: detected capacity change from 0 to 32768 [pid 5892] setpgid(0, 0 [pid 5888] <... mkdir resumed>) = 0 [pid 5887] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5892] <... setpgid resumed>) = 0 [pid 5888] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5892] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5892] write(3, "1000", 4 [pid 5888] <... mount resumed>) = 0 [pid 5887] <... mount resumed>) = 0 [pid 5892] <... write resumed>) = 4 [pid 5888] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5887] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5892] close(3) = 0 [pid 5887] <... openat resumed>) = 3 [pid 5892] symlink("/dev/binderfs", "./binderfs" [pid 5888] <... openat resumed>) = 3 [pid 5887] chdir("./file1" [pid 5892] <... symlink resumed>) = 0 [pid 5888] chdir("./file1" [pid 5887] <... chdir resumed>) = 0 [pid 5888] <... chdir resumed>) = 0 [pid 5887] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5888] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5887] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5888] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5892] write(1, "executing program\n", 18 [pid 5888] exit_group(0 [pid 5887] exit_group(0executing program [pid 5892] <... write resumed>) = 18 [pid 5888] <... exit_group resumed>) = ? [pid 5887] <... exit_group resumed>) = ? [pid 5892] memfd_create("syzkaller", 0 [pid 5889] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5888] +++ exited with 0 +++ [pid 5887] +++ exited with 0 +++ [pid 5892] <... memfd_create resumed>) = 3 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5887, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=16 /* 0.16 s */} --- [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5888, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=24 /* 0.24 s */} --- [pid 5844] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5892] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... openat resumed>) = 3 [pid 5844] newfstatat(3, "", [pid 5892] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] <... openat resumed>) = 3 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] newfstatat(3, "", [pid 5844] getdents64(3, [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5890] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] getdents64(3, [pid 5844] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = 0 [pid 5844] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... umount2 resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./4/file1", [pid 5846] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5891] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] newfstatat(AT_FDCWD, "./4/file1", [pid 5844] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... openat resumed>) = 4 [pid 5846] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] newfstatat(4, "", [pid 5846] <... openat resumed>) = 4 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] newfstatat(4, "", [pid 5844] getdents64(4, [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, [pid 5846] getdents64(4, [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4 [pid 5846] close(4 [pid 5844] <... close resumed>) = 0 [pid 5844] rmdir("./4/file1" [pid 5846] <... close resumed>) = 0 [pid 5846] rmdir("./4/file1" [pid 5844] <... rmdir resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5844] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] newfstatat(AT_FDCWD, "./4/binderfs", [pid 5844] unlink("./4/binderfs" [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... unlink resumed>) = 0 [pid 5844] getdents64(3, [pid 5846] unlink("./4/binderfs" [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3 [pid 5846] <... unlink resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5844] rmdir("./4" [pid 5846] getdents64(3, [pid 5844] <... rmdir resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] mkdir("./5", 0777) = 0 [pid 5846] close(3) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5846] rmdir("./4" [pid 5844] <... openat resumed>) = 3 [pid 5846] <... rmdir resumed>) = 0 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] mkdir("./5", 0777 [pid 5844] close(3 [pid 5846] <... mkdir resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] <... openat resumed>) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5893 [pid 5846] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 5893 attached [pid 5846] close(3 [pid 5893] set_robust_list(0x55558e440660, 24) = 0 [pid 5893] chdir("./5") = 0 [pid 5893] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5893] setpgid(0, 0) = 0 [pid 5893] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5893] write(3, "1000", 4) = 4 [pid 5893] close(3) = 0 [pid 5893] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5893] write(1, "executing program\n", 18) = 18 [pid 5893] memfd_create("syzkaller", 0) = 3 [pid 5893] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5892] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5889] <... write resumed>) = 16777216 [pid 5889] munmap(0x7f101fc00000, 138412032 [pid 5846] <... close resumed>) = 0 [pid 5893] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5894 attached [pid 5894] set_robust_list(0x55558e440660, 24) = 0 [pid 5894] chdir("./5") = 0 [pid 5894] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5894 [pid 5894] <... prctl resumed>) = 0 [pid 5894] setpgid(0, 0) = 0 [pid 5894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5894] write(3, "1000", 4) = 4 [pid 5894] close(3) = 0 [pid 5890] <... write resumed>) = 16777216 [pid 5889] <... munmap resumed>) = 0 [pid 5889] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5894] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5889] <... openat resumed>) = 4 [pid 5894] write(1, "executing program\n", 18 [pid 5890] munmap(0x7f101fc00000, 138412032executing program [pid 5894] <... write resumed>) = 18 [pid 5889] ioctl(4, LOOP_SET_FD, 3 [pid 5894] memfd_create("syzkaller", 0 [pid 5889] <... ioctl resumed>) = 0 [pid 5894] <... memfd_create resumed>) = 3 [pid 5894] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5889] close(3) = 0 [pid 5889] close(4) = 0 [ 99.764600][ T5889] loop3: detected capacity change from 0 to 32768 [pid 5889] mkdir("./file1", 0777) = 0 [pid 5889] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5890] <... munmap resumed>) = 0 [pid 5890] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5890] ioctl(4, LOOP_SET_FD, 3 [pid 5889] <... mount resumed>) = 0 [pid 5889] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5889] chdir("./file1") = 0 [pid 5889] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5891] <... write resumed>) = 16777216 [pid 5889] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5889] exit_group(0) = ? [pid 5891] munmap(0x7f101fc00000, 138412032 [pid 5889] +++ exited with 0 +++ [pid 5890] <... ioctl resumed>) = 0 [pid 5890] close(3 [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5889, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=27 /* 0.27 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5890] <... close resumed>) = 0 [pid 5890] close(4 [pid 5891] <... munmap resumed>) = 0 [pid 5890] <... close resumed>) = 0 [pid 5845] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5890] mkdir("./file1", 0777) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5890] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 99.835020][ T5890] loop1: detected capacity change from 0 to 32768 [pid 5845] getdents64(3, [pid 5891] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5891] <... openat resumed>) = 4 [pid 5845] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5891] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5890] <... mount resumed>) = 0 [pid 5891] close(3 [pid 5890] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] <... umount2 resumed>) = 0 [pid 5890] <... openat resumed>) = 3 [pid 5891] <... close resumed>) = 0 [pid 5890] chdir("./file1" [pid 5845] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5891] close(4) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5890] <... chdir resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./5/file1", [pid 5890] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5891] mkdir("./file1", 0777 [pid 5890] exit_group(0 [pid 5845] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5891] <... mkdir resumed>) = 0 [pid 5890] <... exit_group resumed>) = ? [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5890] +++ exited with 0 +++ [pid 5845] newfstatat(4, "", [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5890, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=21 /* 0.21 s */} --- [ 99.906550][ T5891] loop0: detected capacity change from 0 to 32768 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5891] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5845] close(4) = 0 [pid 5843] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] rmdir("./5/file1" [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... rmdir resumed>) = 0 [pid 5843] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./5/binderfs", [pid 5843] <... openat resumed>) = 3 [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] newfstatat(3, "", [pid 5845] unlink("./5/binderfs" [pid 5891] <... mount resumed>) = 0 [pid 5845] <... unlink resumed>) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5891] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] getdents64(3, [pid 5843] getdents64(3, [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3 [pid 5891] <... openat resumed>) = 3 [pid 5845] <... close resumed>) = 0 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] rmdir("./5" [pid 5843] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... rmdir resumed>) = 0 [pid 5891] chdir("./file1" [pid 5845] mkdir("./6", 0777) = 0 [pid 5891] <... chdir resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5891] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5891] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... ioctl resumed>) = 0 [pid 5845] close(3) = 0 [pid 5891] exit_group(0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 5895 attached [pid 5891] <... exit_group resumed>) = ? [pid 5843] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5895 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5895] set_robust_list(0x55558e440660, 24 [pid 5891] +++ exited with 0 +++ [pid 5843] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5891, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=23 /* 0.23 s */} --- [pid 5842] restart_syscall(<... resuming interrupted clone ...> [pid 5895] <... set_robust_list resumed>) = 0 [pid 5843] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... restart_syscall resumed>) = 0 [pid 5895] chdir("./6" [pid 5843] <... openat resumed>) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, [pid 5842] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5895] <... chdir resumed>) = 0 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] getdents64(4, [pid 5842] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5895] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5842] <... openat resumed>) = 3 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] newfstatat(3, "", [pid 5843] close(4 [pid 5895] setpgid(0, 0) = 0 [pid 5895] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5895] write(3, "1000", 4) = 4 [pid 5895] close(3) = 0 [pid 5895] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5895] write(1, "executing program\n", 18) = 18 [pid 5895] memfd_create("syzkaller", 0) = 3 [pid 5895] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5843] <... close resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] rmdir("./5/file1" [pid 5842] getdents64(3, [pid 5843] <... rmdir resumed>) = 0 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./5/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./5") = 0 [pid 5843] mkdir("./6", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3 [pid 5892] <... write resumed>) = 16777216 [pid 5892] munmap(0x7f101fc00000, 138412032 [pid 5894] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./4/file1", [pid 5892] <... munmap resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5892] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5892] <... openat resumed>) = 4 [pid 5892] ioctl(4, LOOP_SET_FD, 3 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5892] <... ioctl resumed>) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4 [pid 5892] close(3 [pid 5842] <... close resumed>) = 0 [pid 5892] <... close resumed>) = 0 [pid 5842] rmdir("./4/file1" [pid 5892] close(4 [pid 5842] <... rmdir resumed>) = 0 [pid 5892] <... close resumed>) = 0 [pid 5842] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5892] mkdir("./file1", 0777 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5892] <... mkdir resumed>) = 0 [pid 5842] newfstatat(AT_FDCWD, "./4/binderfs", [pid 5892] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./4/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./4" [pid 5892] <... mount resumed>) = 0 [pid 5892] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5892] chdir("./file1") = 0 [ 100.271172][ T5892] loop5: detected capacity change from 0 to 32768 [pid 5892] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5892] exit_group(0) = ? [pid 5892] +++ exited with 0 +++ [pid 5842] <... rmdir resumed>) = 0 [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5892, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [pid 5842] mkdir("./5", 0777) = 0 [pid 5847] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5847] <... openat resumed>) = 3 [pid 5842] <... ioctl resumed>) = 0 [pid 5842] close(3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./5/file1") = 0 [pid 5847] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./5/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3 [pid 5893] <... write resumed>) = 16777216 [pid 5847] <... close resumed>) = 0 [pid 5847] rmdir("./5") = 0 [pid 5847] mkdir("./6", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5896 attached , child_tidptr=0x55558e440650) = 5896 [pid 5896] set_robust_list(0x55558e440660, 24) = 0 [pid 5896] chdir("./6") = 0 [pid 5896] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5896] setpgid(0, 0) = 0 [pid 5896] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5896] write(3, "1000", 4) = 4 [pid 5896] close(3) = 0 [pid 5896] symlink("/dev/binderfs", "./binderfs" [pid 5893] munmap(0x7f101fc00000, 138412032 [pid 5896] <... symlink resumed>) = 0 executing program [pid 5896] write(1, "executing program\n", 18) = 18 [pid 5896] memfd_create("syzkaller", 0) = 3 [pid 5896] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5895] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5893] <... munmap resumed>) = 0 [pid 5893] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5893] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5893] close(3) = 0 [pid 5893] close(4) = 0 [pid 5893] mkdir("./file1", 0777) = 0 [ 100.593512][ T5893] loop2: detected capacity change from 0 to 32768 [pid 5893] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] <... close resumed>) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5897 attached [pid 5897] set_robust_list(0x55558e440660, 24 [pid 5893] <... mount resumed>) = 0 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5897 [pid 5897] <... set_robust_list resumed>) = 0 [pid 5893] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5897] chdir("./6" [pid 5893] <... openat resumed>) = 3 [pid 5897] <... chdir resumed>) = 0 [pid 5897] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5893] chdir("./file1") = 0 [pid 5897] <... prctl resumed>) = 0 [pid 5893] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5897] setpgid(0, 0 [pid 5893] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5897] <... setpgid resumed>) = 0 [pid 5897] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5897] write(3, "1000", 4 [pid 5893] exit_group(0 [pid 5897] <... write resumed>) = 4 [pid 5893] <... exit_group resumed>) = ? [pid 5897] close(3) = 0 [pid 5893] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5893, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=27 /* 0.27 s */} --- [pid 5897] symlink("/dev/binderfs", "./binderfs" [pid 5844] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5897] <... symlink resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", executing program [pid 5897] write(1, "executing program\n", 18 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5897] <... write resumed>) = 18 [pid 5844] getdents64(3, [pid 5897] memfd_create("syzkaller", 0 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5897] <... memfd_create resumed>) = 3 [pid 5844] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5897] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5842] <... close resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5898 attached [pid 5896] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5844] <... umount2 resumed>) = 0 [pid 5898] set_robust_list(0x55558e440660, 24 [pid 5844] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5898 [pid 5898] <... set_robust_list resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5898] chdir("./5" [pid 5844] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5898] <... chdir resumed>) = 0 [pid 5844] <... openat resumed>) = 4 [pid 5898] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5844] newfstatat(4, "", [pid 5898] <... prctl resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5898] setpgid(0, 0 [pid 5844] getdents64(4, [pid 5898] <... setpgid resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, [pid 5894] <... write resumed>) = 16777216 [pid 5898] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5898] <... openat resumed>) = 3 [pid 5844] close(4 [pid 5894] munmap(0x7f101fc00000, 138412032 [pid 5898] write(3, "1000", 4 [pid 5844] <... close resumed>) = 0 [pid 5898] <... write resumed>) = 4 [pid 5844] rmdir("./5/file1" [pid 5898] close(3) = 0 [pid 5844] <... rmdir resumed>) = 0 [pid 5898] symlink("/dev/binderfs", "./binderfs" [pid 5844] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5898] <... symlink resumed>) = 0 [pid 5844] newfstatat(AT_FDCWD, "./5/binderfs", [pid 5898] write(1, "executing program\n", 18 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 executing program [pid 5844] unlink("./5/binderfs" [pid 5898] <... write resumed>) = 18 [pid 5844] <... unlink resumed>) = 0 [pid 5898] memfd_create("syzkaller", 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5898] <... memfd_create resumed>) = 3 [pid 5844] close(3 [pid 5898] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5844] <... close resumed>) = 0 [pid 5844] rmdir("./5") = 0 [pid 5844] mkdir("./6", 0777 [pid 5894] <... munmap resumed>) = 0 [pid 5844] <... mkdir resumed>) = 0 [pid 5894] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5894] <... openat resumed>) = 4 [pid 5844] <... openat resumed>) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5894] ioctl(4, LOOP_SET_FD, 3 [pid 5844] close(3 [pid 5894] <... ioctl resumed>) = 0 [pid 5894] close(3) = 0 [pid 5894] close(4) = 0 [pid 5894] mkdir("./file1", 0777) = 0 [ 101.022383][ T5894] loop4: detected capacity change from 0 to 32768 [pid 5894] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5895] <... write resumed>) = 16777216 [pid 5895] munmap(0x7f101fc00000, 138412032 [pid 5894] <... mount resumed>) = 0 [pid 5894] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5894] chdir("./file1") = 0 [pid 5897] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5894] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5895] <... munmap resumed>) = 0 [pid 5894] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5894] exit_group(0) = ? [pid 5894] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5894, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=23 /* 0.23 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5846] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5895] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5846] <... umount2 resumed>) = 0 [pid 5895] <... openat resumed>) = 4 [pid 5846] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5895] ioctl(4, LOOP_SET_FD, 3 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4) = 0 [pid 5846] rmdir("./5/file1") = 0 [pid 5846] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./5/binderfs") = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5846] rmdir("./5" [pid 5895] <... ioctl resumed>) = 0 [pid 5895] close(3 [pid 5846] <... rmdir resumed>) = 0 [pid 5895] <... close resumed>) = 0 [pid 5846] mkdir("./6", 0777) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5899 attached [pid 5895] close(4 [pid 5899] set_robust_list(0x55558e440660, 24 [pid 5895] <... close resumed>) = 0 [pid 5899] <... set_robust_list resumed>) = 0 [pid 5895] mkdir("./file1", 0777 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5899 [pid 5895] <... mkdir resumed>) = 0 [ 101.191638][ T5895] loop3: detected capacity change from 0 to 32768 [pid 5899] chdir("./6" [pid 5895] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5899] <... chdir resumed>) = 0 [pid 5899] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5899] setpgid(0, 0 [pid 5895] <... mount resumed>) = 0 [pid 5899] <... setpgid resumed>) = 0 [pid 5895] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5899] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5895] chdir("./file1" [pid 5899] <... openat resumed>) = 3 [pid 5895] <... chdir resumed>) = 0 [pid 5895] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5899] write(3, "1000", 4 [pid 5895] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5895] exit_group(0) = ? [pid 5895] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5895, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5899] <... write resumed>) = 4 [pid 5845] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5899] close(3 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5899] <... close resumed>) = 0 [pid 5845] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5899] symlink("/dev/binderfs", "./binderfs" [pid 5845] <... openat resumed>) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, [pid 5899] <... symlink resumed>) = 0 [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 executing program [pid 5899] write(1, "executing program\n", 18 [pid 5845] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5899] <... write resumed>) = 18 [pid 5899] memfd_create("syzkaller", 0) = 3 [pid 5845] <... umount2 resumed>) = 0 [pid 5899] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5898] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5845] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./6/file1") = 0 [pid 5845] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./6/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./6") = 0 [pid 5845] mkdir("./7", 0777) = 0 [pid 5844] <... close resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... openat resumed>) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5900 attached ) = 0 [pid 5845] close(3 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5900 [pid 5900] set_robust_list(0x55558e440660, 24 [pid 5845] <... close resumed>) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5901 attached [pid 5901] set_robust_list(0x55558e440660, 24) = 0 [pid 5901] chdir("./7" [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5901 [pid 5901] <... chdir resumed>) = 0 [pid 5901] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5901] setpgid(0, 0) = 0 [pid 5901] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5900] <... set_robust_list resumed>) = 0 [pid 5896] <... write resumed>) = 16777216 [pid 5901] <... openat resumed>) = 3 [pid 5900] chdir("./6" [pid 5901] write(3, "1000", 4 [pid 5900] <... chdir resumed>) = 0 [pid 5900] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5901] <... write resumed>) = 4 [pid 5901] close(3) = 0 [pid 5901] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5901] write(1, "executing program\n", 18 [pid 5900] <... prctl resumed>) = 0 [pid 5900] setpgid(0, 0 [pid 5896] munmap(0x7f101fc00000, 138412032 [pid 5900] <... setpgid resumed>) = 0 executing program [pid 5901] <... write resumed>) = 18 [pid 5900] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5901] memfd_create("syzkaller", 0 [pid 5900] <... openat resumed>) = 3 [pid 5901] <... memfd_create resumed>) = 3 [pid 5901] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5900] write(3, "1000", 4) = 4 [pid 5900] close(3) = 0 [pid 5900] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5900] write(1, "executing program\n", 18executing program ) = 18 [pid 5896] <... munmap resumed>) = 0 [pid 5900] memfd_create("syzkaller", 0 [pid 5896] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5900] <... memfd_create resumed>) = 3 [pid 5896] <... openat resumed>) = 4 [pid 5896] ioctl(4, LOOP_SET_FD, 3 [pid 5900] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [ 101.584224][ T5896] loop5: detected capacity change from 0 to 32768 [pid 5896] <... ioctl resumed>) = 0 [pid 5896] close(3) = 0 [pid 5896] close(4) = 0 [pid 5896] mkdir("./file1", 0777) = 0 [pid 5896] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5896] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5896] chdir("./file1") = 0 [pid 5896] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5896] exit_group(0) = ? [pid 5896] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5896, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=25 /* 0.25 s */} --- [pid 5847] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./6/file1") = 0 [pid 5847] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./6/binderfs", [pid 5899] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./6/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./6") = 0 [pid 5847] mkdir("./7", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5902 attached , child_tidptr=0x55558e440650) = 5902 [pid 5902] set_robust_list(0x55558e440660, 24) = 0 [pid 5902] chdir("./7") = 0 [pid 5902] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5897] <... write resumed>) = 16777216 [pid 5902] setpgid(0, 0 [pid 5897] munmap(0x7f101fc00000, 138412032 [pid 5902] <... setpgid resumed>) = 0 [pid 5902] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5902] write(3, "1000", 4) = 4 [pid 5902] close(3) = 0 [pid 5902] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5897] <... munmap resumed>) = 0 [pid 5902] write(1, "executing program\n", 18 [pid 5897] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5902] <... write resumed>) = 18 [pid 5902] memfd_create("syzkaller", 0 [pid 5897] <... openat resumed>) = 4 [pid 5902] <... memfd_create resumed>) = 3 [pid 5897] ioctl(4, LOOP_SET_FD, 3 [pid 5902] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5897] <... ioctl resumed>) = 0 [pid 5897] close(3 [pid 5902] <... mmap resumed>) = 0x7f101fc00000 [pid 5897] <... close resumed>) = 0 [pid 5897] close(4) = 0 [pid 5897] mkdir("./file1", 0777 [pid 5901] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5897] <... mkdir resumed>) = 0 [ 101.933748][ T5897] loop1: detected capacity change from 0 to 32768 [pid 5897] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5897] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5897] chdir("./file1") = 0 [pid 5897] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5897] exit_group(0) = ? [pid 5900] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5897] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5897, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=24 /* 0.24 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5898] <... write resumed>) = 16777216 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5843] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5898] munmap(0x7f101fc00000, 138412032 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5898] <... munmap resumed>) = 0 [pid 5898] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5898] ioctl(4, LOOP_SET_FD, 3 [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5898] <... ioctl resumed>) = 0 [pid 5843] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5898] close(3) = 0 [pid 5898] close(4) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5898] mkdir("./file1", 0777 [pid 5843] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5898] <... mkdir resumed>) = 0 [pid 5843] <... openat resumed>) = 4 [pid 5843] newfstatat(4, "", [pid 5898] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5898] <... mount resumed>) = 0 [pid 5898] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5898] chdir("./file1") = 0 [pid 5898] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [ 102.169854][ T5898] loop0: detected capacity change from 0 to 32768 [pid 5898] exit_group(0) = ? [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5898] +++ exited with 0 +++ [pid 5843] rmdir("./6/file1" [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5898, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=28 /* 0.28 s */} --- [pid 5843] <... rmdir resumed>) = 0 [pid 5843] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./6/binderfs", [pid 5842] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] <... openat resumed>) = 3 [pid 5843] unlink("./6/binderfs" [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... unlink resumed>) = 0 [pid 5843] getdents64(3, [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] close(3) = 0 [pid 5843] rmdir("./6") = 0 [pid 5843] mkdir("./7", 0777 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./5/file1", [pid 5843] <... mkdir resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5842] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... openat resumed>) = 3 [pid 5842] <... openat resumed>) = 4 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5842] newfstatat(4, "", [pid 5843] <... ioctl resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] close(3) = 0 [pid 5842] getdents64(4, [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 5903 attached [pid 5842] getdents64(4, [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5903 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5903] set_robust_list(0x55558e440660, 24 [pid 5842] close(4) = 0 [pid 5903] <... set_robust_list resumed>) = 0 [pid 5842] rmdir("./5/file1") = 0 [pid 5903] chdir("./7" [pid 5842] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5903] <... chdir resumed>) = 0 [pid 5842] unlink("./5/binderfs" [pid 5903] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5842] <... unlink resumed>) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5903] setpgid(0, 0 [pid 5842] close(3 [pid 5903] <... setpgid resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5842] rmdir("./5" [pid 5903] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] <... rmdir resumed>) = 0 [pid 5842] mkdir("./6", 0777 [pid 5903] <... openat resumed>) = 3 [pid 5903] write(3, "1000", 4 [pid 5842] <... mkdir resumed>) = 0 [pid 5903] <... write resumed>) = 4 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5903] close(3) = 0 [pid 5842] <... openat resumed>) = 3 [pid 5903] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5903] write(1, "executing program\n", 18executing program ) = 18 [pid 5842] <... ioctl resumed>) = 0 [pid 5903] memfd_create("syzkaller", 0 [pid 5842] close(3 [pid 5903] <... memfd_create resumed>) = 3 [pid 5842] <... close resumed>) = 0 [pid 5903] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5904 attached [pid 5903] <... mmap resumed>) = 0x7f101fc00000 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5904 [pid 5904] set_robust_list(0x55558e440660, 24) = 0 [pid 5904] chdir("./6") = 0 [pid 5904] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5904] setpgid(0, 0) = 0 [pid 5904] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5904] write(3, "1000", 4) = 4 [pid 5904] close(3) = 0 [pid 5902] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5904] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5904] write(1, "executing program\n", 18) = 18 [pid 5904] memfd_create("syzkaller", 0) = 3 [pid 5904] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5899] <... write resumed>) = 16777216 [pid 5899] munmap(0x7f101fc00000, 138412032) = 0 [pid 5899] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5899] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5899] close(3) = 0 [pid 5899] close(4) = 0 [pid 5899] mkdir("./file1", 0777) = 0 [ 102.694832][ T5899] loop4: detected capacity change from 0 to 32768 [pid 5899] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5899] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5899] chdir("./file1") = 0 [pid 5899] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5901] <... write resumed>) = 16777216 [pid 5899] exit_group(0 [pid 5901] munmap(0x7f101fc00000, 138412032 [pid 5899] <... exit_group resumed>) = ? [pid 5899] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5899, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=27 /* 0.27 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5901] <... munmap resumed>) = 0 [pid 5846] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5903] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, [pid 5900] <... write resumed>) = 16777216 [pid 5900] munmap(0x7f101fc00000, 138412032 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5901] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5900] <... munmap resumed>) = 0 [pid 5901] <... openat resumed>) = 4 [pid 5901] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5900] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5846] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5900] <... openat resumed>) = 4 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 102.973417][ T5901] loop3: detected capacity change from 0 to 32768 [pid 5904] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5901] close(3 [pid 5900] ioctl(4, LOOP_SET_FD, 3 [pid 5846] newfstatat(AT_FDCWD, "./6/file1", [pid 5901] <... close resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5901] close(4 [pid 5846] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5901] <... close resumed>) = 0 [pid 5901] mkdir("./file1", 0777 [pid 5846] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5901] <... mkdir resumed>) = 0 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5900] <... ioctl resumed>) = 0 [pid 5846] getdents64(4, [pid 5900] close(3) = 0 [pid 5900] close(4 [pid 5901] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5900] <... close resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4 [pid 5900] mkdir("./file1", 0777 [pid 5846] <... close resumed>) = 0 [pid 5900] <... mkdir resumed>) = 0 [pid 5846] rmdir("./6/file1") = 0 [pid 5900] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [ 103.044761][ T5900] loop2: detected capacity change from 0 to 32768 [pid 5846] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./6/binderfs") = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5900] <... mount resumed>) = 0 [pid 5846] close(3 [pid 5900] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] <... close resumed>) = 0 [pid 5900] <... openat resumed>) = 3 [pid 5846] rmdir("./6" [pid 5900] chdir("./file1") = 0 [pid 5900] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5846] <... rmdir resumed>) = 0 [pid 5846] mkdir("./7", 0777 [pid 5900] exit_group(0) = ? [pid 5900] +++ exited with 0 +++ [pid 5846] <... mkdir resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5900, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=22 /* 0.22 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5846] <... openat resumed>) = 3 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5901] <... mount resumed>) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5901] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] <... ioctl resumed>) = 0 [pid 5844] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5901] <... openat resumed>) = 3 [pid 5846] close(3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5901] chdir("./file1" [pid 5846] <... close resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5901] <... chdir resumed>) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] <... openat resumed>) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5901] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5905 attached [pid 5901] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5901] exit_group(0 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5905 [pid 5901] <... exit_group resumed>) = ? [pid 5901] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5901, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5905] set_robust_list(0x55558e440660, 24) = 0 [pid 5905] chdir("./7" [pid 5845] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = 0 [pid 5905] <... chdir resumed>) = 0 [pid 5905] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... openat resumed>) = 3 [pid 5844] newfstatat(AT_FDCWD, "./6/file1", [pid 5845] newfstatat(3, "", [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] getdents64(3, [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... openat resumed>) = 4 [pid 5905] <... prctl resumed>) = 0 [pid 5844] newfstatat(4, "", [pid 5905] setpgid(0, 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5844] rmdir("./6/file1") = 0 [pid 5844] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5905] <... setpgid resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./6/binderfs", [pid 5905] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./6/binderfs" [pid 5905] <... openat resumed>) = 3 [pid 5844] <... unlink resumed>) = 0 [pid 5844] getdents64(3, [pid 5905] write(3, "1000", 4 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [pid 5905] <... write resumed>) = 4 [pid 5844] rmdir("./6") = 0 [pid 5905] close(3 [pid 5844] mkdir("./7", 0777 [pid 5905] <... close resumed>) = 0 [pid 5905] symlink("/dev/binderfs", "./binderfs" [pid 5844] <... mkdir resumed>) = 0 [pid 5905] <... symlink resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5905] write(1, "executing program\n", 18 [pid 5844] <... openat resumed>) = 3 executing program [pid 5905] <... write resumed>) = 18 [pid 5845] <... umount2 resumed>) = 0 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3 [pid 5905] memfd_create("syzkaller", 0 [pid 5845] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] newfstatat(AT_FDCWD, "./7/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5906 ./strace-static-x86_64: Process 5906 attached [pid 5845] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5905] <... memfd_create resumed>) = 3 [pid 5906] set_robust_list(0x55558e440660, 24) = 0 [pid 5906] chdir("./7") = 0 [pid 5906] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5905] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5905] <... mmap resumed>) = 0x7f101fc00000 [pid 5845] <... openat resumed>) = 4 [pid 5906] <... prctl resumed>) = 0 [pid 5906] setpgid(0, 0) = 0 [pid 5906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5845] newfstatat(4, "", [pid 5906] write(3, "1000", 4) = 4 [pid 5906] close(3) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5906] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5906] write(1, "executing program\n", 18) = 18 [pid 5906] memfd_create("syzkaller", 0) = 3 [pid 5845] getdents64(4, [pid 5906] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./7/file1" [pid 5902] <... write resumed>) = 16777216 [pid 5845] <... rmdir resumed>) = 0 [pid 5845] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./7/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./7") = 0 [pid 5902] munmap(0x7f101fc00000, 138412032 [pid 5845] mkdir("./8", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5902] <... munmap resumed>) = 0 [pid 5845] close(3 [pid 5902] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5902] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5902] close(3) = 0 [pid 5902] close(4) = 0 [pid 5902] mkdir("./file1", 0777) = 0 [ 103.431963][ T5902] loop5: detected capacity change from 0 to 32768 [pid 5902] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5902] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5902] chdir("./file1") = 0 [pid 5902] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5902] exit_group(0) = ? [pid 5902] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5902, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=30 /* 0.30 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5847] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./7/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./7/file1") = 0 [pid 5847] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./7/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./7") = 0 [pid 5847] mkdir("./8", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5907 attached [pid 5907] set_robust_list(0x55558e440660, 24 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5907 [pid 5907] <... set_robust_list resumed>) = 0 [pid 5907] chdir("./8") = 0 [pid 5907] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5907] setpgid(0, 0) = 0 [pid 5907] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5907] write(3, "1000", 4) = 4 [pid 5907] close(3) = 0 [pid 5907] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5907] write(1, "executing program\n", 18) = 18 [pid 5907] memfd_create("syzkaller", 0) = 3 [pid 5907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5906] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5905] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5903] <... write resumed>) = 16777216 [pid 5903] munmap(0x7f101fc00000, 138412032) = 0 [pid 5903] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5904] <... write resumed>) = 16777216 [pid 5903] <... openat resumed>) = 4 [pid 5903] ioctl(4, LOOP_SET_FD, 3 [pid 5904] munmap(0x7f101fc00000, 138412032 [pid 5903] <... ioctl resumed>) = 0 [pid 5903] close(3) = 0 [pid 5903] close(4) = 0 [ 103.904534][ T5903] loop1: detected capacity change from 0 to 32768 [pid 5903] mkdir("./file1", 0777) = 0 [pid 5904] <... munmap resumed>) = 0 [pid 5903] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] <... close resumed>) = 0 [pid 5904] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5904] ioctl(4, LOOP_SET_FD, 3 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5908 attached [pid 5908] set_robust_list(0x55558e440660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5908 [pid 5903] <... mount resumed>) = 0 [pid 5908] <... set_robust_list resumed>) = 0 [pid 5903] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5908] chdir("./8" [pid 5903] <... openat resumed>) = 3 [pid 5908] <... chdir resumed>) = 0 [pid 5903] chdir("./file1") = 0 [pid 5903] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5908] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5903] exit_group(0 [pid 5908] <... prctl resumed>) = 0 [pid 5903] <... exit_group resumed>) = ? [pid 5903] +++ exited with 0 +++ [pid 5908] setpgid(0, 0 [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5903, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=23 /* 0.23 s */} --- [pid 5908] <... setpgid resumed>) = 0 [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5908] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5843] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, [pid 5908] write(3, "1000", 4 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5908] <... write resumed>) = 4 [pid 5908] close(3 [pid 5904] <... ioctl resumed>) = 0 [pid 5843] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5904] close(3) = 0 [pid 5908] <... close resumed>) = 0 [pid 5904] close(4) = 0 [pid 5904] mkdir("./file1", 0777) = 0 [pid 5908] symlink("/dev/binderfs", "./binderfs" [ 104.006361][ T5904] loop0: detected capacity change from 0 to 32768 [pid 5904] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity"executing program [pid 5908] <... symlink resumed>) = 0 [pid 5908] write(1, "executing program\n", 18) = 18 [pid 5908] memfd_create("syzkaller", 0) = 3 [pid 5843] <... umount2 resumed>) = 0 [pid 5908] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5904] <... mount resumed>) = 0 [pid 5843] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5904] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5904] <... openat resumed>) = 3 [pid 5843] newfstatat(AT_FDCWD, "./7/file1", [pid 5904] chdir("./file1" [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5904] <... chdir resumed>) = 0 [pid 5843] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5904] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5904] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5904] exit_group(0 [pid 5843] openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./7/file1" [pid 5904] <... exit_group resumed>) = ? [pid 5843] <... rmdir resumed>) = 0 [pid 5904] +++ exited with 0 +++ [pid 5843] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./7/binderfs", [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5904, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=24 /* 0.24 s */} --- [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] restart_syscall(<... resuming interrupted clone ...> [pid 5843] unlink("./7/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./7") = 0 [pid 5843] mkdir("./8", 0777) = 0 [pid 5842] <... restart_syscall resumed>) = 0 [pid 5842] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5842] getdents64(3, [pid 5843] <... openat resumed>) = 3 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5842] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... ioctl resumed>) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5909 attached [pid 5909] set_robust_list(0x55558e440660, 24) = 0 [pid 5909] chdir("./8" [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5909 [pid 5842] <... umount2 resumed>) = 0 [pid 5909] <... chdir resumed>) = 0 [pid 5909] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5909] <... prctl resumed>) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5909] setpgid(0, 0 [pid 5842] newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5909] <... setpgid resumed>) = 0 [pid 5909] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5909] write(3, "1000", 4executing program ) = 4 [pid 5909] close(3) = 0 [pid 5909] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5909] write(1, "executing program\n", 18) = 18 [pid 5842] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5909] memfd_create("syzkaller", 0 [pid 5842] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5909] <... memfd_create resumed>) = 3 [pid 5842] <... openat resumed>) = 4 [pid 5842] newfstatat(4, "", [pid 5909] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5909] <... mmap resumed>) = 0x7f101fc00000 [pid 5907] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./6/file1") = 0 [pid 5842] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./6/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./6") = 0 [pid 5842] mkdir("./7", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5910 attached [pid 5910] set_robust_list(0x55558e440660, 24 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5910 [pid 5910] <... set_robust_list resumed>) = 0 [pid 5910] chdir("./7") = 0 [pid 5910] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5910] setpgid(0, 0) = 0 [pid 5910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5910] write(3, "1000", 4) = 4 [pid 5910] close(3) = 0 [pid 5910] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5910] write(1, "executing program\n", 18executing program ) = 18 [pid 5910] memfd_create("syzkaller", 0) = 3 [pid 5910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5906] <... write resumed>) = 16777216 [pid 5905] <... write resumed>) = 16777216 [pid 5908] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5906] munmap(0x7f101fc00000, 138412032 [pid 5909] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5905] munmap(0x7f101fc00000, 138412032 [pid 5906] <... munmap resumed>) = 0 [pid 5905] <... munmap resumed>) = 0 [pid 5906] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5906] ioctl(4, LOOP_SET_FD, 3 [pid 5905] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5906] <... ioctl resumed>) = 0 [pid 5905] <... openat resumed>) = 4 [ 104.613704][ T5906] loop2: detected capacity change from 0 to 32768 [pid 5905] ioctl(4, LOOP_SET_FD, 3 [pid 5906] close(3) = 0 [pid 5906] close(4) = 0 [pid 5906] mkdir("./file1", 0777) = 0 [pid 5906] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5906] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5906] chdir("./file1") = 0 [pid 5906] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5905] <... ioctl resumed>) = 0 [pid 5906] <... openat resumed>) = -1 EBUSY (Device or resource busy) [ 104.659150][ T5905] loop4: detected capacity change from 0 to 32768 [pid 5906] exit_group(0) = ? [pid 5905] close(3 [pid 5906] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5906, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=27 /* 0.27 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5905] <... close resumed>) = 0 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5905] close(4 [pid 5844] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5905] <... close resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5905] mkdir("./file1", 0777) = 0 [pid 5844] <... openat resumed>) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5905] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5844] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5844] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5905] <... mount resumed>) = 0 [pid 5905] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5905] chdir("./file1" [pid 5844] newfstatat(AT_FDCWD, "./7/file1", [pid 5905] <... chdir resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5905] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5905] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5905] exit_group(0 [pid 5844] <... openat resumed>) = 4 [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, [pid 5905] <... exit_group resumed>) = ? [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, [pid 5905] +++ exited with 0 +++ [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5905, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=21 /* 0.21 s */} --- [pid 5844] <... close resumed>) = 0 [pid 5846] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] rmdir("./7/file1" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... rmdir resumed>) = 0 [pid 5846] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... openat resumed>) = 3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(3, "", [pid 5844] newfstatat(AT_FDCWD, "./7/binderfs", [pid 5907] <... write resumed>) = 16777216 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] getdents64(3, [pid 5844] unlink("./7/binderfs") = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5907] munmap(0x7f101fc00000, 138412032 [pid 5846] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [pid 5844] rmdir("./7") = 0 [pid 5844] mkdir("./8", 0777) = 0 [pid 5910] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] <... umount2 resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5846] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] <... openat resumed>) = 3 [pid 5846] newfstatat(AT_FDCWD, "./7/file1", [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... ioctl resumed>) = 0 [pid 5846] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] close(3 [pid 5846] openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5907] <... munmap resumed>) = 0 [pid 5846] getdents64(4, [pid 5907] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5907] <... openat resumed>) = 4 [pid 5846] getdents64(4, [pid 5907] ioctl(4, LOOP_SET_FD, 3 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5907] <... ioctl resumed>) = 0 [pid 5846] close(4) = 0 [pid 5846] rmdir("./7/file1") = 0 [pid 5846] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5907] close(3) = 0 [pid 5846] unlink("./7/binderfs" [pid 5907] close(4) = 0 [pid 5846] <... unlink resumed>) = 0 [pid 5907] mkdir("./file1", 0777) = 0 [pid 5907] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5846] rmdir("./7" [pid 5907] <... mount resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5907] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5846] mkdir("./8", 0777 [pid 5907] chdir("./file1") = 0 [pid 5907] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5846] <... mkdir resumed>) = 0 [pid 5907] exit_group(0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5907] <... exit_group resumed>) = ? [pid 5846] <... openat resumed>) = 3 [pid 5907] +++ exited with 0 +++ [ 105.003720][ T5907] loop5: detected capacity change from 0 to 32768 [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5907, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=24 /* 0.24 s */} --- [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3 [pid 5847] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./8/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./8/file1") = 0 [pid 5909] <... write resumed>) = 16777216 [pid 5847] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5909] munmap(0x7f101fc00000, 138412032 [pid 5847] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5908] <... write resumed>) = 16777216 [pid 5847] unlink("./8/binderfs" [pid 5908] munmap(0x7f101fc00000, 138412032 [pid 5847] <... unlink resumed>) = 0 [pid 5847] getdents64(3, [pid 5909] <... munmap resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3 [pid 5908] <... munmap resumed>) = 0 [pid 5847] <... close resumed>) = 0 [pid 5847] rmdir("./8") = 0 [pid 5847] mkdir("./9", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5908] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5909] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5847] ioctl(3, LOOP_CLR_FD [pid 5909] <... openat resumed>) = 4 [pid 5847] <... ioctl resumed>) = 0 [pid 5909] ioctl(4, LOOP_SET_FD, 3 [pid 5847] close(3 [pid 5908] <... openat resumed>) = 4 [pid 5908] ioctl(4, LOOP_SET_FD, 3 [pid 5909] <... ioctl resumed>) = 0 [pid 5909] close(3 [pid 5908] <... ioctl resumed>) = 0 [pid 5909] <... close resumed>) = 0 [pid 5909] close(4) = 0 [pid 5909] mkdir("./file1", 0777) = 0 [pid 5909] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5908] close(3) = 0 [pid 5908] close(4 [pid 5909] <... mount resumed>) = 0 [pid 5908] <... close resumed>) = 0 [pid 5909] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5908] mkdir("./file1", 0777 [pid 5909] <... openat resumed>) = 3 [pid 5909] chdir("./file1") = 0 [ 105.362016][ T5909] loop1: detected capacity change from 0 to 32768 [ 105.393386][ T5908] loop3: detected capacity change from 0 to 32768 [pid 5909] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5908] <... mkdir resumed>) = 0 [pid 5909] exit_group(0 [pid 5908] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5909] <... exit_group resumed>) = ? [pid 5909] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5909, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=22 /* 0.22 s */} --- [pid 5843] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5908] <... mount resumed>) = 0 [pid 5908] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5908] <... openat resumed>) = 3 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./8/file1", [pid 5908] chdir("./file1" [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5908] <... chdir resumed>) = 0 [pid 5843] openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5908] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5843] <... openat resumed>) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, [pid 5908] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./8/file1") = 0 [pid 5908] exit_group(0 [pid 5843] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5908] <... exit_group resumed>) = ? [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5908] +++ exited with 0 +++ [pid 5843] unlink("./8/binderfs" [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5908, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=27 /* 0.27 s */} --- [pid 5843] <... unlink resumed>) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5843] close(3) = 0 [pid 5843] rmdir("./8") = 0 [pid 5845] <... restart_syscall resumed>) = 0 [pid 5843] mkdir("./9", 0777 [pid 5845] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, [pid 5844] <... close resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5911 ./strace-static-x86_64: Process 5911 attached [pid 5911] set_robust_list(0x55558e440660, 24) = 0 [pid 5911] chdir("./8") = 0 [pid 5911] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5911] setpgid(0, 0) = 0 [pid 5911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] <... mkdir resumed>) = 0 [pid 5845] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5911] <... openat resumed>) = 3 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5912 ./strace-static-x86_64: Process 5912 attached [pid 5912] set_robust_list(0x55558e440660, 24 [pid 5911] write(3, "1000", 4 [pid 5845] <... umount2 resumed>) = 0 [pid 5845] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) executing program [pid 5912] <... set_robust_list resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./8/file1", [pid 5911] <... write resumed>) = 4 [pid 5911] close(3) = 0 [pid 5911] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5911] write(1, "executing program\n", 18) = 18 [pid 5911] memfd_create("syzkaller", 0) = 3 [pid 5911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5910] <... write resumed>) = 16777216 [pid 5912] chdir("./9" [pid 5910] munmap(0x7f101fc00000, 138412032 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5912] <... chdir resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5912] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5912] setpgid(0, 0 [pid 5845] <... openat resumed>) = 4 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5912] <... setpgid resumed>) = 0 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5913 ./strace-static-x86_64: Process 5913 attached [pid 5912] <... openat resumed>) = 3 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5912] write(3, "1000", 4 [pid 5845] close(4 [pid 5912] <... write resumed>) = 4 [pid 5845] <... close resumed>) = 0 [pid 5913] set_robust_list(0x55558e440660, 24) = 0 [pid 5912] close(3 [pid 5845] rmdir("./8/file1" [pid 5913] chdir("./8" [pid 5912] <... close resumed>) = 0 [pid 5910] <... munmap resumed>) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5913] <... chdir resumed>) = 0 executing program [pid 5912] symlink("/dev/binderfs", "./binderfs" [pid 5910] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5845] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5913] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5913] <... prctl resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./8/binderfs", [pid 5913] setpgid(0, 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5912] <... symlink resumed>) = 0 [pid 5845] unlink("./8/binderfs" [pid 5913] <... setpgid resumed>) = 0 [pid 5912] write(1, "executing program\n", 18 [pid 5910] <... openat resumed>) = 4 [pid 5913] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5912] <... write resumed>) = 18 [pid 5910] ioctl(4, LOOP_SET_FD, 3 [pid 5912] memfd_create("syzkaller", 0 [pid 5845] <... unlink resumed>) = 0 [pid 5913] <... openat resumed>) = 3 [pid 5912] <... memfd_create resumed>) = 3 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5912] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5913] write(3, "1000", 4) = 4 [pid 5912] <... mmap resumed>) = 0x7f101fc00000 [pid 5913] close(3) = 0 [pid 5910] <... ioctl resumed>) = 0 [pid 5913] symlink("/dev/binderfs", "./binderfs" [pid 5845] close(3executing program [pid 5913] <... symlink resumed>) = 0 [pid 5910] close(3 [pid 5845] <... close resumed>) = 0 [pid 5913] write(1, "executing program\n", 18 [pid 5910] <... close resumed>) = 0 [pid 5913] <... write resumed>) = 18 [pid 5910] close(4) = 0 [pid 5845] rmdir("./8" [pid 5913] memfd_create("syzkaller", 0 [pid 5910] mkdir("./file1", 0777 [pid 5845] <... rmdir resumed>) = 0 [ 105.620863][ T5910] loop0: detected capacity change from 0 to 32768 [pid 5845] mkdir("./9", 0777 [pid 5913] <... memfd_create resumed>) = 3 [pid 5910] <... mkdir resumed>) = 0 [pid 5845] <... mkdir resumed>) = 0 [pid 5913] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5910] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5913] <... mmap resumed>) = 0x7f101fc00000 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5914 ./strace-static-x86_64: Process 5914 attached [pid 5914] set_robust_list(0x55558e440660, 24 [pid 5910] <... mount resumed>) = 0 [pid 5914] <... set_robust_list resumed>) = 0 [pid 5910] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5914] chdir("./9" [pid 5910] <... openat resumed>) = 3 [pid 5910] chdir("./file1" [pid 5914] <... chdir resumed>) = 0 [pid 5910] <... chdir resumed>) = 0 [pid 5914] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5910] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5914] <... prctl resumed>) = 0 [pid 5914] setpgid(0, 0 [pid 5910] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5914] <... setpgid resumed>) = 0 [pid 5914] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5910] exit_group(0 [pid 5914] <... openat resumed>) = 3 [pid 5910] <... exit_group resumed>) = ? [pid 5914] write(3, "1000", 4) = 4 [pid 5914] close(3) = 0 [pid 5914] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5910] +++ exited with 0 +++ [pid 5914] write(1, "executing program\n", 18executing program [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5910, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=26 /* 0.26 s */} --- [pid 5914] <... write resumed>) = 18 [pid 5914] memfd_create("syzkaller", 0) = 3 [pid 5842] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5914] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5914] <... mmap resumed>) = 0x7f101fc00000 [pid 5842] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5842] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./7/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] <... close resumed>) = 0 [pid 5842] openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5915 ./strace-static-x86_64: Process 5915 attached [pid 5842] <... openat resumed>) = 4 [pid 5915] set_robust_list(0x55558e440660, 24) = 0 [pid 5915] chdir("./9") = 0 [pid 5915] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5915] setpgid(0, 0) = 0 [pid 5915] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] newfstatat(4, "", [pid 5915] <... openat resumed>) = 3 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, [pid 5915] write(3, "1000", 4 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5915] <... write resumed>) = 4 [pid 5842] close(4 [pid 5915] close(3) = 0 [pid 5915] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5842] <... close resumed>) = 0 [pid 5915] write(1, "executing program\n", 18 [pid 5842] rmdir("./7/file1" [pid 5915] <... write resumed>) = 18 [pid 5915] memfd_create("syzkaller", 0 [pid 5842] <... rmdir resumed>) = 0 [pid 5915] <... memfd_create resumed>) = 3 [pid 5915] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5842] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./7/binderfs") = 0 [pid 5911] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./7") = 0 [pid 5842] mkdir("./8", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5916 attached , child_tidptr=0x55558e440650) = 5916 [pid 5916] set_robust_list(0x55558e440660, 24) = 0 [pid 5916] chdir("./8") = 0 [pid 5916] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5916] setpgid(0, 0) = 0 [pid 5916] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5912] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5916] write(3, "1000", 4) = 4 [pid 5916] close(3) = 0 [pid 5916] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5916] write(1, "executing program\n", 18) = 18 [pid 5916] memfd_create("syzkaller", 0) = 3 [pid 5916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5913] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5914] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5915] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5916] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5911] <... write resumed>) = 16777216 [pid 5911] munmap(0x7f101fc00000, 138412032 [pid 5912] <... write resumed>) = 16777216 [pid 5911] <... munmap resumed>) = 0 [pid 5912] munmap(0x7f101fc00000, 138412032 [pid 5911] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5911] ioctl(4, LOOP_SET_FD, 3 [pid 5912] <... munmap resumed>) = 0 [pid 5911] <... ioctl resumed>) = 0 [ 106.693217][ T5911] loop2: detected capacity change from 0 to 32768 [pid 5913] <... write resumed>) = 16777216 [pid 5912] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5911] close(3 [pid 5912] <... openat resumed>) = 4 [pid 5911] <... close resumed>) = 0 [pid 5913] munmap(0x7f101fc00000, 138412032 [pid 5912] ioctl(4, LOOP_SET_FD, 3 [pid 5911] close(4) = 0 [pid 5911] mkdir("./file1", 0777) = 0 [pid 5911] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5911] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5914] <... write resumed>) = 16777216 [pid 5914] munmap(0x7f101fc00000, 138412032 [pid 5911] <... openat resumed>) = 3 [pid 5912] <... ioctl resumed>) = 0 [pid 5911] chdir("./file1") = 0 [pid 5912] close(3 [pid 5911] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5912] <... close resumed>) = 0 [pid 5912] close(4 [pid 5911] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5912] <... close resumed>) = 0 [pid 5912] mkdir("./file1", 0777 [pid 5911] exit_group(0) = ? [pid 5911] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5911, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=20 /* 0.20 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5912] <... mkdir resumed>) = 0 [pid 5912] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5913] <... munmap resumed>) = 0 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5844] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [ 106.746757][ T5912] loop1: detected capacity change from 0 to 32768 [pid 5844] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5913] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5913] ioctl(4, LOOP_SET_FD, 3 [pid 5912] <... mount resumed>) = 0 [pid 5912] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5914] <... munmap resumed>) = 0 [pid 5913] <... ioctl resumed>) = 0 [pid 5912] <... openat resumed>) = 3 [pid 5844] <... umount2 resumed>) = 0 [pid 5912] chdir("./file1" [pid 5844] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5914] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5913] close(3 [pid 5914] <... openat resumed>) = 4 [pid 5913] <... close resumed>) = 0 [pid 5912] <... chdir resumed>) = 0 [pid 5844] newfstatat(AT_FDCWD, "./8/file1", [pid 5914] ioctl(4, LOOP_SET_FD, 3 [pid 5913] close(4 [pid 5912] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5912] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5913] <... close resumed>) = 0 [pid 5912] exit_group(0 [pid 5844] openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5913] mkdir("./file1", 0777 [pid 5912] <... exit_group resumed>) = ? [pid 5844] <... openat resumed>) = 4 [pid 5844] newfstatat(4, "", [pid 5913] <... mkdir resumed>) = 0 [pid 5912] +++ exited with 0 +++ [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5912, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=21 /* 0.21 s */} --- [pid 5913] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5843] <... restart_syscall resumed>) = 0 [pid 5844] rmdir("./8/file1") = 0 [pid 5843] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5914] <... ioctl resumed>) = 0 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, [pid 5914] close(3 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5914] <... close resumed>) = 0 [pid 5843] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [ 106.809538][ T5913] loop4: detected capacity change from 0 to 32768 [ 106.849279][ T5914] loop3: detected capacity change from 0 to 32768 [pid 5914] close(4) = 0 [pid 5844] newfstatat(AT_FDCWD, "./8/binderfs", [pid 5914] mkdir("./file1", 0777) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./8/binderfs") = 0 [pid 5844] getdents64(3, [pid 5914] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5913] <... mount resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5913] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5844] close(3 [pid 5913] chdir("./file1") = 0 [pid 5913] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] <... close resumed>) = 0 [pid 5913] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5913] exit_group(0 [pid 5844] rmdir("./8" [pid 5913] <... exit_group resumed>) = ? [pid 5913] +++ exited with 0 +++ [pid 5844] <... rmdir resumed>) = 0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5913, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} --- [pid 5844] mkdir("./9", 0777) = 0 [pid 5846] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5914] <... mount resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5914] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5846] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... openat resumed>) = 3 [pid 5914] chdir("./file1") = 0 [pid 5846] <... openat resumed>) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5914] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5846] newfstatat(3, "", [pid 5914] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] <... ioctl resumed>) = 0 [pid 5843] <... umount2 resumed>) = 0 [pid 5914] exit_group(0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5914] <... exit_group resumed>) = ? [pid 5846] getdents64(3, [pid 5844] close(3 [pid 5843] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5915] <... write resumed>) = 16777216 [pid 5914] +++ exited with 0 +++ [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] <... close resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5914, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=28 /* 0.28 s */} --- [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] newfstatat(AT_FDCWD, "./9/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5917 [pid 5843] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5917 attached [pid 5917] set_robust_list(0x55558e440660, 24) = 0 [pid 5917] chdir("./9" [pid 5843] <... openat resumed>) = 4 [pid 5917] <... chdir resumed>) = 0 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5917] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5915] munmap(0x7f101fc00000, 138412032 [pid 5843] getdents64(4, [pid 5917] <... prctl resumed>) = 0 [pid 5917] setpgid(0, 0 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5917] <... setpgid resumed>) = 0 [pid 5845] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] getdents64(4, [pid 5917] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5917] <... openat resumed>) = 3 [pid 5845] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] close(4 [pid 5917] write(3, "1000", 4 [pid 5845] <... openat resumed>) = 3 [pid 5843] <... close resumed>) = 0 [pid 5917] <... write resumed>) = 4 [pid 5845] newfstatat(3, "", [pid 5843] rmdir("./9/file1" [pid 5917] close(3 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5845] getdents64(3, [pid 5843] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... umount2 resumed>) = 0 [pid 5845] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] newfstatat(AT_FDCWD, "./9/binderfs", [pid 5917] <... close resumed>) = 0 [pid 5846] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 executing program [pid 5917] symlink("/dev/binderfs", "./binderfs" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] unlink("./9/binderfs" [pid 5917] <... symlink resumed>) = 0 [pid 5917] write(1, "executing program\n", 18) = 18 [pid 5917] memfd_create("syzkaller", 0 [pid 5843] <... unlink resumed>) = 0 [pid 5846] newfstatat(AT_FDCWD, "./8/file1", [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5917] <... memfd_create resumed>) = 3 [pid 5843] close(3 [pid 5917] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5846] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... close resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] rmdir("./9" [pid 5846] openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] <... umount2 resumed>) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5845] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] newfstatat(4, "", [pid 5843] mkdir("./10", 0777 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... mkdir resumed>) = 0 [pid 5846] getdents64(4, [pid 5845] newfstatat(AT_FDCWD, "./9/file1", [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5846] getdents64(4, [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... ioctl resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(3 [pid 5846] close(4) = 0 [pid 5845] openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... close resumed>) = 0 [pid 5846] rmdir("./8/file1" [pid 5845] <... openat resumed>) = 4 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] newfstatat(4, "", [pid 5846] <... rmdir resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5918 ./strace-static-x86_64: Process 5918 attached [pid 5845] getdents64(4, [pid 5846] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5918] set_robust_list(0x55558e440660, 24 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./9/file1" [pid 5915] <... munmap resumed>) = 0 [pid 5846] newfstatat(AT_FDCWD, "./8/binderfs", [pid 5845] <... rmdir resumed>) = 0 [pid 5845] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5918] <... set_robust_list resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5918] chdir("./10" [pid 5915] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5846] unlink("./8/binderfs" [pid 5845] newfstatat(AT_FDCWD, "./9/binderfs", [pid 5918] <... chdir resumed>) = 0 [pid 5918] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5915] <... openat resumed>) = 4 [pid 5846] <... unlink resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./9/binderfs") = 0 [pid 5918] <... prctl resumed>) = 0 [pid 5915] ioctl(4, LOOP_SET_FD, 3 [pid 5846] getdents64(3, [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./9") = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] mkdir("./10", 0777 [pid 5918] setpgid(0, 0 [pid 5846] close(3 [pid 5845] <... mkdir resumed>) = 0 [pid 5918] <... setpgid resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5918] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] rmdir("./8" [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5918] <... openat resumed>) = 3 [pid 5846] <... rmdir resumed>) = 0 [pid 5845] <... openat resumed>) = 3 [pid 5918] write(3, "1000", 4 [pid 5846] mkdir("./9", 0777 [pid 5918] <... write resumed>) = 4 [pid 5918] close(3 [pid 5846] <... mkdir resumed>) = 0 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5918] <... close resumed>) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5918] symlink("/dev/binderfs", "./binderfs") = 0 ./strace-static-x86_64: Process 5919 attached [pid 5919] set_robust_list(0x55558e440660, 24) = 0 [pid 5919] chdir("./10") = 0 [pid 5919] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5919] setpgid(0, 0executing program ) = 0 [pid 5919] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5918] write(1, "executing program\n", 18 [pid 5915] <... ioctl resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5918] <... write resumed>) = 18 [pid 5915] close(3 [pid 5846] <... openat resumed>) = 3 [pid 5919] <... openat resumed>) = 3 [pid 5918] memfd_create("syzkaller", 0 [pid 5915] <... close resumed>) = 0 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5919 [pid 5919] write(3, "1000", 4) = 4 [pid 5915] close(4 [pid 5919] close(3 [pid 5918] <... memfd_create resumed>) = 3 [pid 5915] <... close resumed>) = 0 [pid 5915] mkdir("./file1", 0777 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5919] <... close resumed>) = 0 [ 107.035618][ T5915] loop5: detected capacity change from 0 to 32768 [pid 5919] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5918] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5915] <... mkdir resumed>) = 0 [pid 5846] <... ioctl resumed>) = 0 [pid 5919] write(1, "executing program\n", 18 [pid 5918] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] close(3 [pid 5915] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity"executing program [pid 5919] <... write resumed>) = 18 [pid 5915] <... mount resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5915] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5920 attached ) = 3 [pid 5915] chdir("./file1" [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5920 [pid 5920] set_robust_list(0x55558e440660, 24 [pid 5915] <... chdir resumed>) = 0 [pid 5915] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5920] <... set_robust_list resumed>) = 0 [pid 5920] chdir("./9" [pid 5919] memfd_create("syzkaller", 0 [pid 5915] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5919] <... memfd_create resumed>) = 3 [pid 5919] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5920] <... chdir resumed>) = 0 [pid 5915] exit_group(0 [pid 5920] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5915] <... exit_group resumed>) = ? [pid 5920] <... prctl resumed>) = 0 [pid 5920] setpgid(0, 0) = 0 [pid 5915] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5915, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=29 /* 0.29 s */} --- [pid 5920] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5920] <... openat resumed>) = 3 [pid 5920] write(3, "1000", 4 [pid 5916] <... write resumed>) = 16777216 [pid 5847] <... restart_syscall resumed>) = 0 [pid 5920] <... write resumed>) = 4 [pid 5916] munmap(0x7f101fc00000, 138412032 [pid 5847] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5920] close(3) = 0 [pid 5916] <... munmap resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5920] symlink("/dev/binderfs", "./binderfs" [pid 5847] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5920] <... symlink resumed>) = 0 executing program [pid 5920] write(1, "executing program\n", 18 [pid 5847] <... openat resumed>) = 3 [pid 5920] <... write resumed>) = 18 [pid 5847] newfstatat(3, "", [pid 5920] memfd_create("syzkaller", 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5920] <... memfd_create resumed>) = 3 [pid 5847] getdents64(3, [pid 5920] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5920] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5916] ioctl(4, LOOP_SET_FD, 3 [pid 5847] <... umount2 resumed>) = 0 [pid 5847] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5916] <... ioctl resumed>) = 0 [pid 5847] newfstatat(AT_FDCWD, "./9/file1", [pid 5916] close(3 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 107.228515][ T5916] loop0: detected capacity change from 0 to 32768 [pid 5847] openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5916] <... close resumed>) = 0 [pid 5847] <... openat resumed>) = 4 [pid 5847] newfstatat(4, "", [pid 5916] close(4 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5916] <... close resumed>) = 0 [pid 5847] getdents64(4, [pid 5916] mkdir("./file1", 0777 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5916] <... mkdir resumed>) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4 [pid 5916] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5847] <... close resumed>) = 0 [pid 5847] rmdir("./9/file1") = 0 [pid 5847] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5916] <... mount resumed>) = 0 [pid 5916] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5916] chdir("./file1") = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5916] exit_group(0) = ? [pid 5847] unlink("./9/binderfs") = 0 [pid 5916] +++ exited with 0 +++ [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5916, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=25 /* 0.25 s */} --- [pid 5847] getdents64(3, [pid 5842] restart_syscall(<... resuming interrupted clone ...> [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5842] <... restart_syscall resumed>) = 0 [pid 5842] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] rmdir("./9") = 0 [pid 5847] mkdir("./10", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./8/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./8/file1") = 0 [pid 5842] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./8/binderfs", [pid 5847] <... ioctl resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] close(3) = 0 [pid 5842] unlink("./8/binderfs" [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... unlink resumed>) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./8") = 0 [pid 5842] mkdir("./9", 0777./strace-static-x86_64: Process 5921 attached [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5921 [pid 5842] <... mkdir resumed>) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5921] set_robust_list(0x55558e440660, 24 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5921] <... set_robust_list resumed>) = 0 [pid 5921] chdir("./10") = 0 [pid 5921] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5921] setpgid(0, 0 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5922 ./strace-static-x86_64: Process 5922 attached [pid 5922] set_robust_list(0x55558e440660, 24 [pid 5921] <... setpgid resumed>) = 0 [pid 5922] <... set_robust_list resumed>) = 0 [pid 5921] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5922] chdir("./9") = 0 [pid 5921] <... openat resumed>) = 3 [pid 5922] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5921] write(3, "1000", 4 [pid 5922] setpgid(0, 0) = 0 [pid 5921] <... write resumed>) = 4 [pid 5922] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5921] close(3 [pid 5922] <... openat resumed>) = 3 [pid 5921] <... close resumed>) = 0 [pid 5922] write(3, "1000", 4 [pid 5921] symlink("/dev/binderfs", "./binderfs" [pid 5922] <... write resumed>) = 4 [pid 5921] <... symlink resumed>) = 0 [pid 5922] close(3 [pid 5921] write(1, "executing program\n", 18 [pid 5922] <... close resumed>) = 0 executing program [pid 5922] symlink("/dev/binderfs", "./binderfs" [pid 5921] <... write resumed>) = 18 [pid 5922] <... symlink resumed>) = 0 executing program [pid 5922] write(1, "executing program\n", 18) = 18 [pid 5922] memfd_create("syzkaller", 0) = 3 [pid 5922] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5921] memfd_create("syzkaller", 0) = 3 [pid 5921] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5917] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5918] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5919] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5920] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5921] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5922] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5917] <... write resumed>) = 16777216 [pid 5918] <... write resumed>) = 16777216 [pid 5918] munmap(0x7f101fc00000, 138412032 [pid 5917] munmap(0x7f101fc00000, 138412032 [pid 5919] <... write resumed>) = 16777216 [pid 5917] <... munmap resumed>) = 0 [pid 5918] <... munmap resumed>) = 0 [pid 5918] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5919] munmap(0x7f101fc00000, 138412032 [pid 5918] <... openat resumed>) = 4 [pid 5918] ioctl(4, LOOP_SET_FD, 3 [pid 5917] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5917] ioctl(4, LOOP_SET_FD, 3 [pid 5918] <... ioctl resumed>) = 0 [pid 5918] close(3) = 0 [pid 5919] <... munmap resumed>) = 0 [pid 5918] close(4) = 0 [pid 5917] <... ioctl resumed>) = 0 [pid 5918] mkdir("./file1", 0777 [pid 5917] close(3 [pid 5918] <... mkdir resumed>) = 0 [pid 5917] <... close resumed>) = 0 [ 108.502762][ T5918] loop1: detected capacity change from 0 to 32768 [ 108.513608][ T5917] loop2: detected capacity change from 0 to 32768 [pid 5917] close(4 [pid 5920] <... write resumed>) = 16777216 [pid 5917] <... close resumed>) = 0 [pid 5917] mkdir("./file1", 0777 [pid 5918] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5917] <... mkdir resumed>) = 0 [pid 5920] munmap(0x7f101fc00000, 138412032 [pid 5917] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5918] <... mount resumed>) = 0 [pid 5917] <... mount resumed>) = 0 [pid 5917] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5918] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5918] chdir("./file1") = 0 [pid 5918] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5918] exit_group(0) = ? [pid 5918] +++ exited with 0 +++ [pid 5917] <... openat resumed>) = 3 [pid 5919] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5918, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=19 /* 0.19 s */} --- [pid 5919] <... openat resumed>) = 4 [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5919] ioctl(4, LOOP_SET_FD, 3 [pid 5917] chdir("./file1" [pid 5843] <... restart_syscall resumed>) = 0 [pid 5917] <... chdir resumed>) = 0 [pid 5917] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5917] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5843] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5917] exit_group(0 [pid 5843] newfstatat(3, "", [pid 5917] <... exit_group resumed>) = ? [pid 5919] <... ioctl resumed>) = 0 [pid 5917] +++ exited with 0 +++ [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5917, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} --- [pid 5843] getdents64(3, [pid 5844] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5919] close(3) = 0 [pid 5844] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5919] close(4) = 0 [pid 5919] mkdir("./file1", 0777) = 0 [pid 5844] <... openat resumed>) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5919] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5919] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5919] chdir("./file1") = 0 [pid 5919] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5919] exit_group(0) = ? [pid 5919] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5919, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=27 /* 0.27 s */} --- [pid 5845] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5920] <... munmap resumed>) = 0 [ 108.600353][ T5919] loop3: detected capacity change from 0 to 32768 [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./10/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5920] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5843] openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5920] <... openat resumed>) = 4 [pid 5920] ioctl(4, LOOP_SET_FD, 3 [pid 5843] <... openat resumed>) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./10/file1" [pid 5920] <... ioctl resumed>) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5920] close(3 [pid 5843] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5920] <... close resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./10/binderfs") = 0 [pid 5920] close(4 [pid 5844] <... umount2 resumed>) = 0 [pid 5843] getdents64(3, [pid 5844] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5920] <... close resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] close(3) = 0 [pid 5920] mkdir("./file1", 0777 [pid 5844] newfstatat(AT_FDCWD, "./9/file1", [pid 5843] rmdir("./10" [pid 5920] <... mkdir resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5844] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] <... umount2 resumed>) = 0 [pid 5844] <... openat resumed>) = 4 [pid 5844] newfstatat(4, "", [pid 5920] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] mkdir("./11", 0777 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./10/file1", [pid 5844] getdents64(4, [pid 5843] <... mkdir resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4 [pid 5845] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] <... close resumed>) = 0 [pid 5845] openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 108.674052][ T5920] loop4: detected capacity change from 0 to 32768 [pid 5844] rmdir("./9/file1" [pid 5845] <... openat resumed>) = 4 [pid 5844] <... rmdir resumed>) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5844] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./9/binderfs") = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [pid 5844] rmdir("./9" [pid 5922] <... write resumed>) = 16777216 [pid 5844] <... rmdir resumed>) = 0 [pid 5844] mkdir("./10", 0777 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... mkdir resumed>) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5922] munmap(0x7f101fc00000, 138412032 [pid 5845] getdents64(4, [pid 5844] <... openat resumed>) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] <... ioctl resumed>) = 0 [pid 5843] close(3 [pid 5845] getdents64(4, [pid 5843] <... close resumed>) = 0 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5923 attached [pid 5920] <... mount resumed>) = 0 [pid 5845] close(4 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3) = 0 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5923 [pid 5921] <... write resumed>) = 16777216 [pid 5920] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] <... close resumed>) = 0 [pid 5921] munmap(0x7f101fc00000, 138412032 [pid 5923] set_robust_list(0x55558e440660, 24 [pid 5920] <... openat resumed>) = 3 [pid 5845] rmdir("./10/file1" [pid 5923] <... set_robust_list resumed>) = 0 [pid 5920] chdir("./file1") = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5923] chdir("./11" [pid 5920] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5845] <... rmdir resumed>) = 0 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5924 [pid 5923] <... chdir resumed>) = 0 [pid 5920] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5923] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5920] exit_group(0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5924 attached [pid 5923] setpgid(0, 0 [pid 5920] <... exit_group resumed>) = ? [pid 5845] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5923] <... setpgid resumed>) = 0 [pid 5920] +++ exited with 0 +++ [pid 5845] unlink("./10/binderfs" [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5920, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=26 /* 0.26 s */} --- [pid 5845] <... unlink resumed>) = 0 [pid 5923] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] getdents64(3, [pid 5846] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3 [pid 5846] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5924] set_robust_list(0x55558e440660, 24 [pid 5846] newfstatat(3, "", [pid 5924] <... set_robust_list resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5924] chdir("./10" [pid 5846] getdents64(3, [pid 5924] <... chdir resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5924] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5924] <... prctl resumed>) = 0 [pid 5924] setpgid(0, 0) = 0 [pid 5845] <... close resumed>) = 0 [pid 5924] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5923] <... openat resumed>) = 3 [pid 5845] rmdir("./10" [pid 5923] write(3, "1000", 4) = 4 [pid 5845] <... rmdir resumed>) = 0 [pid 5924] <... openat resumed>) = 3 [pid 5923] close(3) = 0 [pid 5923] symlink("/dev/binderfs", "./binderfs"executing program executing program [pid 5924] write(3, "1000", 4 [pid 5923] <... symlink resumed>) = 0 [pid 5924] <... write resumed>) = 4 [pid 5924] close(3) = 0 [pid 5924] symlink("/dev/binderfs", "./binderfs" [pid 5923] write(1, "executing program\n", 18 [pid 5924] <... symlink resumed>) = 0 [pid 5923] <... write resumed>) = 18 [pid 5924] write(1, "executing program\n", 18) = 18 [pid 5924] memfd_create("syzkaller", 0 [pid 5923] memfd_create("syzkaller", 0 [pid 5924] <... memfd_create resumed>) = 3 [pid 5923] <... memfd_create resumed>) = 3 [pid 5922] <... munmap resumed>) = 0 [pid 5924] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5923] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5845] mkdir("./11", 0777 [pid 5924] <... mmap resumed>) = 0x7f101fc00000 [pid 5923] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... mkdir resumed>) = 0 [pid 5921] <... munmap resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5846] newfstatat(AT_FDCWD, "./9/file1", [pid 5845] <... openat resumed>) = 3 [pid 5921] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5921] ioctl(4, LOOP_SET_FD, 3 [pid 5922] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5846] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... ioctl resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] close(3 [pid 5922] <... openat resumed>) = 4 [pid 5846] openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] <... close resumed>) = 0 [pid 5922] ioctl(4, LOOP_SET_FD, 3 [pid 5846] <... openat resumed>) = 4 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5925 attached [pid 5922] <... ioctl resumed>) = 0 [pid 5846] newfstatat(4, "", [pid 5921] <... ioctl resumed>) = 0 [pid 5925] set_robust_list(0x55558e440660, 24 [pid 5921] close(3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5925 [pid 5925] <... set_robust_list resumed>) = 0 [pid 5922] close(3 [pid 5921] <... close resumed>) = 0 [pid 5846] getdents64(4, [pid 5925] chdir("./11" [pid 5922] <... close resumed>) = 0 [pid 5921] close(4 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5922] close(4 [pid 5921] <... close resumed>) = 0 [pid 5846] getdents64(4, [pid 5922] <... close resumed>) = 0 [pid 5921] mkdir("./file1", 0777 [pid 5925] <... chdir resumed>) = 0 [pid 5922] mkdir("./file1", 0777 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5921] <... mkdir resumed>) = 0 [pid 5846] close(4 [pid 5922] <... mkdir resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5921] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] rmdir("./9/file1" [pid 5925] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5922] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5925] <... prctl resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5925] setpgid(0, 0 [pid 5846] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5925] <... setpgid resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5925] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] newfstatat(AT_FDCWD, "./9/binderfs", [pid 5925] <... openat resumed>) = 3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5925] write(3, "1000", 4 [pid 5846] unlink("./9/binderfs" [pid 5925] <... write resumed>) = 4 [pid 5925] close(3 [pid 5846] <... unlink resumed>) = 0 [pid 5925] <... close resumed>) = 0 [ 108.851457][ T5921] loop5: detected capacity change from 0 to 32768 [ 108.882207][ T5922] loop0: detected capacity change from 0 to 32768 [pid 5846] getdents64(3, [pid 5925] symlink("/dev/binderfs", "./binderfs" [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 executing program [pid 5925] <... symlink resumed>) = 0 [pid 5846] close(3 [pid 5925] write(1, "executing program\n", 18 [pid 5846] <... close resumed>) = 0 [pid 5846] rmdir("./9" [pid 5925] <... write resumed>) = 18 [pid 5922] <... mount resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5925] memfd_create("syzkaller", 0 [pid 5846] mkdir("./10", 0777 [pid 5925] <... memfd_create resumed>) = 3 [pid 5922] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] <... mkdir resumed>) = 0 [pid 5922] <... openat resumed>) = 3 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5925] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5922] chdir("./file1" [pid 5846] <... openat resumed>) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5922] <... chdir resumed>) = 0 [pid 5922] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5846] <... ioctl resumed>) = 0 [pid 5922] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5846] close(3 [pid 5922] exit_group(0 [pid 5921] <... mount resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5921] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5926 attached [pid 5922] <... exit_group resumed>) = ? [pid 5926] set_robust_list(0x55558e440660, 24 [pid 5922] +++ exited with 0 +++ [pid 5921] chdir("./file1" [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5926 [pid 5926] <... set_robust_list resumed>) = 0 [pid 5921] <... chdir resumed>) = 0 [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5922, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=27 /* 0.27 s */} --- [pid 5921] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5926] chdir("./10" [pid 5921] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5842] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5921] exit_group(0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5921] <... exit_group resumed>) = ? [pid 5842] <... openat resumed>) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5921] +++ exited with 0 +++ [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5926] <... chdir resumed>) = 0 [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5921, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=21 /* 0.21 s */} --- [pid 5842] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5847] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5926] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5926] <... prctl resumed>) = 0 [pid 5926] setpgid(0, 0 [pid 5847] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5926] <... setpgid resumed>) = 0 [pid 5847] <... openat resumed>) = 3 [pid 5847] newfstatat(3, "", [pid 5926] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, [pid 5926] <... openat resumed>) = 3 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5926] write(3, "1000", 4) = 4 [pid 5926] close(3) = 0 [pid 5926] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5847] <... umount2 resumed>) = 0 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./10/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] newfstatat(AT_FDCWD, "./9/file1", executing program [pid 5926] write(1, "executing program\n", 18 [pid 5847] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5926] <... write resumed>) = 18 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5926] memfd_create("syzkaller", 0 [pid 5847] <... openat resumed>) = 4 [pid 5842] <... openat resumed>) = 4 [pid 5842] newfstatat(4, "", [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, [pid 5842] getdents64(4, [pid 5847] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5926] <... memfd_create resumed>) = 3 [pid 5847] close(4 [pid 5842] getdents64(4, [pid 5847] <... close resumed>) = 0 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5926] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] rmdir("./10/file1" [pid 5842] close(4 [pid 5926] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] <... rmdir resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5847] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] rmdir("./9/file1" [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] <... rmdir resumed>) = 0 [pid 5842] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./10/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] close(3) = 0 [pid 5847] rmdir("./10") = 0 [pid 5842] newfstatat(AT_FDCWD, "./9/binderfs", [pid 5847] mkdir("./11", 0777) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] unlink("./9/binderfs"./strace-static-x86_64: Process 5927 attached ) = 0 [pid 5842] getdents64(3, [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5927 [pid 5927] set_robust_list(0x55558e440660, 24) = 0 [pid 5927] chdir("./11" [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3 [pid 5927] <... chdir resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5927] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] rmdir("./9" [pid 5927] <... prctl resumed>) = 0 [pid 5927] setpgid(0, 0 [pid 5842] <... rmdir resumed>) = 0 [pid 5842] mkdir("./10", 0777 [pid 5927] <... setpgid resumed>) = 0 [pid 5842] <... mkdir resumed>) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5927] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5927] write(3, "1000", 4 [pid 5842] <... openat resumed>) = 3 [pid 5927] <... write resumed>) = 4 [pid 5927] close(3) = 0 [pid 5927] symlink("/dev/binderfs", "./binderfs" [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5927] <... symlink resumed>) = 0 [pid 5927] write(1, "executing program\n", 18 [pid 5842] <... ioctl resumed>) = 0 executing program [pid 5927] <... write resumed>) = 18 [pid 5927] memfd_create("syzkaller", 0 [pid 5842] close(3 [pid 5927] <... memfd_create resumed>) = 3 [pid 5927] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5842] <... close resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5928 attached [pid 5928] set_robust_list(0x55558e440660, 24 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5928 [pid 5928] <... set_robust_list resumed>) = 0 [pid 5928] chdir("./10") = 0 [pid 5928] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5928] setpgid(0, 0) = 0 [pid 5928] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5928] write(3, "1000", 4) = 4 [pid 5928] close(3) = 0 [pid 5928] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5928] write(1, "executing program\n", 18) = 18 [pid 5928] memfd_create("syzkaller", 0) = 3 [pid 5924] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5923] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5928] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5925] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5928] <... mmap resumed>) = 0x7f101fc00000 [pid 5926] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5927] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5928] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5923] <... write resumed>) = 16777216 [pid 5923] munmap(0x7f101fc00000, 138412032 [pid 5925] <... write resumed>) = 16777216 [pid 5923] <... munmap resumed>) = 0 [pid 5925] munmap(0x7f101fc00000, 138412032 [pid 5924] <... write resumed>) = 16777216 [pid 5923] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5923] ioctl(4, LOOP_SET_FD, 3 [pid 5924] munmap(0x7f101fc00000, 138412032 [pid 5923] <... ioctl resumed>) = 0 [pid 5923] close(3) = 0 [pid 5923] close(4) = 0 [pid 5923] mkdir("./file1", 0777) = 0 [pid 5926] <... write resumed>) = 16777216 [pid 5923] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5923] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5923] chdir("./file1" [pid 5926] munmap(0x7f101fc00000, 138412032 [pid 5923] <... chdir resumed>) = 0 [pid 5923] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5923] exit_group(0) = ? [pid 5923] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5923, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=24 /* 0.24 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5925] <... munmap resumed>) = 0 [pid 5924] <... munmap resumed>) = 0 [pid 5925] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5843] <... restart_syscall resumed>) = 0 [ 110.234116][ T5923] loop1: detected capacity change from 0 to 32768 [pid 5925] <... openat resumed>) = 4 [pid 5843] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5925] ioctl(4, LOOP_SET_FD, 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, [pid 5924] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5924] <... openat resumed>) = 4 [pid 5924] ioctl(4, LOOP_SET_FD, 3 [pid 5843] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5926] <... munmap resumed>) = 0 [pid 5925] <... ioctl resumed>) = 0 [pid 5843] <... umount2 resumed>) = 0 [pid 5925] close(3 [pid 5843] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5925] <... close resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5925] close(4 [pid 5843] newfstatat(AT_FDCWD, "./11/file1", [pid 5925] <... close resumed>) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5925] mkdir("./file1", 0777 [pid 5843] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5924] <... ioctl resumed>) = 0 [pid 5924] close(3) = 0 [pid 5924] close(4 [pid 5925] <... mkdir resumed>) = 0 [pid 5924] <... close resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", [pid 5924] mkdir("./file1", 0777) = 0 [pid 5924] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5926] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5924] <... mount resumed>) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5926] <... openat resumed>) = 4 [pid 5925] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5924] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] getdents64(4, [ 110.299989][ T5925] loop3: detected capacity change from 0 to 32768 [ 110.314462][ T5924] loop2: detected capacity change from 0 to 32768 [pid 5926] ioctl(4, LOOP_SET_FD, 3 [pid 5924] <... openat resumed>) = 3 [pid 5927] <... write resumed>) = 16777216 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5924] chdir("./file1" [pid 5843] getdents64(4, [pid 5924] <... chdir resumed>) = 0 [pid 5924] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5924] exit_group(0) = ? [pid 5924] +++ exited with 0 +++ [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5924, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=24 /* 0.24 s */} --- [pid 5843] <... close resumed>) = 0 [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5843] rmdir("./11/file1" [pid 5844] <... restart_syscall resumed>) = 0 [pid 5927] munmap(0x7f101fc00000, 138412032 [pid 5844] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... rmdir resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./11/binderfs" [pid 5925] <... mount resumed>) = 0 [pid 5843] <... unlink resumed>) = 0 [pid 5925] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5925] <... openat resumed>) = 3 [pid 5925] chdir("./file1" [pid 5843] close(3 [pid 5925] <... chdir resumed>) = 0 [pid 5926] <... ioctl resumed>) = 0 [pid 5925] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5843] <... close resumed>) = 0 [pid 5925] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5843] rmdir("./11" [pid 5926] close(3) = 0 [pid 5926] close(4 [pid 5844] <... umount2 resumed>) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5925] exit_group(0 [pid 5843] mkdir("./12", 0777 [pid 5925] <... exit_group resumed>) = ? [pid 5926] <... close resumed>) = 0 [pid 5844] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] <... mkdir resumed>) = 0 [pid 5844] newfstatat(AT_FDCWD, "./10/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5926] mkdir("./file1", 0777 [pid 5844] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 110.376356][ T5926] loop4: detected capacity change from 0 to 32768 [pid 5925] +++ exited with 0 +++ [pid 5926] <... mkdir resumed>) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5925, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=24 /* 0.24 s */} --- [pid 5926] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5844] openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... openat resumed>) = 3 [pid 5844] <... openat resumed>) = 4 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, [pid 5845] <... restart_syscall resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, [pid 5927] <... munmap resumed>) = 0 [pid 5843] <... ioctl resumed>) = 0 [pid 5845] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] close(3 [pid 5927] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5926] <... mount resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5926] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5927] <... openat resumed>) = 4 [pid 5926] <... openat resumed>) = 3 [pid 5845] <... openat resumed>) = 3 [pid 5843] <... close resumed>) = 0 [pid 5926] chdir("./file1" [pid 5845] newfstatat(3, "", [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5927] ioctl(4, LOOP_SET_FD, 3 [pid 5926] <... chdir resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5926] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5845] getdents64(3, [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5926] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] close(4 [pid 5845] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5926] exit_group(0 [pid 5844] <... close resumed>) = 0 [pid 5926] <... exit_group resumed>) = ? [pid 5844] rmdir("./10/file1") = 0 [pid 5844] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5926] +++ exited with 0 +++ [pid 5844] newfstatat(AT_FDCWD, "./10/binderfs", [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5926, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=28 /* 0.28 s */} --- ./strace-static-x86_64: Process 5929 attached [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5929 [pid 5929] set_robust_list(0x55558e440660, 24) = 0 [pid 5845] <... umount2 resumed>) = 0 [pid 5844] unlink("./10/binderfs" [pid 5929] chdir("./12" [pid 5927] <... ioctl resumed>) = 0 [pid 5845] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... unlink resumed>) = 0 [pid 5929] <... chdir resumed>) = 0 [pid 5927] close(3 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] getdents64(3, [pid 5929] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5927] <... close resumed>) = 0 [pid 5929] <... prctl resumed>) = 0 [pid 5927] close(4 [pid 5845] newfstatat(AT_FDCWD, "./11/file1", [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5929] setpgid(0, 0 [pid 5927] <... close resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] close(3 [pid 5929] <... setpgid resumed>) = 0 [pid 5927] mkdir("./file1", 0777 [pid 5846] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = 0 [pid 5929] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] rmdir("./10" [pid 5929] <... openat resumed>) = 3 [pid 5927] <... mkdir resumed>) = 0 [pid 5846] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... rmdir resumed>) = 0 [pid 5929] write(3, "1000", 4 [pid 5846] <... openat resumed>) = 3 [pid 5846] newfstatat(3, "", [pid 5929] <... write resumed>) = 4 [pid 5845] <... openat resumed>) = 4 [pid 5844] mkdir("./11", 0777 [pid 5927] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5929] close(3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 110.457341][ T5927] loop5: detected capacity change from 0 to 32768 [pid 5845] newfstatat(4, "", [pid 5844] <... mkdir resumed>) = 0 [pid 5929] <... close resumed>) = 0 [pid 5846] getdents64(3, [pid 5929] symlink("/dev/binderfs", "./binderfs" [pid 5928] <... write resumed>) = 16777216 [pid 5929] <... symlink resumed>) = 0 [pid 5929] write(1, "executing program\n", 18executing program [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5929] <... write resumed>) = 18 [pid 5845] getdents64(4, [pid 5929] memfd_create("syzkaller", 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] close(3 [pid 5846] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, ./strace-static-x86_64: Process 5930 attached 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./11/file1") = 0 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5930 [pid 5930] set_robust_list(0x55558e440660, 24 [pid 5845] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5930] <... set_robust_list resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5930] chdir("./11" [pid 5845] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./11/binderfs") = 0 [pid 5930] <... chdir resumed>) = 0 [pid 5930] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5930] setpgid(0, 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./11" [pid 5927] <... mount resumed>) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5930] <... setpgid resumed>) = 0 [pid 5845] mkdir("./12", 0777 [pid 5930] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5927] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] <... mkdir resumed>) = 0 [pid 5930] <... openat resumed>) = 3 [pid 5927] <... openat resumed>) = 3 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5930] write(3, "1000", 4 [pid 5927] chdir("./file1" [pid 5845] <... openat resumed>) = 3 [pid 5927] <... chdir resumed>) = 0 [pid 5927] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5927] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... ioctl resumed>) = 0 [pid 5927] exit_group(0 [pid 5845] close(3 [pid 5930] <... write resumed>) = 4 [pid 5845] <... close resumed>) = 0 [pid 5930] close(3 [pid 5929] <... memfd_create resumed>) = 3 [pid 5928] munmap(0x7f101fc00000, 138412032 [pid 5927] <... exit_group resumed>) = ? [pid 5846] <... umount2 resumed>) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5931 attached [pid 5930] <... close resumed>) = 0 [pid 5846] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5930] symlink("/dev/binderfs", "./binderfs" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5930] <... symlink resumed>) = 0 [pid 5929] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5927] +++ exited with 0 +++ [pid 5846] newfstatat(AT_FDCWD, "./10/file1", [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5927, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=19 /* 0.19 s */} --- [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5929] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] <... openat resumed>) = 4 executing program [pid 5931] set_robust_list(0x55558e440660, 24 [pid 5930] write(1, "executing program\n", 18 [pid 5846] newfstatat(4, "", [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5931 [pid 5931] <... set_robust_list resumed>) = 0 [pid 5930] <... write resumed>) = 18 [pid 5931] chdir("./12" [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5931] <... chdir resumed>) = 0 [pid 5930] memfd_create("syzkaller", 0 [pid 5846] getdents64(4, [pid 5931] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5931] <... prctl resumed>) = 0 [pid 5931] setpgid(0, 0 [pid 5846] getdents64(4, [pid 5931] <... setpgid resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5931] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5930] <... memfd_create resumed>) = 3 [pid 5931] <... openat resumed>) = 3 [pid 5930] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] close(4 [pid 5931] write(3, "1000", 4 [pid 5930] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] <... close resumed>) = 0 [pid 5931] <... write resumed>) = 4 [pid 5846] rmdir("./10/file1" [pid 5931] close(3 [pid 5846] <... rmdir resumed>) = 0 [pid 5847] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5931] <... close resumed>) = 0 [pid 5847] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5931] symlink("/dev/binderfs", "./binderfs" [pid 5847] <... openat resumed>) = 3 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5931] <... symlink resumed>) = 0 [pid 5847] newfstatat(3, "", [pid 5846] newfstatat(AT_FDCWD, "./10/binderfs", executing program [pid 5931] write(1, "executing program\n", 18 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5931] <... write resumed>) = 18 [pid 5847] getdents64(3, [pid 5846] unlink("./10/binderfs" [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5931] memfd_create("syzkaller", 0 [pid 5847] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... unlink resumed>) = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5931] <... memfd_create resumed>) = 3 [pid 5846] close(3 [pid 5931] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... close resumed>) = 0 [pid 5931] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] rmdir("./10") = 0 [pid 5846] mkdir("./11", 0777) = 0 [pid 5928] <... munmap resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5932 ./strace-static-x86_64: Process 5932 attached [pid 5932] set_robust_list(0x55558e440660, 24) = 0 [pid 5928] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5932] chdir("./11") = 0 [pid 5928] <... openat resumed>) = 4 [pid 5847] <... umount2 resumed>) = 0 [pid 5932] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5932] <... prctl resumed>) = 0 [pid 5932] setpgid(0, 0 [pid 5928] ioctl(4, LOOP_SET_FD, 3 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5932] <... setpgid resumed>) = 0 [pid 5847] newfstatat(AT_FDCWD, "./11/file1", [pid 5932] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5932] <... openat resumed>) = 3 [pid 5847] newfstatat(4, "", [pid 5932] write(3, "1000", 4 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5932] <... write resumed>) = 4 [pid 5932] close(3) = 0 [ 110.653645][ T5928] loop0: detected capacity change from 0 to 32768 executing program [pid 5932] symlink("/dev/binderfs", "./binderfs" [pid 5928] <... ioctl resumed>) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5932] <... symlink resumed>) = 0 [pid 5932] write(1, "executing program\n", 18 [pid 5928] close(3) = 0 [pid 5928] close(4 [pid 5932] <... write resumed>) = 18 [pid 5928] <... close resumed>) = 0 [pid 5928] mkdir("./file1", 0777 [pid 5932] memfd_create("syzkaller", 0 [pid 5928] <... mkdir resumed>) = 0 [pid 5847] getdents64(4, [pid 5932] <... memfd_create resumed>) = 3 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5932] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] close(4 [pid 5932] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] <... close resumed>) = 0 [pid 5847] rmdir("./11/file1" [pid 5928] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5847] <... rmdir resumed>) = 0 [pid 5847] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./11/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./11") = 0 [pid 5847] mkdir("./12", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3 [pid 5928] <... mount resumed>) = 0 [pid 5847] <... close resumed>) = 0 [pid 5928] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5928] chdir("./file1") = 0 [pid 5928] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5928] exit_group(0) = ? [pid 5928] +++ exited with 0 +++ [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5928, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=27 /* 0.27 s */} --- ./strace-static-x86_64: Process 5933 attached [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5933 [pid 5842] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5933] set_robust_list(0x55558e440660, 24) = 0 [pid 5842] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5933] chdir("./12" [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5933] <... chdir resumed>) = 0 [pid 5933] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] newfstatat(3, "", [pid 5933] <... prctl resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5933] setpgid(0, 0 [pid 5842] getdents64(3, [pid 5933] <... setpgid resumed>) = 0 [pid 5933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5933] <... openat resumed>) = 3 [pid 5842] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5933] write(3, "1000", 4) = 4 [pid 5933] close(3) = 0 [pid 5933] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5933] write(1, "executing program\n", 18) = 18 [pid 5933] memfd_create("syzkaller", 0) = 3 [pid 5933] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./10/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5930] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] getdents64(4, [pid 5929] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./10/file1" [pid 5931] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] <... rmdir resumed>) = 0 [pid 5842] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./10/binderfs") = 0 [pid 5932] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./10") = 0 [pid 5842] mkdir("./11", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3 [pid 5933] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5930] <... write resumed>) = 16777216 [pid 5930] munmap(0x7f101fc00000, 138412032 [pid 5929] <... write resumed>) = 16777216 [pid 5929] munmap(0x7f101fc00000, 138412032 [pid 5842] <... close resumed>) = 0 [pid 5930] <... munmap resumed>) = 0 [pid 5929] <... munmap resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5934 [pid 5930] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5930] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 5934 attached [pid 5934] set_robust_list(0x55558e440660, 24) = 0 [pid 5934] chdir("./11") = 0 [pid 5934] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5934] setpgid(0, 0) = 0 [pid 5934] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5929] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5934] <... openat resumed>) = 3 [pid 5929] <... openat resumed>) = 4 [pid 5934] write(3, "1000", 4 [pid 5929] ioctl(4, LOOP_SET_FD, 3 [pid 5934] <... write resumed>) = 4 [pid 5929] <... ioctl resumed>) = 0 [pid 5929] close(3 [pid 5930] <... ioctl resumed>) = 0 [pid 5929] <... close resumed>) = 0 [pid 5934] close(3) = 0 [pid 5934] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5934] write(1, "executing program\n", 18) = 18 [pid 5929] close(4 [pid 5934] memfd_create("syzkaller", 0) = 3 [pid 5931] <... write resumed>) = 16777216 [pid 5934] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5929] <... close resumed>) = 0 [pid 5934] <... mmap resumed>) = 0x7f101fc00000 [pid 5930] close(3 [pid 5929] mkdir("./file1", 0777) = 0 [pid 5929] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5930] <... close resumed>) = 0 [ 111.880804][ T5930] loop2: detected capacity change from 0 to 32768 [ 111.893874][ T5929] loop1: detected capacity change from 0 to 32768 [pid 5931] munmap(0x7f101fc00000, 138412032 [pid 5930] close(4) = 0 [pid 5930] mkdir("./file1", 0777) = 0 [pid 5929] <... mount resumed>) = 0 [pid 5930] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5929] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5929] chdir("./file1" [pid 5930] <... mount resumed>) = 0 [pid 5929] <... chdir resumed>) = 0 [pid 5930] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5929] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5929] exit_group(0) = ? [pid 5930] <... openat resumed>) = 3 [pid 5929] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5929, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=24 /* 0.24 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5930] chdir("./file1") = 0 [pid 5930] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] <... restart_syscall resumed>) = 0 [pid 5930] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5930] exit_group(0) = ? [pid 5843] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5930] +++ exited with 0 +++ [pid 5843] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5930, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5931] <... munmap resumed>) = 0 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5844] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5932] <... write resumed>) = 16777216 [pid 5931] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5931] ioctl(4, LOOP_SET_FD, 3 [pid 5843] <... umount2 resumed>) = 0 [pid 5932] munmap(0x7f101fc00000, 138412032 [pid 5844] <... openat resumed>) = 3 [pid 5843] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] newfstatat(3, "", [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] newfstatat(AT_FDCWD, "./12/file1", [pid 5844] getdents64(3, [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5931] <... ioctl resumed>) = 0 [pid 5931] close(3 [pid 5843] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5932] <... munmap resumed>) = 0 [pid 5843] <... openat resumed>) = 4 [pid 5843] newfstatat(4, "", [pid 5931] <... close resumed>) = 0 [pid 5931] close(4) = 0 [pid 5931] mkdir("./file1", 0777) = 0 [pid 5931] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... umount2 resumed>) = 0 [pid 5843] getdents64(4, [pid 5844] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] newfstatat(AT_FDCWD, "./11/file1", [pid 5843] getdents64(4, [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [ 112.009824][ T5931] loop3: detected capacity change from 0 to 32768 [pid 5843] close(4 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... close resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] rmdir("./12/file1" [pid 5844] <... openat resumed>) = 4 [pid 5844] newfstatat(4, "", [pid 5843] <... rmdir resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] getdents64(4, [pid 5932] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5932] ioctl(4, LOOP_SET_FD, 3 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] getdents64(4, [pid 5843] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5931] <... mount resumed>) = 0 [pid 5844] close(4 [pid 5843] unlink("./12/binderfs" [pid 5931] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5844] <... close resumed>) = 0 [pid 5843] <... unlink resumed>) = 0 [pid 5931] <... openat resumed>) = 3 [pid 5844] rmdir("./11/file1" [pid 5843] getdents64(3, [pid 5931] chdir("./file1" [pid 5844] <... rmdir resumed>) = 0 [pid 5931] <... chdir resumed>) = 0 [pid 5844] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] close(3 [pid 5931] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] newfstatat(AT_FDCWD, "./11/binderfs", [pid 5843] <... close resumed>) = 0 [pid 5931] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] rmdir("./12" [pid 5844] unlink("./11/binderfs" [pid 5931] exit_group(0 [pid 5844] <... unlink resumed>) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5844] getdents64(3, [pid 5843] mkdir("./13", 0777 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5931] <... exit_group resumed>) = ? [pid 5931] +++ exited with 0 +++ [pid 5844] close(3 [pid 5843] <... mkdir resumed>) = 0 [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5931, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=24 /* 0.24 s */} --- [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5844] <... close resumed>) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5845] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] rmdir("./11" [pid 5932] <... ioctl resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", [pid 5932] close(3 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... rmdir resumed>) = 0 [pid 5932] <... close resumed>) = 0 [pid 5845] getdents64(3, [pid 5932] close(4 [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5932] <... close resumed>) = 0 [pid 5845] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5932] mkdir("./file1", 0777) = 0 [pid 5844] mkdir("./12", 0777 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [ 112.088934][ T5932] loop4: detected capacity change from 0 to 32768 [pid 5843] close(3 [pid 5932] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5844] <... mkdir resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5935 ./strace-static-x86_64: Process 5935 attached [pid 5845] <... umount2 resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5845] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... openat resumed>) = 3 [pid 5935] set_robust_list(0x55558e440660, 24 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5935] <... set_robust_list resumed>) = 0 [pid 5932] <... mount resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... ioctl resumed>) = 0 [pid 5935] chdir("./13" [pid 5932] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] newfstatat(AT_FDCWD, "./12/file1", [pid 5844] close(3 [pid 5932] <... openat resumed>) = 3 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... close resumed>) = 0 [pid 5935] <... chdir resumed>) = 0 [pid 5932] chdir("./file1" [pid 5845] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5935] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5932] <... chdir resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5932] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5845] openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5932] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... openat resumed>) = 4 ./strace-static-x86_64: Process 5936 attached [pid 5932] exit_group(0 [pid 5845] newfstatat(4, "", [pid 5935] setpgid(0, 0 [pid 5932] <... exit_group resumed>) = ? [pid 5936] set_robust_list(0x55558e440660, 24 [pid 5935] <... setpgid resumed>) = 0 [pid 5932] +++ exited with 0 +++ [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5936] <... set_robust_list resumed>) = 0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5932, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=30 /* 0.30 s */} --- [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./12/file1" [pid 5936] chdir("./12" [pid 5935] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5845] <... rmdir resumed>) = 0 [pid 5936] <... chdir resumed>) = 0 [pid 5935] <... openat resumed>) = 3 [pid 5846] <... restart_syscall resumed>) = 0 [pid 5845] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5936] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5936 [pid 5845] newfstatat(AT_FDCWD, "./12/binderfs", [pid 5936] <... prctl resumed>) = 0 [pid 5935] write(3, "1000", 4 [pid 5846] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5936] setpgid(0, 0 [pid 5935] <... write resumed>) = 4 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] unlink("./12/binderfs" [pid 5936] <... setpgid resumed>) = 0 [pid 5935] close(3 [pid 5933] <... write resumed>) = 16777216 [pid 5846] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] <... unlink resumed>) = 0 [pid 5845] getdents64(3, [pid 5936] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] <... openat resumed>) = 3 [pid 5845] close(3 [pid 5935] <... close resumed>) = 0 [pid 5846] newfstatat(3, "", [pid 5935] symlink("/dev/binderfs", "./binderfs" [pid 5936] <... openat resumed>) = 3 [pid 5935] <... symlink resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] <... close resumed>) = 0 [pid 5845] rmdir("./12" [pid 5846] getdents64(3, [pid 5935] write(1, "executing program\n", 18 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] <... rmdir resumed>) = 0 executing program [pid 5935] <... write resumed>) = 18 [pid 5846] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] mkdir("./13", 0777 [pid 5935] memfd_create("syzkaller", 0 [pid 5845] <... mkdir resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5935] <... memfd_create resumed>) = 3 [pid 5845] <... ioctl resumed>) = 0 [pid 5935] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5845] close(3 [pid 5935] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] <... umount2 resumed>) = 0 [pid 5936] write(3, "1000", 4 [pid 5845] <... close resumed>) = 0 [pid 5846] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5937 attached [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./11/file1", [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5937 [pid 5936] <... write resumed>) = 4 [pid 5937] set_robust_list(0x55558e440660, 24 [pid 5936] close(3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5937] <... set_robust_list resumed>) = 0 [pid 5936] <... close resumed>) = 0 [pid 5846] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5936] symlink("/dev/binderfs", "./binderfs" [pid 5937] chdir("./13" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5937] <... chdir resumed>) = 0 [pid 5936] <... symlink resumed>) = 0 [pid 5846] openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5937] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] <... openat resumed>) = 4 [pid 5937] <... prctl resumed>) = 0 [pid 5936] write(1, "executing program\n", 18 [pid 5846] newfstatat(4, "", executing program [pid 5937] setpgid(0, 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5936] <... write resumed>) = 18 [pid 5937] <... setpgid resumed>) = 0 [pid 5846] getdents64(4, [pid 5937] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5936] memfd_create("syzkaller", 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5937] <... openat resumed>) = 3 [pid 5846] getdents64(4, [pid 5933] munmap(0x7f101fc00000, 138412032 [pid 5936] <... memfd_create resumed>) = 3 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4 [pid 5937] write(3, "1000", 4 [pid 5936] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... close resumed>) = 0 [pid 5937] <... write resumed>) = 4 [pid 5936] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] rmdir("./11/file1" [pid 5937] close(3 [pid 5846] <... rmdir resumed>) = 0 [pid 5937] <... close resumed>) = 0 [pid 5846] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5937] symlink("/dev/binderfs", "./binderfs" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5937] <... symlink resumed>) = 0 [pid 5846] newfstatat(AT_FDCWD, "./11/binderfs", executing program [pid 5937] write(1, "executing program\n", 18 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5937] <... write resumed>) = 18 [pid 5846] unlink("./11/binderfs") = 0 [pid 5937] memfd_create("syzkaller", 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5846] rmdir("./11") = 0 [pid 5937] <... memfd_create resumed>) = 3 [pid 5846] mkdir("./12", 0777 [pid 5937] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... mkdir resumed>) = 0 [pid 5937] <... mmap resumed>) = 0x7f101fc00000 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5938 attached , child_tidptr=0x55558e440650) = 5938 [pid 5938] set_robust_list(0x55558e440660, 24) = 0 [pid 5938] chdir("./12") = 0 [pid 5938] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5938] setpgid(0, 0) = 0 [pid 5938] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5938] write(3, "1000", 4) = 4 [pid 5938] close(3) = 0 [pid 5938] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5938] write(1, "executing program\n", 18) = 18 [pid 5938] memfd_create("syzkaller", 0) = 3 [pid 5938] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5933] <... munmap resumed>) = 0 [pid 5933] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5933] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5933] close(3) = 0 [pid 5933] close(4) = 0 [pid 5933] mkdir("./file1", 0777) = 0 [ 112.348585][ T5933] loop5: detected capacity change from 0 to 32768 [pid 5933] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5934] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5933] <... mount resumed>) = 0 [pid 5933] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5933] chdir("./file1") = 0 [pid 5933] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5933] exit_group(0) = ? [pid 5933] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5933, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} --- [pid 5847] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./12/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./12/file1") = 0 [pid 5847] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./12/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./12") = 0 [pid 5847] mkdir("./13", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5935] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3 [pid 5937] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5936] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5938] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5934] <... write resumed>) = 16777216 [pid 5934] munmap(0x7f101fc00000, 138412032 [pid 5847] <... close resumed>) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5939 ./strace-static-x86_64: Process 5939 attached [pid 5939] set_robust_list(0x55558e440660, 24) = 0 [pid 5939] chdir("./13") = 0 [pid 5939] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5939] setpgid(0, 0) = 0 [pid 5939] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5934] <... munmap resumed>) = 0 [pid 5939] write(3, "1000", 4) = 4 [pid 5939] close(3) = 0 [pid 5939] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5939] write(1, "executing program\n", 18) = 18 [pid 5939] memfd_create("syzkaller", 0 [pid 5934] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5934] ioctl(4, LOOP_SET_FD, 3 [pid 5939] <... memfd_create resumed>) = 3 [pid 5939] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5934] <... ioctl resumed>) = 0 [pid 5934] close(3) = 0 [pid 5934] close(4) = 0 [pid 5934] mkdir("./file1", 0777) = 0 [ 113.303920][ T5934] loop0: detected capacity change from 0 to 32768 [pid 5934] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5934] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5934] chdir("./file1") = 0 [pid 5934] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5934] exit_group(0) = ? [pid 5934] +++ exited with 0 +++ [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5934, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=25 /* 0.25 s */} --- [pid 5842] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5842] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5937] <... write resumed>) = 16777216 [pid 5937] munmap(0x7f101fc00000, 138412032 [pid 5842] <... umount2 resumed>) = 0 [pid 5937] <... munmap resumed>) = 0 [pid 5842] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5937] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5936] <... write resumed>) = 16777216 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5935] <... write resumed>) = 16777216 [pid 5842] newfstatat(AT_FDCWD, "./11/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5937] <... openat resumed>) = 4 [pid 5842] openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5937] ioctl(4, LOOP_SET_FD, 3 [pid 5842] <... openat resumed>) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, [pid 5936] munmap(0x7f101fc00000, 138412032 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5935] munmap(0x7f101fc00000, 138412032 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./11/file1" [pid 5937] <... ioctl resumed>) = 0 [pid 5842] <... rmdir resumed>) = 0 [pid 5937] close(3) = 0 [pid 5842] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5937] close(4) = 0 [pid 5937] mkdir("./file1", 0777) = 0 [pid 5937] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./11/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./11" [pid 5937] <... mount resumed>) = 0 [pid 5842] <... rmdir resumed>) = 0 [pid 5937] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5842] mkdir("./12", 0777 [pid 5937] <... openat resumed>) = 3 [pid 5937] chdir("./file1") = 0 [ 113.525352][ T5937] loop3: detected capacity change from 0 to 32768 [pid 5842] <... mkdir resumed>) = 0 [pid 5937] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5936] <... munmap resumed>) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5937] exit_group(0 [pid 5935] <... munmap resumed>) = 0 [pid 5937] <... exit_group resumed>) = ? [pid 5842] <... openat resumed>) = 3 [pid 5937] +++ exited with 0 +++ [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5937, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=23 /* 0.23 s */} --- [pid 5842] <... ioctl resumed>) = 0 [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5842] close(3 [pid 5845] <... restart_syscall resumed>) = 0 [pid 5845] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5936] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5938] <... write resumed>) = 16777216 [pid 5935] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5935] ioctl(4, LOOP_SET_FD, 3 [pid 5936] <... openat resumed>) = 4 [pid 5845] <... umount2 resumed>) = 0 [pid 5845] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./13/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5936] ioctl(4, LOOP_SET_FD, 3 [pid 5845] <... openat resumed>) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./13/file1") = 0 [pid 5845] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./13/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./13") = 0 [pid 5938] munmap(0x7f101fc00000, 138412032 [pid 5845] mkdir("./14", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5940 attached [pid 5940] set_robust_list(0x55558e440660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5940 [pid 5940] <... set_robust_list resumed>) = 0 [pid 5940] chdir("./14") = 0 [pid 5940] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5940] setpgid(0, 0) = 0 [pid 5940] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5935] <... ioctl resumed>) = 0 [pid 5935] close(3) = 0 [pid 5940] write(3, "1000", 4 [pid 5936] <... ioctl resumed>) = 0 [pid 5935] close(4 [pid 5940] <... write resumed>) = 4 [pid 5936] close(3 [pid 5940] close(3 [pid 5936] <... close resumed>) = 0 [pid 5940] <... close resumed>) = 0 [pid 5936] close(4) = 0 [pid 5940] symlink("/dev/binderfs", "./binderfs" [pid 5936] mkdir("./file1", 0777 [pid 5940] <... symlink resumed>) = 0 [pid 5936] <... mkdir resumed>) = 0 [pid 5940] write(1, "executing program\n", 18 executing program [pid 5936] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5940] <... write resumed>) = 18 [pid 5935] <... close resumed>) = 0 [ 113.625639][ T5935] loop1: detected capacity change from 0 to 32768 [ 113.629016][ T5936] loop2: detected capacity change from 0 to 32768 [pid 5935] mkdir("./file1", 0777 [pid 5940] memfd_create("syzkaller", 0 [pid 5935] <... mkdir resumed>) = 0 [pid 5940] <... memfd_create resumed>) = 3 [pid 5935] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5939] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5940] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5938] <... munmap resumed>) = 0 [pid 5936] <... mount resumed>) = 0 [pid 5935] <... mount resumed>) = 0 [pid 5936] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5936] chdir("./file1") = 0 [pid 5936] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5938] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5936] exit_group(0 [pid 5935] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5936] <... exit_group resumed>) = ? [pid 5936] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5936, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=22 /* 0.22 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5844] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5938] <... openat resumed>) = 4 [pid 5935] <... openat resumed>) = 3 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5938] ioctl(4, LOOP_SET_FD, 3 [pid 5935] chdir("./file1" [pid 5844] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5935] <... chdir resumed>) = 0 [pid 5935] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5935] exit_group(0) = ? [pid 5935] +++ exited with 0 +++ [pid 5844] <... umount2 resumed>) = 0 [pid 5844] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5935, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=26 /* 0.26 s */} --- [pid 5844] newfstatat(AT_FDCWD, "./12/file1", [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... restart_syscall resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5938] <... ioctl resumed>) = 0 [pid 5844] <... openat resumed>) = 4 [pid 5844] newfstatat(4, "", [pid 5843] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] getdents64(4, [pid 5843] <... openat resumed>) = 3 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] newfstatat(3, "", [pid 5844] close(4 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... close resumed>) = 0 [pid 5843] getdents64(3, [pid 5844] rmdir("./12/file1" [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] <... rmdir resumed>) = 0 [pid 5843] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5938] close(3 [pid 5844] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5938] <... close resumed>) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5938] close(4) = 0 [pid 5844] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./12/binderfs") = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [pid 5844] rmdir("./12" [pid 5938] mkdir("./file1", 0777 [pid 5844] <... rmdir resumed>) = 0 [pid 5938] <... mkdir resumed>) = 0 [pid 5844] mkdir("./13", 0777) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] <... umount2 resumed>) = 0 [pid 5844] <... openat resumed>) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5843] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... ioctl resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] close(3 [ 113.754233][ T5938] loop4: detected capacity change from 0 to 32768 [pid 5843] newfstatat(AT_FDCWD, "./13/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5938] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./13/file1") = 0 [pid 5843] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./13/binderfs") = 0 [pid 5843] getdents64(3, [pid 5938] <... mount resumed>) = 0 [pid 5843] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5938] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] close(3) = 0 [pid 5843] rmdir("./13") = 0 [pid 5843] mkdir("./14", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3 [pid 5938] <... openat resumed>) = 3 [pid 5938] chdir("./file1") = 0 [pid 5938] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5938] exit_group(0) = ? [pid 5938] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5938, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- [pid 5846] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5846] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./12/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4) = 0 [pid 5846] rmdir("./12/file1") = 0 [pid 5846] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./12/binderfs") = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5846] rmdir("./12") = 0 [pid 5846] mkdir("./13", 0777) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5941 ./strace-static-x86_64: Process 5941 attached [pid 5941] set_robust_list(0x55558e440660, 24) = 0 [pid 5941] chdir("./13") = 0 [pid 5941] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5941] setpgid(0, 0) = 0 [pid 5941] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5941] write(3, "1000", 4) = 4 [pid 5941] close(3) = 0 [pid 5941] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5941] write(1, "executing program\n", 18) = 18 [pid 5941] memfd_create("syzkaller", 0) = 3 [pid 5941] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5842] <... close resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5942 attached [pid 5942] set_robust_list(0x55558e440660, 24 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5942 [pid 5942] <... set_robust_list resumed>) = 0 [pid 5942] chdir("./12") = 0 [pid 5942] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5942] setpgid(0, 0) = 0 [pid 5942] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5942] write(3, "1000", 4) = 4 [pid 5942] close(3) = 0 [pid 5942] symlink("/dev/binderfs", "./binderfs" [pid 5940] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5942] <... symlink resumed>) = 0 executing program [pid 5942] write(1, "executing program\n", 18) = 18 [pid 5942] memfd_create("syzkaller", 0) = 3 [pid 5942] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5844] <... close resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5943 ./strace-static-x86_64: Process 5944 attached ./strace-static-x86_64: Process 5943 attached [pid 5944] set_robust_list(0x55558e440660, 24 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5944 [pid 5943] set_robust_list(0x55558e440660, 24 [pid 5941] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5944] <... set_robust_list resumed>) = 0 [pid 5943] <... set_robust_list resumed>) = 0 [pid 5939] <... write resumed>) = 16777216 [pid 5944] chdir("./14" [pid 5943] chdir("./13") = 0 [pid 5943] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5943] setpgid(0, 0) = 0 [pid 5943] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5943] write(3, "1000", 4) = 4 [pid 5943] close(3) = 0 [pid 5944] <... chdir resumed>) = 0 [pid 5943] symlink("/dev/binderfs", "./binderfs" [pid 5939] munmap(0x7f101fc00000, 138412032 [pid 5944] prctl(PR_SET_PDEATHSIG, SIGKILLexecuting program [pid 5943] <... symlink resumed>) = 0 [pid 5943] write(1, "executing program\n", 18) = 18 [pid 5943] memfd_create("syzkaller", 0) = 3 [pid 5943] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5944] <... prctl resumed>) = 0 [pid 5944] setpgid(0, 0) = 0 [pid 5944] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5939] <... munmap resumed>) = 0 [pid 5944] write(3, "1000", 4) = 4 [pid 5944] close(3) = 0 [pid 5944] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5944] write(1, "executing program\n", 18) = 18 [pid 5944] memfd_create("syzkaller", 0) = 3 [pid 5944] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5939] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5939] ioctl(4, LOOP_SET_FD, 3 [pid 5942] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5939] <... ioctl resumed>) = 0 [pid 5939] close(3) = 0 [pid 5939] close(4) = 0 [pid 5939] mkdir("./file1", 0777) = 0 [ 114.590376][ T5939] loop5: detected capacity change from 0 to 32768 [pid 5939] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5939] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5939] chdir("./file1") = 0 [pid 5939] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5939] exit_group(0) = ? [pid 5939] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5939, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=25 /* 0.25 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5847] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./13/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5940] <... write resumed>) = 16777216 [pid 5847] rmdir("./13/file1") = 0 [pid 5847] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5940] munmap(0x7f101fc00000, 138412032 [pid 5847] unlink("./13/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./13") = 0 [pid 5847] mkdir("./14", 0777 [pid 5944] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5940] <... munmap resumed>) = 0 [pid 5847] <... mkdir resumed>) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5940] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5940] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5847] <... openat resumed>) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5940] close(3 [pid 5943] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5940] <... close resumed>) = 0 [ 114.913317][ T5940] loop3: detected capacity change from 0 to 32768 [pid 5847] close(3 [pid 5940] close(4) = 0 [pid 5940] mkdir("./file1", 0777) = 0 [pid 5940] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5940] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5940] chdir("./file1") = 0 [pid 5940] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5940] exit_group(0) = ? [pid 5940] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5940, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=22 /* 0.22 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5845] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./14/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./14/file1") = 0 [pid 5845] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./14/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./14") = 0 [pid 5845] mkdir("./15", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5945 attached , child_tidptr=0x55558e440650) = 5945 [pid 5945] set_robust_list(0x55558e440660, 24) = 0 [pid 5945] chdir("./15") = 0 [pid 5945] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5945] setpgid(0, 0) = 0 [pid 5945] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5945] write(3, "1000", 4) = 4 [pid 5945] close(3) = 0 [pid 5945] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5945] write(1, "executing program\n", 18) = 18 [pid 5945] memfd_create("syzkaller", 0) = 3 [pid 5945] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5941] <... write resumed>) = 16777216 [pid 5941] munmap(0x7f101fc00000, 138412032) = 0 [pid 5941] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5941] ioctl(4, LOOP_SET_FD, 3 [pid 5942] <... write resumed>) = 16777216 [pid 5942] munmap(0x7f101fc00000, 138412032 [pid 5941] <... ioctl resumed>) = 0 [pid 5941] close(3) = 0 [pid 5941] close(4) = 0 [pid 5941] mkdir("./file1", 0777) = 0 [ 115.205242][ T5941] loop4: detected capacity change from 0 to 32768 [pid 5941] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5941] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5941] chdir("./file1") = 0 [pid 5941] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5942] <... munmap resumed>) = 0 [pid 5941] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5941] exit_group(0) = ? [pid 5941] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5941, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=23 /* 0.23 s */} --- [pid 5846] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5942] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5942] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5942] close(3) = 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5846] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./13/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4) = 0 [pid 5846] rmdir("./13/file1") = 0 [pid 5846] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./13/binderfs") = 0 [pid 5846] getdents64(3, [pid 5942] close(4 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3 [pid 5942] <... close resumed>) = 0 [pid 5846] <... close resumed>) = 0 [ 115.315752][ T5942] loop0: detected capacity change from 0 to 32768 [pid 5942] mkdir("./file1", 0777 [pid 5846] rmdir("./13") = 0 [pid 5846] mkdir("./14", 0777 [pid 5942] <... mkdir resumed>) = 0 [pid 5846] <... mkdir resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3 [pid 5942] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] <... close resumed>) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5946 attached , child_tidptr=0x55558e440650) = 5946 [pid 5946] set_robust_list(0x55558e440660, 24) = 0 [pid 5946] chdir("./14" [pid 5942] <... mount resumed>) = 0 [pid 5942] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5946] <... chdir resumed>) = 0 [pid 5946] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5942] chdir("./file1" [pid 5946] <... prctl resumed>) = 0 [pid 5942] <... chdir resumed>) = 0 [pid 5946] setpgid(0, 0 [pid 5942] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5946] <... setpgid resumed>) = 0 [pid 5942] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5946] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5942] exit_group(0 [pid 5847] <... close resumed>) = 0 [pid 5946] <... openat resumed>) = 3 [pid 5942] <... exit_group resumed>) = ? [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5946] write(3, "1000", 4./strace-static-x86_64: Process 5947 attached ) = 4 [pid 5942] +++ exited with 0 +++ [pid 5946] close(3 [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5942, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=27 /* 0.27 s */} --- [pid 5842] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5842] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5947] set_robust_list(0x55558e440660, 24 [pid 5946] <... close resumed>) = 0 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5947 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5947] <... set_robust_list resumed>) = 0 [pid 5946] symlink("/dev/binderfs", "./binderfs" [pid 5947] chdir("./14" [pid 5946] <... symlink resumed>) = 0 [pid 5947] <... chdir resumed>) = 0 [pid 5946] write(1, "executing program\n", 18 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program ) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./12/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5946] <... write resumed>) = 18 [pid 5947] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] <... openat resumed>) = 4 [pid 5946] memfd_create("syzkaller", 0 [pid 5947] <... prctl resumed>) = 0 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, [pid 5947] setpgid(0, 0 [pid 5946] <... memfd_create resumed>) = 3 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, [pid 5947] <... setpgid resumed>) = 0 [pid 5946] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5947] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5946] <... mmap resumed>) = 0x7f101fc00000 [pid 5947] <... openat resumed>) = 3 [pid 5842] close(4 [pid 5947] write(3, "1000", 4 [pid 5842] <... close resumed>) = 0 [pid 5842] rmdir("./12/file1") = 0 [pid 5842] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5947] <... write resumed>) = 4 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./12/binderfs" [pid 5947] close(3 [pid 5842] <... unlink resumed>) = 0 [pid 5947] <... close resumed>) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./12" [pid 5947] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5842] <... rmdir resumed>) = 0 [pid 5947] write(1, "executing program\n", 18) = 18 [pid 5842] mkdir("./13", 0777 [pid 5947] memfd_create("syzkaller", 0 [pid 5842] <... mkdir resumed>) = 0 [pid 5947] <... memfd_create resumed>) = 3 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5947] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5948 attached [pid 5947] <... mmap resumed>) = 0x7f101fc00000 [pid 5948] set_robust_list(0x55558e440660, 24 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5948 [pid 5948] <... set_robust_list resumed>) = 0 [pid 5948] chdir("./13") = 0 [pid 5948] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5948] setpgid(0, 0) = 0 [pid 5948] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5948] write(3, "1000", 4) = 4 [pid 5948] close(3) = 0 [pid 5948] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5948] write(1, "executing program\n", 18) = 18 [pid 5948] memfd_create("syzkaller", 0) = 3 [pid 5948] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5944] <... write resumed>) = 16777216 [pid 5944] munmap(0x7f101fc00000, 138412032 [pid 5945] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5944] <... munmap resumed>) = 0 [pid 5943] <... write resumed>) = 16777216 [pid 5944] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5944] ioctl(4, LOOP_SET_FD, 3 [pid 5943] munmap(0x7f101fc00000, 138412032 [pid 5944] <... ioctl resumed>) = 0 [pid 5944] close(3) = 0 [pid 5944] close(4) = 0 [pid 5944] mkdir("./file1", 0777) = 0 [ 115.692424][ T5944] loop1: detected capacity change from 0 to 32768 [pid 5944] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5943] <... munmap resumed>) = 0 [pid 5944] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5944] chdir("./file1") = 0 [pid 5944] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5944] exit_group(0) = ? [pid 5944] +++ exited with 0 +++ [pid 5943] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5944, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=27 /* 0.27 s */} --- [pid 5843] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5943] ioctl(4, LOOP_SET_FD, 3 [pid 5843] <... openat resumed>) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5943] <... ioctl resumed>) = 0 [pid 5943] close(3) = 0 [pid 5943] close(4) = 0 [pid 5943] mkdir("./file1", 0777) = 0 [ 115.805931][ T5943] loop2: detected capacity change from 0 to 32768 [pid 5943] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5943] <... mount resumed>) = 0 [pid 5843] newfstatat(AT_FDCWD, "./14/file1", [pid 5943] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5943] <... openat resumed>) = 3 [pid 5843] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5943] chdir("./file1") = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5943] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] <... openat resumed>) = 4 [pid 5943] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5943] exit_group(0 [pid 5843] getdents64(4, [pid 5943] <... exit_group resumed>) = ? [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, [pid 5943] +++ exited with 0 +++ [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5943, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} --- [pid 5843] close(4) = 0 [pid 5843] rmdir("./14/file1") = 0 [pid 5843] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./14/binderfs", [pid 5844] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] unlink("./14/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5947] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5946] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5844] <... umount2 resumed>) = 0 [pid 5843] rmdir("./14" [pid 5844] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] <... rmdir resumed>) = 0 [pid 5844] newfstatat(AT_FDCWD, "./13/file1", [pid 5843] mkdir("./15", 0777 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] <... mkdir resumed>) = 0 [pid 5844] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] <... openat resumed>) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD [pid 5844] openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... ioctl resumed>) = 0 [pid 5844] <... openat resumed>) = 4 [pid 5843] close(3 [pid 5844] newfstatat(4, "", [pid 5843] <... close resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5949 attached [pid 5948] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5844] getdents64(4, [pid 5949] set_robust_list(0x55558e440660, 24 [pid 5843] <... clone resumed>, child_tidptr=0x55558e440650) = 5949 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5949] <... set_robust_list resumed>) = 0 [pid 5844] rmdir("./13/file1") = 0 [pid 5844] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./13/binderfs") = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5949] chdir("./15" [pid 5844] close(3) = 0 [pid 5949] <... chdir resumed>) = 0 [pid 5844] rmdir("./13") = 0 [pid 5844] mkdir("./14", 0777) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3) = 0 [pid 5949] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5949] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5950 attached [pid 5949] setpgid(0, 0 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5950 [pid 5949] <... setpgid resumed>) = 0 [pid 5950] set_robust_list(0x55558e440660, 24 [pid 5949] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5950] <... set_robust_list resumed>) = 0 [pid 5949] <... openat resumed>) = 3 [pid 5950] chdir("./14") = 0 [pid 5950] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5949] write(3, "1000", 4) = 4 [pid 5950] <... prctl resumed>) = 0 [pid 5949] close(3 [pid 5950] setpgid(0, 0 [pid 5949] <... close resumed>) = 0 executing program [pid 5950] <... setpgid resumed>) = 0 [pid 5949] symlink("/dev/binderfs", "./binderfs" [pid 5950] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5949] <... symlink resumed>) = 0 [pid 5949] write(1, "executing program\n", 18) = 18 [pid 5950] <... openat resumed>) = 3 [pid 5949] memfd_create("syzkaller", 0) = 3 executing program [pid 5949] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5950] write(3, "1000", 4) = 4 [pid 5950] close(3) = 0 [pid 5950] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5950] write(1, "executing program\n", 18) = 18 [pid 5950] memfd_create("syzkaller", 0 [pid 5949] <... mmap resumed>) = 0x7f101fc00000 [pid 5950] <... memfd_create resumed>) = 3 [pid 5950] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5945] <... write resumed>) = 16777216 [pid 5945] munmap(0x7f101fc00000, 138412032) = 0 [pid 5945] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5945] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5945] close(3) = 0 [pid 5945] close(4) = 0 [pid 5945] mkdir("./file1", 0777) = 0 [ 116.495216][ T5945] loop3: detected capacity change from 0 to 32768 [pid 5945] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5945] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5945] chdir("./file1") = 0 [pid 5945] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5945] exit_group(0) = ? [pid 5945] +++ exited with 0 +++ [pid 5950] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5945, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=29 /* 0.29 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, [pid 5949] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5845] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./15/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./15/file1") = 0 [pid 5845] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./15/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./15") = 0 [pid 5845] mkdir("./16", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5951 attached [pid 5951] set_robust_list(0x55558e440660, 24) = 0 [pid 5951] chdir("./16") = 0 [pid 5951] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5951] setpgid(0, 0) = 0 [pid 5951] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5951 [pid 5951] <... openat resumed>) = 3 [pid 5951] write(3, "1000", 4) = 4 executing program [pid 5951] close(3) = 0 [pid 5951] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5951] write(1, "executing program\n", 18) = 18 [pid 5951] memfd_create("syzkaller", 0) = 3 [pid 5951] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5947] <... write resumed>) = 16777216 [pid 5946] <... write resumed>) = 16777216 [pid 5948] <... write resumed>) = 16777216 [pid 5947] munmap(0x7f101fc00000, 138412032 [pid 5946] munmap(0x7f101fc00000, 138412032 [pid 5948] munmap(0x7f101fc00000, 138412032 [pid 5946] <... munmap resumed>) = 0 [pid 5948] <... munmap resumed>) = 0 [pid 5947] <... munmap resumed>) = 0 [pid 5946] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5946] ioctl(4, LOOP_SET_FD, 3 [pid 5948] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5947] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5948] <... openat resumed>) = 4 [pid 5947] ioctl(4, LOOP_SET_FD, 3 [pid 5948] ioctl(4, LOOP_SET_FD, 3 [pid 5946] <... ioctl resumed>) = 0 [pid 5946] close(3) = 0 [pid 5946] close(4) = 0 [pid 5946] mkdir("./file1", 0777) = 0 [pid 5946] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5948] <... ioctl resumed>) = 0 [pid 5947] <... ioctl resumed>) = 0 [pid 5946] <... mount resumed>) = 0 [pid 5946] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5948] close(3 [pid 5947] close(3 [pid 5946] chdir("./file1" [pid 5948] <... close resumed>) = 0 [pid 5947] <... close resumed>) = 0 [pid 5948] close(4 [pid 5947] close(4) = 0 [pid 5946] <... chdir resumed>) = 0 [ 116.914054][ T5946] loop4: detected capacity change from 0 to 32768 [ 116.934013][ T5947] loop5: detected capacity change from 0 to 32768 [ 116.941452][ T5948] loop0: detected capacity change from 0 to 32768 [pid 5947] mkdir("./file1", 0777 [pid 5946] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5948] <... close resumed>) = 0 [pid 5947] <... mkdir resumed>) = 0 [pid 5948] mkdir("./file1", 0777 [pid 5947] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5946] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5948] <... mkdir resumed>) = 0 [pid 5948] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5947] <... mount resumed>) = 0 [pid 5947] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5946] exit_group(0 [pid 5947] <... openat resumed>) = 3 [pid 5946] <... exit_group resumed>) = ? [pid 5947] chdir("./file1") = 0 [pid 5947] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5947] exit_group(0) = ? [pid 5947] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5947, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=21 /* 0.21 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5946] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5946, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=20 /* 0.20 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5847] <... restart_syscall resumed>) = 0 [pid 5846] <... restart_syscall resumed>) = 0 [pid 5846] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", [pid 5847] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, [pid 5948] <... mount resumed>) = 0 [pid 5948] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5948] chdir("./file1") = 0 [pid 5847] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5948] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5948] exit_group(0) = ? [pid 5948] +++ exited with 0 +++ [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5948, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5842] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5842] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... umount2 resumed>) = 0 [pid 5846] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... umount2 resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./14/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(AT_FDCWD, "./13/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] newfstatat(4, "", [pid 5842] umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] getdents64(4, [pid 5842] <... openat resumed>) = 4 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, [pid 5842] newfstatat(4, "", [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] close(4) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] rmdir("./14/file1") = 0 [pid 5847] <... umount2 resumed>) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./13/file1" [pid 5847] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... rmdir resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] newfstatat(AT_FDCWD, "./14/file1", [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] newfstatat(AT_FDCWD, "./14/binderfs", [pid 5842] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] unlink("./14/binderfs" [pid 5842] newfstatat(AT_FDCWD, "./13/binderfs", [pid 5847] openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] <... openat resumed>) = 4 [pid 5846] <... unlink resumed>) = 0 [pid 5842] unlink("./13/binderfs") = 0 [pid 5846] getdents64(3, [pid 5842] getdents64(3, [pid 5847] newfstatat(4, "", [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] close(3 [pid 5842] close(3) = 0 [pid 5842] rmdir("./13") = 0 [pid 5842] mkdir("./14", 0777) = 0 [pid 5846] <... close resumed>) = 0 [pid 5846] rmdir("./14" [pid 5847] getdents64(4, [pid 5846] <... rmdir resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5847] <... close resumed>) = 0 [pid 5846] mkdir("./15", 0777 [pid 5842] <... openat resumed>) = 3 [pid 5847] rmdir("./14/file1" [pid 5846] <... mkdir resumed>) = 0 [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5847] <... rmdir resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5842] <... ioctl resumed>) = 0 [pid 5846] <... openat resumed>) = 3 [pid 5842] close(3 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5842] <... close resumed>) = 0 [pid 5846] <... ioctl resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] close(3) = 0 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5952 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5952 attached [pid 5847] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5953 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5952] set_robust_list(0x55558e440660, 24 [pid 5847] newfstatat(AT_FDCWD, "./14/binderfs", [pid 5952] <... set_robust_list resumed>) = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5953 attached [pid 5952] chdir("./14" [pid 5847] unlink("./14/binderfs" [pid 5952] <... chdir resumed>) = 0 [pid 5847] <... unlink resumed>) = 0 [pid 5953] set_robust_list(0x55558e440660, 24 [pid 5847] getdents64(3, [pid 5952] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5952] <... prctl resumed>) = 0 [pid 5847] close(3 [pid 5952] setpgid(0, 0 [pid 5847] <... close resumed>) = 0 [pid 5952] <... setpgid resumed>) = 0 [pid 5847] rmdir("./14" [pid 5953] <... set_robust_list resumed>) = 0 [pid 5952] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... rmdir resumed>) = 0 [pid 5953] chdir("./15" [pid 5952] <... openat resumed>) = 3 [pid 5847] mkdir("./15", 0777 [pid 5953] <... chdir resumed>) = 0 [pid 5953] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] <... mkdir resumed>) = 0 [pid 5953] <... prctl resumed>) = 0 [pid 5953] setpgid(0, 0) = 0 [pid 5953] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5952] write(3, "1000", 4 [pid 5847] <... openat resumed>) = 3 [pid 5953] <... openat resumed>) = 3 [pid 5952] <... write resumed>) = 4 [pid 5847] ioctl(3, LOOP_CLR_FD [pid 5952] close(3 [pid 5847] <... ioctl resumed>) = 0 [pid 5953] write(3, "1000", 4 [pid 5952] <... close resumed>) = 0 [pid 5847] close(3 [pid 5952] symlink("/dev/binderfs", "./binderfs" [pid 5847] <... close resumed>) = 0 [pid 5953] <... write resumed>) = 4 [pid 5952] <... symlink resumed>) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5953] close(3 [pid 5952] write(1, "executing program\n", 18executing program [pid 5953] <... close resumed>) = 0 [pid 5952] <... write resumed>) = 18 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5954 ./strace-static-x86_64: Process 5954 attached [pid 5953] symlink("/dev/binderfs", "./binderfs" [pid 5952] memfd_create("syzkaller", 0 [pid 5954] set_robust_list(0x55558e440660, 24 [pid 5953] <... symlink resumed>) = 0 [pid 5952] <... memfd_create resumed>) = 3 [pid 5953] write(1, "executing program\n", 18 [pid 5952] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program [pid 5953] <... write resumed>) = 18 [pid 5952] <... mmap resumed>) = 0x7f101fc00000 [pid 5953] memfd_create("syzkaller", 0 [pid 5954] <... set_robust_list resumed>) = 0 [pid 5953] <... memfd_create resumed>) = 3 [pid 5954] chdir("./15" [pid 5953] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5951] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5953] <... mmap resumed>) = 0x7f101fc00000 [pid 5954] <... chdir resumed>) = 0 [pid 5954] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5954] setpgid(0, 0) = 0 [pid 5954] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5954] write(3, "1000", 4) = 4 [pid 5954] close(3) = 0 [pid 5954] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5954] write(1, "executing program\n", 18) = 18 [pid 5954] memfd_create("syzkaller", 0) = 3 [pid 5954] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5950] <... write resumed>) = 16777216 [pid 5950] munmap(0x7f101fc00000, 138412032 [pid 5949] <... write resumed>) = 16777216 [pid 5949] munmap(0x7f101fc00000, 138412032 [pid 5950] <... munmap resumed>) = 0 [pid 5949] <... munmap resumed>) = 0 [pid 5950] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5949] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5950] <... openat resumed>) = 4 [pid 5949] ioctl(4, LOOP_SET_FD, 3 [pid 5950] ioctl(4, LOOP_SET_FD, 3 [pid 5949] <... ioctl resumed>) = 0 [pid 5949] close(3) = 0 [pid 5949] close(4) = 0 [pid 5949] mkdir("./file1", 0777) = 0 [pid 5949] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5950] <... ioctl resumed>) = 0 [pid 5950] close(3) = 0 [ 117.463317][ T5949] loop1: detected capacity change from 0 to 32768 [ 117.473713][ T5950] loop2: detected capacity change from 0 to 32768 [pid 5950] close(4) = 0 [pid 5949] <... mount resumed>) = 0 [pid 5950] mkdir("./file1", 0777 [pid 5949] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5949] chdir("./file1") = 0 [pid 5949] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5950] <... mkdir resumed>) = 0 [pid 5949] exit_group(0) = ? [pid 5950] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5949] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5949, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=21 /* 0.21 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5843] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5950] <... mount resumed>) = 0 [pid 5950] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] <... umount2 resumed>) = 0 [pid 5843] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5950] <... openat resumed>) = 3 [pid 5843] newfstatat(AT_FDCWD, "./15/file1", [pid 5950] chdir("./file1") = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5950] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5843] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./15/file1") = 0 [pid 5843] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./15/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./15") = 0 [pid 5843] mkdir("./16", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5955 ./strace-static-x86_64: Process 5955 attached [pid 5950] exit_group(0) = ? [pid 5955] set_robust_list(0x55558e440660, 24 [pid 5953] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5950] +++ exited with 0 +++ [pid 5955] <... set_robust_list resumed>) = 0 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5950, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5955] chdir("./16" [pid 5844] <... restart_syscall resumed>) = 0 [pid 5955] <... chdir resumed>) = 0 [pid 5844] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5955] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5955] <... prctl resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5955] setpgid(0, 0) = 0 [pid 5844] <... openat resumed>) = 3 [pid 5955] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] newfstatat(3, "", [pid 5955] <... openat resumed>) = 3 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5955] write(3, "1000", 4 [pid 5844] getdents64(3, [pid 5955] <... write resumed>) = 4 [pid 5955] close(3 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5955] <... close resumed>) = 0 [pid 5955] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5952] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5955] write(1, "executing program\n", 18executing program ) = 18 [pid 5955] memfd_create("syzkaller", 0) = 3 [pid 5955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5844] <... umount2 resumed>) = 0 [pid 5955] <... mmap resumed>) = 0x7f101fc00000 [pid 5844] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./14/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5954] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5844] rmdir("./14/file1") = 0 [pid 5844] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./14/binderfs") = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [pid 5844] rmdir("./14") = 0 [pid 5844] mkdir("./15", 0777) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3 [pid 5951] <... write resumed>) = 16777216 [pid 5951] munmap(0x7f101fc00000, 138412032) = 0 [pid 5951] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5951] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5951] close(3) = 0 [pid 5951] close(4) = 0 [pid 5951] mkdir("./file1", 0777) = 0 [ 118.167070][ T5951] loop3: detected capacity change from 0 to 32768 [pid 5951] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5951] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5955] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5951] <... openat resumed>) = 3 [pid 5951] chdir("./file1") = 0 [pid 5951] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5951] exit_group(0) = ? [pid 5951] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5951, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5845] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./16/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./16/file1") = 0 [pid 5845] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./16/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./16") = 0 [pid 5845] mkdir("./17", 0777 [pid 5953] <... write resumed>) = 16777216 [pid 5845] <... mkdir resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5953] munmap(0x7f101fc00000, 138412032 [pid 5845] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5956 attached [pid 5952] <... write resumed>) = 16777216 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5956 [pid 5845] <... ioctl resumed>) = 0 [pid 5845] close(3) = 0 [pid 5956] set_robust_list(0x55558e440660, 24 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5957 attached [pid 5956] <... set_robust_list resumed>) = 0 [pid 5952] munmap(0x7f101fc00000, 138412032 [pid 5956] chdir("./15") = 0 [pid 5956] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5957] set_robust_list(0x55558e440660, 24 [pid 5956] <... prctl resumed>) = 0 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5957 [pid 5956] setpgid(0, 0) = 0 [pid 5956] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5957] <... set_robust_list resumed>) = 0 [pid 5956] write(3, "1000", 4) = 4 [pid 5957] chdir("./17" [pid 5956] close(3 [pid 5957] <... chdir resumed>) = 0 [pid 5956] <... close resumed>) = 0 [pid 5957] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5956] symlink("/dev/binderfs", "./binderfs" [pid 5957] <... prctl resumed>) = 0 [pid 5956] <... symlink resumed>) = 0 [pid 5957] setpgid(0, 0 [pid 5956] write(1, "executing program\n", 18executing program [pid 5957] <... setpgid resumed>) = 0 [pid 5956] <... write resumed>) = 18 [pid 5957] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5956] memfd_create("syzkaller", 0 [pid 5957] <... openat resumed>) = 3 [pid 5956] <... memfd_create resumed>) = 3 [pid 5957] write(3, "1000", 4 [pid 5956] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5953] <... munmap resumed>) = 0 [pid 5957] <... write resumed>) = 4 [pid 5956] <... mmap resumed>) = 0x7f101fc00000 [pid 5957] close(3 [pid 5953] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5957] <... close resumed>) = 0 [pid 5952] <... munmap resumed>) = 0 [pid 5957] symlink("/dev/binderfs", "./binderfs" [pid 5953] <... openat resumed>) = 4 [pid 5957] <... symlink resumed>) = 0 [pid 5953] ioctl(4, LOOP_SET_FD, 3executing program [pid 5954] <... write resumed>) = 16777216 [pid 5957] write(1, "executing program\n", 18 [pid 5954] munmap(0x7f101fc00000, 138412032 [pid 5952] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5957] <... write resumed>) = 18 [pid 5952] <... openat resumed>) = 4 [pid 5957] memfd_create("syzkaller", 0 [pid 5952] ioctl(4, LOOP_SET_FD, 3 [pid 5957] <... memfd_create resumed>) = 3 [pid 5957] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5953] <... ioctl resumed>) = 0 [pid 5957] <... mmap resumed>) = 0x7f101fc00000 [pid 5954] <... munmap resumed>) = 0 [pid 5953] close(3 [pid 5952] <... ioctl resumed>) = 0 [pid 5953] <... close resumed>) = 0 [pid 5952] close(3 [pid 5953] close(4 [pid 5952] <... close resumed>) = 0 [pid 5953] <... close resumed>) = 0 [pid 5952] close(4 [pid 5953] mkdir("./file1", 0777 [pid 5952] <... close resumed>) = 0 [pid 5953] <... mkdir resumed>) = 0 [pid 5952] mkdir("./file1", 0777 [pid 5953] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5952] <... mkdir resumed>) = 0 [ 118.549397][ T5953] loop4: detected capacity change from 0 to 32768 [ 118.561429][ T5952] loop0: detected capacity change from 0 to 32768 [pid 5952] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5954] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5954] ioctl(4, LOOP_SET_FD, 3 [pid 5952] <... mount resumed>) = 0 [pid 5952] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5953] <... mount resumed>) = 0 [pid 5953] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5952] <... openat resumed>) = 3 [pid 5953] <... openat resumed>) = 3 [pid 5952] chdir("./file1" [pid 5954] <... ioctl resumed>) = 0 [pid 5953] chdir("./file1" [pid 5952] <... chdir resumed>) = 0 [pid 5954] close(3 [pid 5953] <... chdir resumed>) = 0 [pid 5952] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5954] <... close resumed>) = 0 [pid 5953] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5954] close(4 [pid 5952] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5954] <... close resumed>) = 0 [pid 5953] exit_group(0 [pid 5952] exit_group(0) = ? [pid 5953] <... exit_group resumed>) = ? [pid 5954] mkdir("./file1", 0777 [pid 5952] +++ exited with 0 +++ [pid 5953] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5953, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5952, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- [pid 5954] <... mkdir resumed>) = 0 [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5842] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5954] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] <... restart_syscall resumed>) = 0 [pid 5842] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW [ 118.616130][ T5954] loop5: detected capacity change from 0 to 32768 [pid 5846] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5954] <... mount resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5954] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5954] <... openat resumed>) = 3 [pid 5846] <... openat resumed>) = 3 [pid 5842] <... openat resumed>) = 3 [pid 5842] newfstatat(3, "", [pid 5954] chdir("./file1" [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5954] <... chdir resumed>) = 0 [pid 5842] getdents64(3, [pid 5846] newfstatat(3, "", [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5954] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5954] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5846] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5954] exit_group(0) = ? [pid 5954] +++ exited with 0 +++ [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./14/file1", [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5954, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=23 /* 0.23 s */} --- [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5842] umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5847] <... restart_syscall resumed>) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5847] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... openat resumed>) = 4 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(4, "", [pid 5847] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] <... openat resumed>) = 3 [pid 5842] getdents64(4, [pid 5847] newfstatat(3, "", [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] <... umount2 resumed>) = 0 [pid 5842] getdents64(4, [pid 5847] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] close(4 [pid 5846] newfstatat(AT_FDCWD, "./15/file1", [pid 5842] <... close resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] rmdir("./14/file1" [pid 5846] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... rmdir resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... openat resumed>) = 4 [pid 5842] newfstatat(AT_FDCWD, "./14/binderfs", [pid 5846] newfstatat(4, "", [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] unlink("./14/binderfs" [pid 5846] getdents64(4, [pid 5842] <... unlink resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(3, [pid 5846] getdents64(4, [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(3 [pid 5846] close(4 [pid 5842] <... close resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5842] rmdir("./14" [pid 5846] rmdir("./15/file1" [pid 5842] <... rmdir resumed>) = 0 [pid 5846] <... rmdir resumed>) = 0 [pid 5842] mkdir("./15", 0777 [pid 5846] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... mkdir resumed>) = 0 [pid 5847] <... umount2 resumed>) = 0 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5846] newfstatat(AT_FDCWD, "./15/binderfs", [pid 5842] <... openat resumed>) = 3 [pid 5847] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] unlink("./15/binderfs" [pid 5847] newfstatat(AT_FDCWD, "./15/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] <... unlink resumed>) = 0 [pid 5847] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] getdents64(3, [pid 5842] <... ioctl resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3 [pid 5846] close(3 [pid 5842] <... close resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] rmdir("./15" [pid 5847] <... openat resumed>) = 4 [pid 5846] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 5958 attached [pid 5846] mkdir("./16", 0777 [pid 5847] newfstatat(4, "", [pid 5846] <... mkdir resumed>) = 0 [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5958 [pid 5958] set_robust_list(0x55558e440660, 24) = 0 [pid 5958] chdir("./15") = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5958] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] <... openat resumed>) = 3 [pid 5958] <... prctl resumed>) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5958] setpgid(0, 0 [pid 5846] <... ioctl resumed>) = 0 [pid 5958] <... setpgid resumed>) = 0 [pid 5846] close(3 [pid 5847] getdents64(4, [pid 5958] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] <... close resumed>) = 0 [pid 5958] <... openat resumed>) = 3 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5959 attached [pid 5958] write(3, "1000", 4 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5959] set_robust_list(0x55558e440660, 24 [pid 5958] <... write resumed>) = 4 [pid 5958] close(3) = 0 [pid 5958] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5959 executing program [pid 5959] <... set_robust_list resumed>) = 0 [pid 5958] write(1, "executing program\n", 18 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4 [pid 5958] <... write resumed>) = 18 [pid 5958] memfd_create("syzkaller", 0) = 3 [pid 5958] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] <... close resumed>) = 0 [pid 5958] <... mmap resumed>) = 0x7f101fc00000 [pid 5847] rmdir("./15/file1" [pid 5959] chdir("./16" [pid 5847] <... rmdir resumed>) = 0 [pid 5847] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5959] <... chdir resumed>) = 0 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5959] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5847] newfstatat(AT_FDCWD, "./15/binderfs", [pid 5959] setpgid(0, 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5959] <... setpgid resumed>) = 0 [pid 5847] unlink("./15/binderfs") = 0 [pid 5959] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5955] <... write resumed>) = 16777216 [pid 5847] getdents64(3, [pid 5959] <... openat resumed>) = 3 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./15" [pid 5959] write(3, "1000", 4 [pid 5847] <... rmdir resumed>) = 0 [pid 5959] <... write resumed>) = 4 [pid 5847] mkdir("./16", 0777 [pid 5955] munmap(0x7f101fc00000, 138412032 [pid 5959] close(3) = 0 [pid 5959] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5847] <... mkdir resumed>) = 0 executing program [pid 5959] write(1, "executing program\n", 18) = 18 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5959] memfd_create("syzkaller", 0) = 3 [pid 5955] <... munmap resumed>) = 0 [pid 5847] ioctl(3, LOOP_CLR_FD [pid 5959] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5847] <... ioctl resumed>) = 0 [pid 5847] close(3) = 0 [pid 5956] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5960 attached , child_tidptr=0x55558e440650) = 5960 [pid 5960] set_robust_list(0x55558e440660, 24 [pid 5955] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5960] <... set_robust_list resumed>) = 0 [pid 5957] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5955] <... openat resumed>) = 4 [pid 5960] chdir("./16" [pid 5955] ioctl(4, LOOP_SET_FD, 3 [pid 5960] <... chdir resumed>) = 0 [pid 5960] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5960] setpgid(0, 0) = 0 [pid 5955] <... ioctl resumed>) = 0 [pid 5960] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5955] close(3) = 0 [pid 5960] <... openat resumed>) = 3 [pid 5955] close(4 [pid 5960] write(3, "1000", 4) = 4 [pid 5955] <... close resumed>) = 0 [pid 5960] close(3 [pid 5955] mkdir("./file1", 0777 [pid 5960] <... close resumed>) = 0 [ 119.023091][ T5955] loop1: detected capacity change from 0 to 32768 [pid 5960] symlink("/dev/binderfs", "./binderfs" [pid 5955] <... mkdir resumed>) = 0 [pid 5960] <... symlink resumed>) = 0 [pid 5955] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5960] write(1, "executing program\n", 18executing program ) = 18 [pid 5960] memfd_create("syzkaller", 0) = 3 [pid 5960] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5955] <... mount resumed>) = 0 [pid 5955] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5955] chdir("./file1") = 0 [pid 5955] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5955] exit_group(0) = ? [pid 5955] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5955, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=37 /* 0.37 s */} --- [pid 5843] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5843] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./16/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5958] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./16/file1") = 0 [pid 5843] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./16/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./16") = 0 [pid 5843] mkdir("./17", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5961 ./strace-static-x86_64: Process 5961 attached [pid 5961] set_robust_list(0x55558e440660, 24) = 0 [pid 5961] chdir("./17" [pid 5959] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5961] <... chdir resumed>) = 0 [pid 5961] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5961] setpgid(0, 0) = 0 [pid 5961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5961] write(3, "1000", 4) = 4 [pid 5961] close(3) = 0 [pid 5961] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5961] write(1, "executing program\n", 18) = 18 [pid 5961] memfd_create("syzkaller", 0) = 3 [pid 5961] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5960] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5956] <... write resumed>) = 16777216 [pid 5957] <... write resumed>) = 16777216 [pid 5956] munmap(0x7f101fc00000, 138412032 [pid 5957] munmap(0x7f101fc00000, 138412032) = 0 [pid 5956] <... munmap resumed>) = 0 [pid 5956] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5956] ioctl(4, LOOP_SET_FD, 3 [pid 5957] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5957] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5957] close(3) = 0 [pid 5957] close(4 [pid 5956] <... ioctl resumed>) = 0 [pid 5961] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5956] close(3) = 0 [pid 5956] close(4) = 0 [pid 5956] mkdir("./file1", 0777) = 0 [pid 5957] <... close resumed>) = 0 [pid 5957] mkdir("./file1", 0777) = 0 [pid 5956] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [ 119.873268][ T5956] loop2: detected capacity change from 0 to 32768 [ 119.882337][ T5957] loop3: detected capacity change from 0 to 32768 [pid 5957] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5956] <... mount resumed>) = 0 [pid 5956] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5956] chdir("./file1") = 0 [pid 5956] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5956] exit_group(0) = ? [pid 5956] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5956, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=25 /* 0.25 s */} --- [pid 5957] <... mount resumed>) = 0 [pid 5957] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5957] chdir("./file1") = 0 [pid 5957] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5957] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5957] exit_group(0) = ? [pid 5957] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5957, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] <... restart_syscall resumed>) = 0 [pid 5845] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", [pid 5844] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... openat resumed>) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5844] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5844] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./15/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] <... umount2 resumed>) = 0 [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, [pid 5845] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5958] <... write resumed>) = 16777216 [pid 5845] newfstatat(AT_FDCWD, "./17/file1", [pid 5844] getdents64(4, [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4 [pid 5845] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] <... close resumed>) = 0 [pid 5845] openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] rmdir("./15/file1" [pid 5845] <... openat resumed>) = 4 [pid 5958] munmap(0x7f101fc00000, 138412032 [pid 5845] newfstatat(4, "", [pid 5844] <... rmdir resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] getdents64(4, [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./15/binderfs", [pid 5845] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4 [pid 5844] unlink("./15/binderfs") = 0 [pid 5845] <... close resumed>) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] rmdir("./17/file1" [pid 5844] close(3 [pid 5845] <... rmdir resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5845] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] rmdir("./15" [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... rmdir resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] mkdir("./16", 0777 [pid 5845] unlink("./17/binderfs" [pid 5844] <... mkdir resumed>) = 0 [pid 5845] <... unlink resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] <... openat resumed>) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5845] close(3) = 0 [pid 5844] <... ioctl resumed>) = 0 [pid 5845] rmdir("./17" [pid 5844] close(3) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5962 ./strace-static-x86_64: Process 5962 attached [pid 5845] mkdir("./18", 0777) = 0 [pid 5962] set_robust_list(0x55558e440660, 24) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5962] chdir("./16" [pid 5845] <... openat resumed>) = 3 [pid 5962] <... chdir resumed>) = 0 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5962] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] close(3) = 0 [pid 5962] <... prctl resumed>) = 0 [pid 5962] setpgid(0, 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5963 attached [pid 5962] <... setpgid resumed>) = 0 [pid 5962] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5963 [pid 5963] set_robust_list(0x55558e440660, 24 [pid 5962] <... openat resumed>) = 3 [pid 5963] <... set_robust_list resumed>) = 0 [pid 5963] chdir("./18") = 0 [pid 5963] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5962] write(3, "1000", 4 [pid 5963] <... prctl resumed>) = 0 [pid 5962] <... write resumed>) = 4 [pid 5963] setpgid(0, 0 [pid 5962] close(3 [pid 5963] <... setpgid resumed>) = 0 [pid 5962] <... close resumed>) = 0 [pid 5963] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5962] symlink("/dev/binderfs", "./binderfs" [pid 5963] write(3, "1000", 4 [pid 5962] <... symlink resumed>) = 0 [pid 5958] <... munmap resumed>) = 0 [pid 5958] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5962] write(1, "executing program\n", 18 [pid 5963] <... write resumed>) = 4 [pid 5958] <... openat resumed>) = 4 [pid 5958] ioctl(4, LOOP_SET_FD, 3executing program [pid 5963] close(3 [pid 5962] <... write resumed>) = 18 [pid 5963] <... close resumed>) = 0 [pid 5962] memfd_create("syzkaller", 0 [pid 5959] <... write resumed>) = 16777216 [pid 5962] <... memfd_create resumed>) = 3 [pid 5959] munmap(0x7f101fc00000, 138412032 [pid 5963] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5963] write(1, "executing program\n", 18 [pid 5962] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program [pid 5963] <... write resumed>) = 18 [pid 5962] <... mmap resumed>) = 0x7f101fc00000 [pid 5963] memfd_create("syzkaller", 0) = 3 [pid 5958] <... ioctl resumed>) = 0 [pid 5963] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5958] close(3 [pid 5963] <... mmap resumed>) = 0x7f101fc00000 [pid 5958] <... close resumed>) = 0 [pid 5958] close(4) = 0 [pid 5958] mkdir("./file1", 0777) = 0 [ 120.125462][ T5958] loop0: detected capacity change from 0 to 32768 [pid 5958] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5959] <... munmap resumed>) = 0 [pid 5959] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5958] <... mount resumed>) = 0 [pid 5959] <... openat resumed>) = 4 [pid 5959] ioctl(4, LOOP_SET_FD, 3 [pid 5958] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5958] chdir("./file1") = 0 [pid 5958] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5958] exit_group(0) = ? [pid 5958] +++ exited with 0 +++ [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5958, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- [pid 5842] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5959] <... ioctl resumed>) = 0 [pid 5842] getdents64(3, [pid 5959] close(3 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5959] <... close resumed>) = 0 [pid 5842] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5959] close(4) = 0 [pid 5959] mkdir("./file1", 0777) = 0 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./15/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 120.198523][ T5959] loop4: detected capacity change from 0 to 32768 [pid 5842] openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, [pid 5959] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./15/file1") = 0 [pid 5842] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./15/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./15") = 0 [pid 5959] <... mount resumed>) = 0 [pid 5959] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5959] chdir("./file1") = 0 [pid 5959] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5959] exit_group(0 [pid 5842] mkdir("./16", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5959] <... exit_group resumed>) = ? [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5964 ./strace-static-x86_64: Process 5964 attached [pid 5959] +++ exited with 0 +++ [pid 5964] set_robust_list(0x55558e440660, 24 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5959, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=30 /* 0.30 s */} --- [pid 5846] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", [pid 5964] <... set_robust_list resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, [pid 5964] chdir("./16" [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5964] <... chdir resumed>) = 0 [pid 5960] <... write resumed>) = 16777216 [pid 5846] <... umount2 resumed>) = 0 [pid 5964] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5964] <... prctl resumed>) = 0 [pid 5960] munmap(0x7f101fc00000, 138412032 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5964] setpgid(0, 0 [pid 5846] newfstatat(AT_FDCWD, "./16/file1", [pid 5964] <... setpgid resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5964] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", [pid 5964] <... openat resumed>) = 3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4) = 0 [pid 5846] rmdir("./16/file1" [pid 5964] write(3, "1000", 4) = 4 [pid 5964] close(3 [pid 5846] <... rmdir resumed>) = 0 [pid 5964] <... close resumed>) = 0 [pid 5846] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./16/binderfs") = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5846] rmdir("./16") = 0 [pid 5846] mkdir("./17", 0777) = 0 [pid 5964] symlink("/dev/binderfs", "./binderfs" [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5964] <... symlink resumed>) = 0 [pid 5964] write(1, "executing program\n", 18 [pid 5846] <... openat resumed>) = 3 [pid 5960] <... munmap resumed>) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program [pid 5960] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5960] ioctl(4, LOOP_SET_FD, 3 [pid 5964] <... write resumed>) = 18 ./strace-static-x86_64: Process 5965 attached [pid 5964] memfd_create("syzkaller", 0 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5965 [pid 5965] set_robust_list(0x55558e440660, 24 [pid 5964] <... memfd_create resumed>) = 3 [pid 5964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5965] <... set_robust_list resumed>) = 0 [pid 5964] <... mmap resumed>) = 0x7f101fc00000 [pid 5965] chdir("./17") = 0 [pid 5965] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5965] setpgid(0, 0) = 0 [pid 5965] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5960] <... ioctl resumed>) = 0 [ 120.452986][ T5960] loop5: detected capacity change from 0 to 32768 [pid 5960] close(3 [pid 5965] write(3, "1000", 4 [pid 5960] <... close resumed>) = 0 [pid 5965] <... write resumed>) = 4 [pid 5960] close(4) = 0 [pid 5960] mkdir("./file1", 0777 [pid 5965] close(3) = 0 [pid 5960] <... mkdir resumed>) = 0 [pid 5965] symlink("/dev/binderfs", "./binderfs" [pid 5960] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5965] <... symlink resumed>) = 0 [pid 5965] write(1, "executing program\n", 18executing program ) = 18 [pid 5965] memfd_create("syzkaller", 0) = 3 [pid 5965] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5960] <... mount resumed>) = 0 [pid 5960] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5960] chdir("./file1") = 0 [pid 5960] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5960] exit_group(0) = ? [pid 5960] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5960, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5847] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5963] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5962] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] <... umount2 resumed>) = 0 [pid 5847] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./16/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./16/file1") = 0 [pid 5847] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./16/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./16") = 0 [pid 5847] mkdir("./17", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5961] <... write resumed>) = 16777216 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3 [pid 5961] munmap(0x7f101fc00000, 138412032 [pid 5847] <... close resumed>) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5966 ./strace-static-x86_64: Process 5966 attached [pid 5966] set_robust_list(0x55558e440660, 24) = 0 [pid 5966] chdir("./17") = 0 [pid 5966] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5966] setpgid(0, 0) = 0 [pid 5966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5966] write(3, "1000", 4) = 4 [pid 5966] close(3 [pid 5961] <... munmap resumed>) = 0 [pid 5966] <... close resumed>) = 0 [pid 5961] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5966] symlink("/dev/binderfs", "./binderfs" [pid 5961] ioctl(4, LOOP_SET_FD, 3 [pid 5966] <... symlink resumed>) = 0 [pid 5965] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216executing program [pid 5966] write(1, "executing program\n", 18) = 18 [pid 5966] memfd_create("syzkaller", 0) = 3 [pid 5966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5961] <... ioctl resumed>) = 0 [ 120.933046][ T5961] loop1: detected capacity change from 0 to 32768 [pid 5961] close(3) = 0 [pid 5961] close(4) = 0 [pid 5961] mkdir("./file1", 0777) = 0 [pid 5961] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5961] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5964] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5961] chdir("./file1") = 0 [pid 5961] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5961] exit_group(0) = ? [pid 5961] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5961, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=19 /* 0.19 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5843] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5843] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./17/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./17/file1") = 0 [pid 5843] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./17/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./17") = 0 [pid 5843] mkdir("./18", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5967 ./strace-static-x86_64: Process 5967 attached [pid 5967] set_robust_list(0x55558e440660, 24) = 0 executing program [pid 5967] chdir("./18") = 0 [pid 5967] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5967] setpgid(0, 0) = 0 [pid 5967] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5967] write(3, "1000", 4) = 4 [pid 5967] close(3) = 0 [pid 5967] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5967] write(1, "executing program\n", 18) = 18 [pid 5967] memfd_create("syzkaller", 0) = 3 [pid 5967] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5966] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5962] <... write resumed>) = 16777216 [pid 5962] munmap(0x7f101fc00000, 138412032 [pid 5963] <... write resumed>) = 16777216 [pid 5963] munmap(0x7f101fc00000, 138412032 [pid 5962] <... munmap resumed>) = 0 [pid 5963] <... munmap resumed>) = 0 [pid 5962] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5962] ioctl(4, LOOP_SET_FD, 3 [pid 5965] <... write resumed>) = 16777216 [pid 5963] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5962] <... ioctl resumed>) = 0 [pid 5965] munmap(0x7f101fc00000, 138412032 [pid 5963] <... openat resumed>) = 4 [ 121.619764][ T5962] loop2: detected capacity change from 0 to 32768 [pid 5962] close(3 [pid 5963] ioctl(4, LOOP_SET_FD, 3 [pid 5962] <... close resumed>) = 0 [pid 5962] close(4 [pid 5965] <... munmap resumed>) = 0 [pid 5967] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5962] <... close resumed>) = 0 [pid 5965] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5963] <... ioctl resumed>) = 0 [pid 5965] <... openat resumed>) = 4 [pid 5963] close(3 [pid 5962] mkdir("./file1", 0777 [pid 5965] ioctl(4, LOOP_SET_FD, 3 [pid 5963] <... close resumed>) = 0 [ 121.673933][ T5963] loop3: detected capacity change from 0 to 32768 [ 121.712131][ T5965] loop4: detected capacity change from 0 to 32768 [pid 5965] <... ioctl resumed>) = 0 [pid 5963] close(4 [pid 5962] <... mkdir resumed>) = 0 [pid 5963] <... close resumed>) = 0 [pid 5962] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5963] mkdir("./file1", 0777) = 0 [pid 5964] <... write resumed>) = 16777216 [pid 5963] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5965] close(3 [pid 5964] munmap(0x7f101fc00000, 138412032 [pid 5963] <... mount resumed>) = 0 [pid 5962] <... mount resumed>) = 0 [pid 5963] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5962] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5965] <... close resumed>) = 0 [pid 5965] close(4) = 0 [pid 5965] mkdir("./file1", 0777) = 0 [pid 5963] <... openat resumed>) = 3 [pid 5962] <... openat resumed>) = 3 [pid 5963] chdir("./file1" [pid 5962] chdir("./file1") = 0 [pid 5963] <... chdir resumed>) = 0 [pid 5962] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5963] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5962] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5963] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5962] exit_group(0 [pid 5963] exit_group(0 [pid 5962] <... exit_group resumed>) = ? [pid 5965] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5963] <... exit_group resumed>) = ? [pid 5962] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5962, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- [pid 5844] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", [pid 5963] +++ exited with 0 +++ [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5963, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} --- [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5844] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] <... restart_syscall resumed>) = 0 [pid 5845] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5964] <... munmap resumed>) = 0 [pid 5845] <... umount2 resumed>) = 0 [pid 5845] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./18/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./18/file1") = 0 [pid 5845] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./18/binderfs", [pid 5965] <... mount resumed>) = 0 [pid 5964] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... umount2 resumed>) = 0 [pid 5965] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5964] <... openat resumed>) = 4 [pid 5844] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5965] chdir("./file1") = 0 [pid 5964] ioctl(4, LOOP_SET_FD, 3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5965] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5845] unlink("./18/binderfs" [pid 5965] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... unlink resumed>) = 0 [pid 5845] getdents64(3, [pid 5844] newfstatat(AT_FDCWD, "./16/file1", [pid 5965] exit_group(0 [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5965] <... exit_group resumed>) = ? [pid 5845] close(3 [pid 5965] +++ exited with 0 +++ [pid 5845] <... close resumed>) = 0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5965, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=30 /* 0.30 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5845] rmdir("./18" [pid 5846] <... restart_syscall resumed>) = 0 [pid 5846] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] <... rmdir resumed>) = 0 [pid 5845] mkdir("./19", 0777) = 0 [pid 5964] <... ioctl resumed>) = 0 [pid 5844] newfstatat(4, "", [pid 5964] close(3 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5964] <... close resumed>) = 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5844] getdents64(4, [pid 5846] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5964] close(4 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] getdents64(4, [pid 5964] <... close resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5964] mkdir("./file1", 0777 [pid 5846] newfstatat(AT_FDCWD, "./17/file1", [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] close(4 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] <... openat resumed>) = 3 [pid 5844] <... close resumed>) = 0 [pid 5846] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5844] rmdir("./16/file1" [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... ioctl resumed>) = 0 [pid 5846] openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] close(3 [pid 5846] <... openat resumed>) = 4 [pid 5845] <... close resumed>) = 0 [pid 5844] <... rmdir resumed>) = 0 [pid 5846] newfstatat(4, "", [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5968 attached [pid 5964] <... mkdir resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [ 121.856740][ T5964] loop0: detected capacity change from 0 to 32768 [pid 5846] getdents64(4, [pid 5968] set_robust_list(0x55558e440660, 24 [pid 5964] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] getdents64(4, [pid 5844] newfstatat(AT_FDCWD, "./16/binderfs", [pid 5968] <... set_robust_list resumed>) = 0 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5968 [pid 5968] chdir("./19" [pid 5964] <... mount resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5968] <... chdir resumed>) = 0 [pid 5964] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5844] unlink("./16/binderfs" [pid 5968] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5964] <... openat resumed>) = 3 [pid 5968] <... prctl resumed>) = 0 [pid 5964] chdir("./file1" [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] <... unlink resumed>) = 0 [pid 5964] <... chdir resumed>) = 0 [pid 5844] getdents64(3, [pid 5968] setpgid(0, 0 [pid 5964] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5968] <... setpgid resumed>) = 0 [pid 5964] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5964] exit_group(0 [pid 5844] close(3 [pid 5968] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5964] <... exit_group resumed>) = ? [pid 5846] close(4 [pid 5844] <... close resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5846] rmdir("./17/file1" [pid 5968] <... openat resumed>) = 3 [pid 5844] rmdir("./16" [pid 5846] <... rmdir resumed>) = 0 [pid 5846] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./17/binderfs") = 0 [pid 5846] getdents64(3, [pid 5964] +++ exited with 0 +++ [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5964, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=27 /* 0.27 s */} --- [pid 5846] rmdir("./17" [pid 5842] restart_syscall(<... resuming interrupted clone ...> [pid 5968] write(3, "1000", 4 [pid 5846] <... rmdir resumed>) = 0 [pid 5844] <... rmdir resumed>) = 0 [pid 5968] <... write resumed>) = 4 [pid 5844] mkdir("./17", 0777 [pid 5842] <... restart_syscall resumed>) = 0 [pid 5968] close(3 [pid 5844] <... mkdir resumed>) = 0 [pid 5842] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5968] <... close resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5968] symlink("/dev/binderfs", "./binderfs" [pid 5846] mkdir("./18", 0777 [pid 5842] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5968] <... symlink resumed>) = 0 [pid 5846] <... mkdir resumed>) = 0 executing program [pid 5844] <... openat resumed>) = 3 [pid 5842] <... openat resumed>) = 3 [pid 5968] write(1, "executing program\n", 18 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5842] newfstatat(3, "", [pid 5846] <... openat resumed>) = 3 [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD [pid 5842] getdents64(3, [pid 5968] <... write resumed>) = 18 [pid 5846] <... ioctl resumed>) = 0 [pid 5844] <... ioctl resumed>) = 0 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5968] memfd_create("syzkaller", 0 [pid 5846] close(3 [pid 5844] close(3 [pid 5842] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5968] <... memfd_create resumed>) = 3 [pid 5968] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... close resumed>) = 0 ./strace-static-x86_64: Process 5969 attached [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5970 attached [pid 5969] set_robust_list(0x55558e440660, 24 [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5970 [pid 5842] <... umount2 resumed>) = 0 [pid 5969] <... set_robust_list resumed>) = 0 [pid 5842] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) executing program [pid 5969] chdir("./17" [pid 5968] <... mmap resumed>) = 0x7f101fc00000 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5969 [pid 5969] <... chdir resumed>) = 0 [pid 5842] newfstatat(AT_FDCWD, "./16/file1", [pid 5969] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5970] set_robust_list(0x55558e440660, 24 [pid 5969] <... prctl resumed>) = 0 [pid 5842] umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5970] <... set_robust_list resumed>) = 0 [pid 5969] setpgid(0, 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5970] chdir("./18" [pid 5969] <... setpgid resumed>) = 0 [pid 5842] openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5969] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] <... openat resumed>) = 4 [pid 5969] <... openat resumed>) = 3 [pid 5969] write(3, "1000", 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5970] <... chdir resumed>) = 0 [pid 5969] <... write resumed>) = 4 [pid 5842] getdents64(4, [pid 5970] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5969] close(3 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5970] <... prctl resumed>) = 0 [pid 5969] <... close resumed>) = 0 [pid 5842] getdents64(4, [pid 5970] setpgid(0, 0 [pid 5969] symlink("/dev/binderfs", "./binderfs" [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5970] <... setpgid resumed>) = 0 [pid 5969] <... symlink resumed>) = 0 [pid 5842] close(4 [pid 5970] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5969] write(1, "executing program\n", 18 [pid 5842] <... close resumed>) = 0 [pid 5969] <... write resumed>) = 18 [pid 5842] rmdir("./16/file1" [pid 5969] memfd_create("syzkaller", 0 [pid 5842] <... rmdir resumed>) = 0 [pid 5970] <... openat resumed>) = 3 [pid 5969] <... memfd_create resumed>) = 3 [pid 5842] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5970] write(3, "1000", 4 [pid 5969] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5970] <... write resumed>) = 4 [pid 5969] <... mmap resumed>) = 0x7f101fc00000 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5970] close(3) = 0 [pid 5842] newfstatat(AT_FDCWD, "./16/binderfs", [pid 5970] symlink("/dev/binderfs", "./binderfs" [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5970] <... symlink resumed>) = 0 [pid 5842] unlink("./16/binderfs"executing program [pid 5970] write(1, "executing program\n", 18 [pid 5842] <... unlink resumed>) = 0 [pid 5970] <... write resumed>) = 18 [pid 5970] memfd_create("syzkaller", 0 [pid 5842] getdents64(3, [pid 5970] <... memfd_create resumed>) = 3 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5970] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] close(3 [pid 5970] <... mmap resumed>) = 0x7f101fc00000 [pid 5842] <... close resumed>) = 0 [pid 5842] rmdir("./16") = 0 [pid 5842] mkdir("./17", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5971 attached , child_tidptr=0x55558e440650) = 5971 [pid 5971] set_robust_list(0x55558e440660, 24) = 0 [pid 5971] chdir("./17") = 0 [pid 5971] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5966] <... write resumed>) = 16777216 [pid 5971] <... prctl resumed>) = 0 [pid 5971] setpgid(0, 0) = 0 [pid 5971] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5966] munmap(0x7f101fc00000, 138412032 [pid 5971] write(3, "1000", 4) = 4 [pid 5971] close(3) = 0 [pid 5971] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5971] write(1, "executing program\n", 18) = 18 [pid 5971] memfd_create("syzkaller", 0) = 3 [pid 5971] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5966] <... munmap resumed>) = 0 [pid 5971] <... mmap resumed>) = 0x7f101fc00000 [pid 5966] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5966] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5966] close(3) = 0 [pid 5966] close(4) = 0 [pid 5966] mkdir("./file1", 0777) = 0 [ 122.272467][ T5966] loop5: detected capacity change from 0 to 32768 [pid 5966] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5966] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5966] chdir("./file1") = 0 [pid 5966] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5966] exit_group(0) = ? [pid 5966] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5966, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=24 /* 0.24 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5847] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./17/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./17/file1") = 0 [pid 5847] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] unlink("./17/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./17") = 0 [pid 5970] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] mkdir("./18", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5969] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5968] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] <... openat resumed>) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5972 ./strace-static-x86_64: Process 5972 attached [pid 5972] set_robust_list(0x55558e440660, 24) = 0 [pid 5972] chdir("./18") = 0 [pid 5972] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5972] setpgid(0, 0) = 0 [pid 5972] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5972] write(3, "1000", 4) = 4 [pid 5972] close(3) = 0 [pid 5972] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5972] write(1, "executing program\n", 18) = 18 [pid 5972] memfd_create("syzkaller", 0) = 3 [pid 5972] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5967] <... write resumed>) = 16777216 [pid 5967] munmap(0x7f101fc00000, 138412032) = 0 [pid 5967] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5967] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5971] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5967] close(3) = 0 [pid 5967] close(4) = 0 [pid 5967] mkdir("./file1", 0777) = 0 [ 122.703778][ T5967] loop1: detected capacity change from 0 to 32768 [pid 5967] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5967] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5967] chdir("./file1") = 0 [pid 5967] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5967] exit_group(0) = ? [pid 5967] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5967, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=31 /* 0.31 s */} --- [pid 5843] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5843] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./18/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4) = 0 [pid 5843] rmdir("./18/file1") = 0 [pid 5843] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./18/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./18") = 0 [pid 5843] mkdir("./19", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5973 ./strace-static-x86_64: Process 5973 attached [pid 5973] set_robust_list(0x55558e440660, 24) = 0 [pid 5973] chdir("./19" [pid 5972] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5973] <... chdir resumed>) = 0 [pid 5973] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5973] setpgid(0, 0) = 0 [pid 5973] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5973] write(3, "1000", 4) = 4 [pid 5973] close(3) = 0 [pid 5973] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5973] write(1, "executing program\n", 18) = 18 [pid 5973] memfd_create("syzkaller", 0) = 3 [pid 5973] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5968] <... write resumed>) = 16777216 [pid 5968] munmap(0x7f101fc00000, 138412032) = 0 [pid 5970] <... write resumed>) = 16777216 [pid 5969] <... write resumed>) = 16777216 [pid 5968] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5968] ioctl(4, LOOP_SET_FD, 3 [pid 5970] munmap(0x7f101fc00000, 138412032 [pid 5969] munmap(0x7f101fc00000, 138412032 [pid 5968] <... ioctl resumed>) = 0 [pid 5968] close(3) = 0 [pid 5968] close(4) = 0 [pid 5968] mkdir("./file1", 0777) = 0 [ 123.307742][ T5968] loop3: detected capacity change from 0 to 32768 [pid 5968] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5969] <... munmap resumed>) = 0 [pid 5970] <... munmap resumed>) = 0 [pid 5969] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5970] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5969] ioctl(4, LOOP_SET_FD, 3 [pid 5968] <... mount resumed>) = 0 [pid 5968] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5968] chdir("./file1") = 0 [pid 5968] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5968] exit_group(0) = ? [pid 5970] <... openat resumed>) = 4 [pid 5968] +++ exited with 0 +++ [pid 5970] ioctl(4, LOOP_SET_FD, 3 [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5968, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5970] <... ioctl resumed>) = 0 [pid 5969] <... ioctl resumed>) = 0 [pid 5970] close(3 [pid 5969] close(3 [pid 5845] <... umount2 resumed>) = 0 [pid 5970] <... close resumed>) = 0 [pid 5969] <... close resumed>) = 0 [pid 5845] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5970] close(4 [pid 5969] close(4 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5969] <... close resumed>) = 0 [ 123.385086][ T5969] loop2: detected capacity change from 0 to 32768 [ 123.394111][ T5970] loop4: detected capacity change from 0 to 32768 [pid 5845] newfstatat(AT_FDCWD, "./19/file1", [pid 5970] <... close resumed>) = 0 [pid 5969] mkdir("./file1", 0777 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5970] mkdir("./file1", 0777 [pid 5845] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5969] <... mkdir resumed>) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5970] <... mkdir resumed>) = 0 [pid 5969] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5970] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] openat(AT_FDCWD, "./19/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./19/file1" [pid 5969] <... mount resumed>) = 0 [pid 5845] <... rmdir resumed>) = 0 [pid 5969] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5845] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5969] <... openat resumed>) = 3 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5969] chdir("./file1" [pid 5845] newfstatat(AT_FDCWD, "./19/binderfs", [pid 5969] <... chdir resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5969] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5845] unlink("./19/binderfs" [pid 5969] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... unlink resumed>) = 0 [pid 5971] <... write resumed>) = 16777216 [pid 5969] exit_group(0) = ? [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./19") = 0 [pid 5969] +++ exited with 0 +++ [pid 5845] mkdir("./20", 0777 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5969, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=25 /* 0.25 s */} --- [pid 5845] <... mkdir resumed>) = 0 [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5844] <... restart_syscall resumed>) = 0 [pid 5844] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] <... openat resumed>) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5844] newfstatat(3, "", [pid 5845] <... ioctl resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] close(3 [pid 5844] getdents64(3, [pid 5845] <... close resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5975 attached [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5975 [pid 5975] set_robust_list(0x55558e440660, 24) = 0 [pid 5970] <... mount resumed>) = 0 [pid 5844] <... umount2 resumed>) = 0 [pid 5975] chdir("./20" [pid 5971] munmap(0x7f101fc00000, 138412032 [pid 5970] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5844] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5975] <... chdir resumed>) = 0 [pid 5970] <... openat resumed>) = 3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./17/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5975] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5970] chdir("./file1" [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5975] <... prctl resumed>) = 0 [pid 5970] <... chdir resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5975] setpgid(0, 0 [pid 5970] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5844] <... openat resumed>) = 4 [pid 5975] <... setpgid resumed>) = 0 [pid 5970] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5975] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5970] exit_group(0 [pid 5844] getdents64(4, [pid 5975] <... openat resumed>) = 3 [pid 5970] <... exit_group resumed>) = ? [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4 [pid 5970] +++ exited with 0 +++ [pid 5844] <... close resumed>) = 0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5970, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- [pid 5975] write(3, "1000", 4 [pid 5844] rmdir("./17/file1"executing program [pid 5975] <... write resumed>) = 4 [pid 5844] <... rmdir resumed>) = 0 [pid 5975] close(3) = 0 [pid 5975] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5975] write(1, "executing program\n", 18) = 18 [pid 5975] memfd_create("syzkaller", 0) = 3 [pid 5975] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5844] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./17/binderfs" [pid 5846] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", [pid 5971] <... munmap resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, [pid 5844] <... unlink resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] getdents64(3, [pid 5971] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5971] <... openat resumed>) = 4 [pid 5844] close(3) = 0 [pid 5844] rmdir("./17" [pid 5971] ioctl(4, LOOP_SET_FD, 3 [pid 5844] <... rmdir resumed>) = 0 [pid 5844] mkdir("./18", 0777 [pid 5846] <... umount2 resumed>) = 0 [pid 5844] <... mkdir resumed>) = 0 [pid 5846] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... openat resumed>) = 3 [pid 5846] newfstatat(AT_FDCWD, "./18/file1", [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] <... ioctl resumed>) = 0 [pid 5846] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] close(3 [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] <... close resumed>) = 0 [pid 5846] openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] <... openat resumed>) = 4 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5976 ./strace-static-x86_64: Process 5976 attached [ 123.565234][ T5971] loop0: detected capacity change from 0 to 32768 [pid 5971] <... ioctl resumed>) = 0 [pid 5846] newfstatat(4, "", [pid 5971] close(3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5976] set_robust_list(0x55558e440660, 24) = 0 [pid 5976] chdir("./18" [pid 5846] getdents64(4, [pid 5971] <... close resumed>) = 0 [pid 5976] <... chdir resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5971] close(4 [pid 5976] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5971] <... close resumed>) = 0 [pid 5976] setpgid(0, 0 [pid 5971] mkdir("./file1", 0777 [pid 5846] getdents64(4, [pid 5976] <... setpgid resumed>) = 0 [pid 5976] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5971] <... mkdir resumed>) = 0 [pid 5846] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5976] <... openat resumed>) = 3 [pid 5971] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5846] close(4 [pid 5976] write(3, "1000", 4 [pid 5846] <... close resumed>) = 0 [pid 5976] <... write resumed>) = 4 [pid 5976] close(3 [pid 5846] rmdir("./18/file1" [pid 5976] <... close resumed>) = 0 [pid 5976] symlink("/dev/binderfs", "./binderfs" [pid 5846] <... rmdir resumed>) = 0 [pid 5976] <... symlink resumed>) = 0 [pid 5846] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./18/binderfs", executing program [pid 5976] write(1, "executing program\n", 18 [pid 5846] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5976] <... write resumed>) = 18 [pid 5976] memfd_create("syzkaller", 0) = 3 [pid 5976] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5971] <... mount resumed>) = 0 [pid 5846] unlink("./18/binderfs" [pid 5976] <... mmap resumed>) = 0x7f101fc00000 [pid 5971] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5846] <... unlink resumed>) = 0 [pid 5971] <... openat resumed>) = 3 [pid 5971] chdir("./file1") = 0 [pid 5973] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5971] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5846] getdents64(3, [pid 5971] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3 [pid 5971] exit_group(0 [pid 5846] <... close resumed>) = 0 [pid 5971] <... exit_group resumed>) = ? [pid 5846] rmdir("./18" [pid 5971] +++ exited with 0 +++ [pid 5846] <... rmdir resumed>) = 0 [pid 5846] mkdir("./19", 0777) = 0 [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5971, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=27 /* 0.27 s */} --- [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5842] restart_syscall(<... resuming interrupted clone ...> [pid 5846] <... openat resumed>) = 3 [pid 5842] <... restart_syscall resumed>) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3 [pid 5842] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... close resumed>) = 0 [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, ./strace-static-x86_64: Process 5977 attached [pid 5846] <... clone resumed>, child_tidptr=0x55558e440650) = 5977 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5977] set_robust_list(0x55558e440660, 24) = 0 [pid 5977] chdir("./19") = 0 [pid 5977] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./17/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5977] setpgid(0, 0 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5977] <... setpgid resumed>) = 0 [pid 5977] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] getdents64(4, [pid 5977] <... openat resumed>) = 3 [pid 5842] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5977] write(3, "1000", 4 [pid 5842] rmdir("./17/file1" [pid 5977] <... write resumed>) = 4 [pid 5977] close(3 [pid 5842] <... rmdir resumed>) = 0 [pid 5977] <... close resumed>) = 0 [pid 5842] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5977] symlink("/dev/binderfs", "./binderfs" [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./17/binderfs", [pid 5977] <... symlink resumed>) = 0 [pid 5842] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 executing program [pid 5842] unlink("./17/binderfs" [pid 5977] write(1, "executing program\n", 18) = 18 [pid 5842] <... unlink resumed>) = 0 [pid 5977] memfd_create("syzkaller", 0 [pid 5842] getdents64(3, [pid 5977] <... memfd_create resumed>) = 3 [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5977] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5842] close(3) = 0 [pid 5842] rmdir("./17") = 0 [pid 5842] mkdir("./18", 0777) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD) = 0 [pid 5842] close(3) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5979 ./strace-static-x86_64: Process 5979 attached [pid 5979] set_robust_list(0x55558e440660, 24) = 0 [pid 5972] <... write resumed>) = 16777216 [pid 5979] chdir("./18" [pid 5972] munmap(0x7f101fc00000, 138412032 [pid 5979] <... chdir resumed>) = 0 [pid 5979] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5979] setpgid(0, 0) = 0 [pid 5979] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5979] write(3, "1000", 4) = 4 [pid 5979] close(3) = 0 [pid 5979] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5979] write(1, "executing program\n", 18executing program ) = 18 [pid 5979] memfd_create("syzkaller", 0 [pid 5972] <... munmap resumed>) = 0 [pid 5972] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5979] <... memfd_create resumed>) = 3 [pid 5979] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5972] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5972] close(3) = 0 [ 123.974847][ T5972] loop5: detected capacity change from 0 to 32768 [pid 5972] close(4) = 0 [pid 5972] mkdir("./file1", 0777) = 0 [pid 5972] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5975] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5972] <... mount resumed>) = 0 [pid 5972] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5972] chdir("./file1") = 0 [pid 5972] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5972] exit_group(0) = ? [pid 5972] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5972, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- [pid 5847] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", [pid 5976] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5847] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5977] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./18/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5847] close(4) = 0 [pid 5847] rmdir("./18/file1") = 0 [pid 5847] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5979] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] unlink("./18/binderfs") = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [pid 5847] rmdir("./18") = 0 [pid 5847] mkdir("./19", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5847] close(3 [pid 5973] <... write resumed>) = 16777216 [pid 5973] munmap(0x7f101fc00000, 138412032) = 0 [pid 5973] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5973] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5973] close(3) = 0 [pid 5973] close(4) = 0 [pid 5973] mkdir("./file1", 0777) = 0 [ 124.664700][ T5973] loop1: detected capacity change from 0 to 32768 [pid 5973] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5973] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5973] chdir("./file1") = 0 [pid 5973] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5973] exit_group(0) = ? [pid 5973] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5973, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=26 /* 0.26 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5843] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5843] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./19/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./19/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5843] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5843] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5843] close(4 [pid 5975] <... write resumed>) = 16777216 [pid 5843] <... close resumed>) = 0 [pid 5843] rmdir("./19/file1") = 0 [pid 5843] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./19/binderfs") = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5975] munmap(0x7f101fc00000, 138412032 [pid 5843] rmdir("./19") = 0 [pid 5843] mkdir("./20", 0777) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5982 attached , child_tidptr=0x55558e440650) = 5982 [pid 5982] set_robust_list(0x55558e440660, 24) = 0 [pid 5982] chdir("./20") = 0 [pid 5982] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5982] setpgid(0, 0) = 0 [pid 5982] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5982] write(3, "1000", 4) = 4 [pid 5982] close(3) = 0 [pid 5982] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5982] write(1, "executing program\n", 18) = 18 [pid 5975] <... munmap resumed>) = 0 [pid 5982] memfd_create("syzkaller", 0 [pid 5975] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5975] ioctl(4, LOOP_SET_FD, 3 [pid 5982] <... memfd_create resumed>) = 3 [pid 5975] <... ioctl resumed>) = 0 [pid 5982] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5975] close(3) = 0 [pid 5975] close(4) = 0 [pid 5976] <... write resumed>) = 16777216 [pid 5976] munmap(0x7f101fc00000, 138412032 [pid 5975] mkdir("./file1", 0777) = 0 [pid 5975] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity") = 0 [pid 5975] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5975] chdir("./file1") = 0 [pid 5975] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5975] exit_group(0) = ? [pid 5975] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5975, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=28 /* 0.28 s */} --- [ 124.922396][ T5975] loop3: detected capacity change from 0 to 32768 [pid 5845] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5845] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5976] <... munmap resumed>) = 0 [pid 5976] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5976] ioctl(4, LOOP_SET_FD, 3 [pid 5847] <... close resumed>) = 0 [pid 5845] <... umount2 resumed>) = 0 [pid 5845] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./20/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./20/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5976] <... ioctl resumed>) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4 [pid 5976] close(3 [pid 5845] <... close resumed>) = 0 [pid 5977] <... write resumed>) = 16777216 [pid 5976] <... close resumed>) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] rmdir("./20/file1") = 0 [pid 5845] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5983 attached [pid 5977] munmap(0x7f101fc00000, 138412032 [pid 5976] close(4 [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5983 [pid 5976] <... close resumed>) = 0 [pid 5976] mkdir("./file1", 0777 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5983] set_robust_list(0x55558e440660, 24 [pid 5976] <... mkdir resumed>) = 0 [pid 5845] newfstatat(AT_FDCWD, "./20/binderfs", [pid 5983] <... set_robust_list resumed>) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./20/binderfs" [pid 5983] chdir("./19" [pid 5845] <... unlink resumed>) = 0 [ 125.036900][ T5976] loop2: detected capacity change from 0 to 32768 [pid 5845] getdents64(3, [pid 5976] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5845] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./20") = 0 [pid 5845] mkdir("./21", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e440650) = 5984 ./strace-static-x86_64: Process 5984 attached [pid 5984] set_robust_list(0x55558e440660, 24) = 0 [pid 5984] chdir("./21" [pid 5983] <... chdir resumed>) = 0 [pid 5983] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5983] setpgid(0, 0) = 0 [pid 5984] <... chdir resumed>) = 0 [pid 5983] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5977] <... munmap resumed>) = 0 [pid 5984] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5984] setpgid(0, 0 [pid 5983] <... openat resumed>) = 3 [pid 5984] <... setpgid resumed>) = 0 [pid 5984] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5983] write(3, "1000", 4 [pid 5984] write(3, "1000", 4 [pid 5983] <... write resumed>) = 4 [pid 5984] <... write resumed>) = 4 [pid 5983] close(3 [pid 5984] close(3) = 0 [pid 5983] <... close resumed>) = 0 [pid 5983] symlink("/dev/binderfs", "./binderfs" [pid 5984] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5983] <... symlink resumed>) = 0 [pid 5976] <... mount resumed>) = 0 [pid 5983] write(1, "executing program\n", 18 [pid 5977] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5976] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORYexecuting program executing program [pid 5984] write(1, "executing program\n", 18 [pid 5983] <... write resumed>) = 18 [pid 5977] <... openat resumed>) = 4 [pid 5976] <... openat resumed>) = 3 [pid 5984] <... write resumed>) = 18 [pid 5976] chdir("./file1" [pid 5977] ioctl(4, LOOP_SET_FD, 3 [pid 5984] memfd_create("syzkaller", 0 [pid 5976] <... chdir resumed>) = 0 [pid 5984] <... memfd_create resumed>) = 3 [pid 5979] <... write resumed>) = 16777216 [pid 5976] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5984] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5976] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5984] <... mmap resumed>) = 0x7f101fc00000 [pid 5976] exit_group(0) = ? [pid 5983] memfd_create("syzkaller", 0) = 3 [pid 5983] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5976] +++ exited with 0 +++ [pid 5979] munmap(0x7f101fc00000, 138412032 [pid 5977] <... ioctl resumed>) = 0 [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5976, si_uid=0, si_status=0, si_utime=0, si_stime=32 /* 0.32 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...> [pid 5977] close(3 [pid 5844] <... restart_syscall resumed>) = 0 [pid 5977] <... close resumed>) = 0 [pid 5977] close(4) = 0 [pid 5844] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5977] mkdir("./file1", 0777 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5977] <... mkdir resumed>) = 0 [pid 5844] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5977] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5844] <... openat resumed>) = 3 [ 125.144508][ T5977] loop4: detected capacity change from 0 to 32768 [pid 5979] <... munmap resumed>) = 0 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5979] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5844] getdents64(3, [pid 5979] <... openat resumed>) = 4 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5979] ioctl(4, LOOP_SET_FD, 3 [pid 5977] <... mount resumed>) = 0 [pid 5844] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5977] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5977] chdir("./file1") = 0 [pid 5977] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5844] <... umount2 resumed>) = 0 [pid 5977] exit_group(0 [pid 5844] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./18/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5977] <... exit_group resumed>) = ? [pid 5844] openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5979] <... ioctl resumed>) = 0 [pid 5979] close(3) = 0 [pid 5979] close(4) = 0 [pid 5979] mkdir("./file1", 0777) = 0 [pid 5977] +++ exited with 0 +++ [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5977, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5979] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5844] newfstatat(4, "", [pid 5846] <... restart_syscall resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, [pid 5846] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5846] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [ 125.227911][ T5979] loop0: detected capacity change from 0 to 32768 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5979] <... mount resumed>) = 0 [pid 5846] <... umount2 resumed>) = 0 [pid 5844] close(4 [pid 5979] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5979] chdir("./file1") = 0 [pid 5979] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5979] exit_group(0) = ? [pid 5844] <... close resumed>) = 0 [pid 5846] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5979] +++ exited with 0 +++ [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] rmdir("./18/file1" [pid 5846] newfstatat(AT_FDCWD, "./19/file1", [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5979, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=24 /* 0.24 s */} --- [pid 5844] <... rmdir resumed>) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5842] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] openat(AT_FDCWD, "./19/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5846] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5846] close(4) = 0 [pid 5846] rmdir("./19/file1") = 0 [pid 5844] newfstatat(AT_FDCWD, "./18/binderfs", [pid 5846] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5846] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] unlink("./19/binderfs") = 0 [pid 5846] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3) = 0 [pid 5846] rmdir("./19") = 0 [pid 5846] mkdir("./20", 0777) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5844] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5846] ioctl(3, LOOP_CLR_FD) = 0 [pid 5846] close(3) = 0 [pid 5844] unlink("./18/binderfs" [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5985 attached , child_tidptr=0x55558e440650) = 5985 [pid 5844] <... unlink resumed>) = 0 [pid 5844] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3 [pid 5842] <... umount2 resumed>) = 0 [pid 5842] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./18/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5842] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] <... close resumed>) = 0 [pid 5842] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] rmdir("./18" [pid 5842] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5842] close(4) = 0 [pid 5842] rmdir("./18/file1") = 0 [pid 5842] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] unlink("./18/binderfs") = 0 [pid 5842] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5842] rmdir("./18") = 0 [pid 5842] mkdir("./19", 0777) = 0 [pid 5844] <... rmdir resumed>) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5842] ioctl(3, LOOP_CLR_FD [pid 5844] mkdir("./19", 0777 [pid 5842] <... ioctl resumed>) = 0 [pid 5844] <... mkdir resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5844] ioctl(3, LOOP_CLR_FD) = 0 [pid 5844] close(3) = 0 [pid 5985] set_robust_list(0x55558e440660, 24 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5986 attached [pid 5985] <... set_robust_list resumed>) = 0 [pid 5842] close(3 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5986 [pid 5842] <... close resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5987 attached [pid 5985] chdir("./20" [pid 5842] <... clone resumed>, child_tidptr=0x55558e440650) = 5987 [pid 5987] set_robust_list(0x55558e440660, 24 [pid 5985] <... chdir resumed>) = 0 [pid 5982] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5987] <... set_robust_list resumed>) = 0 [pid 5986] set_robust_list(0x55558e440660, 24 [pid 5985] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5987] chdir("./19" [pid 5985] <... prctl resumed>) = 0 [pid 5987] <... chdir resumed>) = 0 [pid 5986] <... set_robust_list resumed>) = 0 [pid 5985] setpgid(0, 0 [pid 5987] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5985] <... setpgid resumed>) = 0 [pid 5987] <... prctl resumed>) = 0 [pid 5985] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5987] setpgid(0, 0 [pid 5985] <... openat resumed>) = 3 [pid 5987] <... setpgid resumed>) = 0 [pid 5987] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5986] chdir("./19") = 0 [pid 5987] <... openat resumed>) = 3 [pid 5986] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5985] write(3, "1000", 4 [pid 5987] write(3, "1000", 4) = 4 [pid 5985] <... write resumed>) = 4 [pid 5986] <... prctl resumed>) = 0 [pid 5987] close(3 [pid 5985] close(3executing program executing program [pid 5987] <... close resumed>) = 0 [pid 5986] setpgid(0, 0 [pid 5985] <... close resumed>) = 0 [pid 5987] symlink("/dev/binderfs", "./binderfs" [pid 5985] symlink("/dev/binderfs", "./binderfs" [pid 5987] <... symlink resumed>) = 0 [pid 5986] <... setpgid resumed>) = 0 [pid 5985] <... symlink resumed>) = 0 [pid 5987] write(1, "executing program\n", 18 [pid 5986] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5985] write(1, "executing program\n", 18 [pid 5987] <... write resumed>) = 18 [pid 5985] <... write resumed>) = 18 [pid 5987] memfd_create("syzkaller", 0 [pid 5986] <... openat resumed>) = 3 [pid 5985] memfd_create("syzkaller", 0 [pid 5986] write(3, "1000", 4 [pid 5987] <... memfd_create resumed>) = 3 [pid 5986] <... write resumed>) = 4 [pid 5985] <... memfd_create resumed>) = 3 [pid 5987] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5985] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5986] close(3 [pid 5987] <... mmap resumed>) = 0x7f101fc00000 [pid 5986] <... close resumed>) = 0 [pid 5985] <... mmap resumed>) = 0x7f101fc00000 [pid 5986] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5986] write(1, "executing program\n", 18) = 18 [pid 5986] memfd_create("syzkaller", 0) = 3 [pid 5986] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5984] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5983] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5986] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5987] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5985] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5982] <... write resumed>) = 16777216 [pid 5982] munmap(0x7f101fc00000, 138412032) = 0 [pid 5982] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5982] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5982] close(3) = 0 [pid 5982] close(4) = 0 [pid 5982] mkdir("./file1", 0777) = 0 [pid 5982] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5983] <... write resumed>) = 16777216 [ 126.304347][ T5982] loop1: detected capacity change from 0 to 32768 [pid 5983] munmap(0x7f101fc00000, 138412032) = 0 [pid 5982] <... mount resumed>) = 0 [pid 5982] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5982] chdir("./file1") = 0 [pid 5982] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5982] exit_group(0) = ? [pid 5982] +++ exited with 0 +++ [pid 5843] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5982, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} --- [pid 5843] restart_syscall(<... resuming interrupted clone ...> [pid 5983] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5843] <... restart_syscall resumed>) = 0 [pid 5983] <... openat resumed>) = 4 [pid 5843] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5983] ioctl(4, LOOP_SET_FD, 3 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5843] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5843] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5843] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5983] <... ioctl resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5983] close(3 [pid 5843] newfstatat(AT_FDCWD, "./20/file1", [pid 5983] <... close resumed>) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5983] close(4 [pid 5843] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5983] <... close resumed>) = 0 [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./20/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5983] mkdir("./file1", 0777 [pid 5843] <... openat resumed>) = 4 [ 126.426703][ T5983] loop5: detected capacity change from 0 to 32768 [pid 5843] newfstatat(4, "", [pid 5983] <... mkdir resumed>) = 0 [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] getdents64(4, [pid 5983] mount("/dev/loop5", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5843] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5983] <... mount resumed>) = 0 [pid 5843] getdents64(4, [pid 5983] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5843] <... getdents64 resumed>0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5983] <... openat resumed>) = 3 [pid 5843] close(4 [pid 5983] chdir("./file1" [pid 5843] <... close resumed>) = 0 [pid 5983] <... chdir resumed>) = 0 [pid 5843] rmdir("./20/file1" [pid 5983] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5843] <... rmdir resumed>) = 0 [pid 5843] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5983] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5843] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] newfstatat(AT_FDCWD, "./20/binderfs", [pid 5983] exit_group(0) = ? [pid 5843] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5843] unlink("./20/binderfs" [pid 5983] +++ exited with 0 +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5983, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=26 /* 0.26 s */} --- [pid 5847] restart_syscall(<... resuming interrupted clone ...> [pid 5843] <... unlink resumed>) = 0 [pid 5843] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5843] close(3) = 0 [pid 5843] rmdir("./20" [pid 5847] <... restart_syscall resumed>) = 0 [pid 5843] <... rmdir resumed>) = 0 [pid 5847] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5847] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] mkdir("./21", 0777 [pid 5984] <... write resumed>) = 16777216 [pid 5843] <... mkdir resumed>) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5843] ioctl(3, LOOP_CLR_FD) = 0 [pid 5984] munmap(0x7f101fc00000, 138412032 [pid 5843] close(3) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5990 attached , child_tidptr=0x55558e440650) = 5990 [pid 5990] set_robust_list(0x55558e440660, 24) = 0 [pid 5990] chdir("./21") = 0 [pid 5990] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5990] setpgid(0, 0) = 0 [pid 5990] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5847] <... umount2 resumed>) = 0 [pid 5847] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5990] write(3, "1000", 4) = 4 [pid 5990] close(3 [pid 5847] newfstatat(AT_FDCWD, "./19/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5847] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5847] openat(AT_FDCWD, "./19/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5847] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(4, [pid 5990] <... close resumed>) = 0 [pid 5984] <... munmap resumed>) = 0 [pid 5847] <... getdents64 resumed>0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5990] symlink("/dev/binderfs", "./binderfs" [pid 5847] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5990] <... symlink resumed>) = 0 [pid 5847] close(4executing program [pid 5990] write(1, "executing program\n", 18 [pid 5847] <... close resumed>) = 0 [pid 5990] <... write resumed>) = 18 [pid 5847] rmdir("./19/file1" [pid 5990] memfd_create("syzkaller", 0 [pid 5847] <... rmdir resumed>) = 0 [pid 5990] <... memfd_create resumed>) = 3 [pid 5990] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5847] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5984] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5984] ioctl(4, LOOP_SET_FD, 3 [pid 5847] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5986] <... write resumed>) = 16777216 [pid 5847] unlink("./19/binderfs") = 0 [pid 5847] getdents64(3, [pid 5986] munmap(0x7f101fc00000, 138412032 [pid 5847] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3 [pid 5984] <... ioctl resumed>) = 0 [pid 5847] <... close resumed>) = 0 [pid 5847] rmdir("./19") = 0 [pid 5847] mkdir("./20", 0777) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5847] ioctl(3, LOOP_CLR_FD) = 0 [pid 5984] close(3 [pid 5847] close(3 [pid 5984] <... close resumed>) = 0 [pid 5847] <... close resumed>) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5991 attached [pid 5991] set_robust_list(0x55558e440660, 24) = 0 [pid 5991] chdir("./20") = 0 [pid 5991] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5991] setpgid(0, 0) = 0 [pid 5991] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5984] close(4 [pid 5991] <... openat resumed>) = 3 [pid 5984] <... close resumed>) = 0 [pid 5991] write(3, "1000", 4 [pid 5984] mkdir("./file1", 0777 [pid 5991] <... write resumed>) = 4 [pid 5984] <... mkdir resumed>) = 0 [pid 5991] close(3 [pid 5984] mount("/dev/loop3", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5991] <... close resumed>) = 0 [pid 5991] symlink("/dev/binderfs", "./binderfs" [pid 5847] <... clone resumed>, child_tidptr=0x55558e440650) = 5991 executing program [pid 5991] <... symlink resumed>) = 0 [pid 5991] write(1, "executing program\n", 18) = 18 [pid 5991] memfd_create("syzkaller", 0) = 3 [ 126.628110][ T5984] loop3: detected capacity change from 0 to 32768 [pid 5991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f101fc00000 [pid 5986] <... munmap resumed>) = 0 [pid 5986] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5986] ioctl(4, LOOP_SET_FD, 3 [pid 5984] <... mount resumed>) = 0 [pid 5984] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5984] chdir("./file1") = 0 [pid 5984] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5984] exit_group(0) = ? [pid 5984] +++ exited with 0 +++ [pid 5845] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5984, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=24 /* 0.24 s */} --- [pid 5845] restart_syscall(<... resuming interrupted clone ...> [pid 5986] <... ioctl resumed>) = 0 [pid 5986] close(3) = 0 [pid 5986] close(4) = 0 [pid 5986] mkdir("./file1", 0777 [pid 5845] <... restart_syscall resumed>) = 0 [pid 5845] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] umount2("./21/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5986] <... mkdir resumed>) = 0 [ 126.720857][ T5986] loop2: detected capacity change from 0 to 32768 [pid 5986] mount("/dev/loop2", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5987] <... write resumed>) = 16777216 [pid 5986] <... mount resumed>) = 0 [pid 5986] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5986] chdir("./file1") = 0 [pid 5986] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5986] exit_group(0) = ? [pid 5986] +++ exited with 0 +++ [pid 5844] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5986, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=28 /* 0.28 s */} --- [pid 5844] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5987] munmap(0x7f101fc00000, 138412032 [pid 5845] <... umount2 resumed>) = 0 [pid 5844] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5845] umount2("./21/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5985] <... write resumed>) = 16777216 [pid 5845] newfstatat(AT_FDCWD, "./21/file1", [pid 5844] <... openat resumed>) = 3 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] newfstatat(3, "", [pid 5845] umount2("./21/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] getdents64(3, [pid 5845] openat(AT_FDCWD, "./21/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5845] <... openat resumed>) = 4 [pid 5844] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5985] munmap(0x7f101fc00000, 138412032 [pid 5845] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5845] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5845] close(4) = 0 [pid 5845] rmdir("./21/file1") = 0 [pid 5845] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5845] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5845] unlink("./21/binderfs") = 0 [pid 5845] getdents64(3, 0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3) = 0 [pid 5845] rmdir("./21") = 0 [pid 5845] mkdir("./22", 0777) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5845] ioctl(3, LOOP_CLR_FD [pid 5987] <... munmap resumed>) = 0 [pid 5845] <... ioctl resumed>) = 0 [pid 5845] close(3) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5992 attached [pid 5992] set_robust_list(0x55558e440660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x55558e440650) = 5992 [pid 5992] <... set_robust_list resumed>) = 0 executing program [pid 5992] chdir("./22") = 0 [pid 5985] <... munmap resumed>) = 0 [pid 5992] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5992] setpgid(0, 0) = 0 [pid 5992] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5992] write(3, "1000", 4) = 4 [pid 5992] close(3) = 0 [pid 5992] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5992] write(1, "executing program\n", 18 [pid 5985] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5992] <... write resumed>) = 18 [pid 5985] <... openat resumed>) = 4 [pid 5992] memfd_create("syzkaller", 0 [pid 5985] ioctl(4, LOOP_SET_FD, 3 [pid 5844] <... umount2 resumed>) = 0 [pid 5987] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5844] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5987] <... openat resumed>) = 4 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./19/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5992] <... memfd_create resumed>) = 3 [pid 5844] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5992] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5844] openat(AT_FDCWD, "./19/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5992] <... mmap resumed>) = 0x7f101fc00000 [pid 5844] <... openat resumed>) = 4 [pid 5987] ioctl(4, LOOP_SET_FD, 3 [pid 5844] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(4, 0x55558e449730 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(4, 0x55558e449730 /* 0 entries */, 32768) = 0 [pid 5844] close(4) = 0 [pid 5844] rmdir("./19/file1") = 0 [pid 5844] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5844] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5844] unlink("./19/binderfs" [pid 5987] <... ioctl resumed>) = 0 [pid 5844] <... unlink resumed>) = 0 [pid 5844] getdents64(3, [pid 5987] close(3 [pid 5844] <... getdents64 resumed>0x55558e4416f0 /* 0 entries */, 32768) = 0 [pid 5987] <... close resumed>) = 0 [pid 5844] close(3 [pid 5987] close(4 [pid 5844] <... close resumed>) = 0 [pid 5987] <... close resumed>) = 0 [pid 5844] rmdir("./19" [pid 5987] mkdir("./file1", 0777 [pid 5844] <... rmdir resumed>) = 0 [pid 5985] <... ioctl resumed>) = 0 [pid 5985] close(3) = 0 [pid 5844] mkdir("./20", 0777 [pid 5987] <... mkdir resumed>) = 0 [pid 5844] <... mkdir resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5987] mount("/dev/loop0", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5985] close(4 [pid 5844] <... openat resumed>) = 3 [pid 5985] <... close resumed>) = 0 [pid 5844] ioctl(3, LOOP_CLR_FD [pid 5985] mkdir("./file1", 0777 [pid 5844] <... ioctl resumed>) = 0 [pid 5985] <... mkdir resumed>) = 0 [pid 5844] close(3) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5985] mount("/dev/loop4", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity"./strace-static-x86_64: Process 5993 attached [pid 5993] set_robust_list(0x55558e440660, 24) = 0 [ 126.905521][ T5985] loop4: detected capacity change from 0 to 32768 [ 126.928296][ T5987] loop0: detected capacity change from 0 to 32768 [pid 5987] <... mount resumed>) = 0 [pid 5993] chdir("./20") = 0 [pid 5993] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5993] setpgid(0, 0) = 0 [pid 5987] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5844] <... clone resumed>, child_tidptr=0x55558e440650) = 5993 [pid 5987] chdir("./file1" [pid 5993] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5987] <... chdir resumed>) = 0 [pid 5987] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5993] <... openat resumed>) = 3 [pid 5987] <... openat resumed>) = -1 EBUSY (Device or resource busy) executing program [pid 5993] write(3, "1000", 4) = 4 [pid 5987] exit_group(0 [pid 5985] <... mount resumed>) = 0 [pid 5993] close(3 [pid 5987] <... exit_group resumed>) = ? [pid 5985] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY [pid 5993] <... close resumed>) = 0 [pid 5985] <... openat resumed>) = 3 [pid 5993] symlink("/dev/binderfs", "./binderfs" [pid 5985] chdir("./file1" [pid 5993] <... symlink resumed>) = 0 [pid 5987] +++ exited with 0 +++ [pid 5993] write(1, "executing program\n", 18 [pid 5985] <... chdir resumed>) = 0 [pid 5993] <... write resumed>) = 18 [pid 5985] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5842] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5987, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=26 /* 0.26 s */} --- [pid 5993] memfd_create("syzkaller", 0 [pid 5985] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5842] restart_syscall(<... resuming interrupted clone ...> [pid 5993] <... memfd_create resumed>) = 3 [pid 5985] exit_group(0 [pid 5993] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5985] <... exit_group resumed>) = ? [pid 5993] <... mmap resumed>) = 0x7f101fc00000 [pid 5985] +++ exited with 0 +++ [pid 5842] <... restart_syscall resumed>) = 0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5985, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5846] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5842] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5842] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... openat resumed>) = 3 [pid 5842] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] newfstatat(3, "", [pid 5842] <... openat resumed>) = 3 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5842] newfstatat(3, "", [pid 5846] getdents64(3, [pid 5842] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [pid 5842] getdents64(3, [pid 5846] umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5842] <... getdents64 resumed>0x55558e4416f0 /* 4 entries */, 32768) = 112 [ 127.134052][ T5842] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN NOPTI [ 127.146169][ T5842] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037] [ 127.154641][ T5842] CPU: 1 UID: 0 PID: 5842 Comm: syz-executor346 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) [ 127.165326][ T5842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 127.175392][ T5842] RIP: 0010:lmLogSync+0x1f1/0x9d0 [pid 5842] umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW [ 127.180462][ T5842] Code: 69 81 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 fd 7a e3 fe 4d 8b 3f 49 83 c7 30 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 e1 7a e3 fe 49 8b 3f e8 79 c0 b6 fe [ 127.200119][ T5842] RSP: 0018:ffffc90003fafa80 EFLAGS: 00010216 [ 127.206205][ T5842] RAX: 0000000000000006 RBX: dffffc0000000000 RCX: 0000000000000000 [ 127.214183][ T5842] RDX: ffff888033a7bc00 RSI: 0000000000000000 RDI: 0000000000000000 [ 127.222178][ T5842] RBP: ffffc90003fafb88 R08: 0000000000000003 R09: ffffc90003fafae0 [ 127.230256][ T5842] R10: dffffc0000000000 R11: fffff520007f5f60 R12: ffff888033b6f800 [ 127.238237][ T5842] R13: dffffc0000000000 R14: ffff88814c019638 R15: 0000000000000030 [ 127.246225][ T5842] FS: 000055558e440380(0000) GS:ffff888125d23000(0000) knlGS:0000000000000000 [ 127.255168][ T5842] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.261760][ T5842] CR2: 00007f1020a91000 CR3: 0000000034102000 CR4: 0000000000350ef0 [ 127.269836][ T5842] Call Trace: [ 127.273121][ T5842] [ 127.276058][ T5842] ? __pfx___mutex_lock+0x10/0x10 [ 127.281114][ T5842] ? __pfx_lmLogSync+0x10/0x10 [ 127.285905][ T5842] ? __pfx_dquot_writeback_dquots+0x10/0x10 [ 127.291913][ T5842] ? __pfx___writeback_inodes_sb_nr+0x10/0x10 [ 127.298001][ T5842] jfs_syncpt+0x7b/0x90 [ 127.302175][ T5842] jfs_sync_fs+0x87/0xa0 [ 127.306428][ T5842] sync_filesystem+0xee/0x230 [ 127.311114][ T5842] generic_shutdown_super+0x6f/0x2c0 [ 127.316598][ T5842] kill_block_super+0x44/0x90 [ 127.321332][ T5842] deactivate_locked_super+0xbc/0x130 [ 127.326806][ T5842] cleanup_mnt+0x425/0x4c0 [ 127.331237][ T5842] ? srso_alias_return_thunk+0x5/0xfbef5 [ 127.336888][ T5842] ? lockdep_hardirqs_on+0x9c/0x150 [ 127.342102][ T5842] task_work_run+0x1d4/0x260 [ 127.346714][ T5842] ? __pfx_task_work_run+0x10/0x10 [ 127.351841][ T5842] ? __x64_sys_umount+0x122/0x160 [ 127.356885][ T5842] ptrace_notify+0x281/0x2c0 [ 127.361482][ T5842] ? __pfx_ptrace_notify+0x10/0x10 [ 127.366602][ T5842] ? srso_alias_return_thunk+0x5/0xfbef5 [ 127.372253][ T5842] ? __x64_sys_umount+0x122/0x160 [ 127.377298][ T5842] ? __pfx___x64_sys_umount+0x10/0x10 [ 127.382777][ T5842] ? rcu_is_watching+0x15/0xb0 [ 127.387555][ T5842] syscall_exit_work+0xc6/0x1d0 [ 127.392870][ T5842] do_syscall_64+0x2ad/0x3b0 [ 127.397476][ T5842] ? lockdep_hardirqs_on+0x9c/0x150 [ 127.402776][ T5842] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.408851][ T5842] ? srso_alias_return_thunk+0x5/0xfbef5 [ 127.414501][ T5842] ? exc_page_fault+0x9f/0xf0 [ 127.419190][ T5842] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.425110][ T5842] RIP: 0033:0x7f10280f95b7 [pid 5990] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 127.429572][ T5842] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 [ 127.449186][ T5842] RSP: 002b:00007fff34d96c28 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 127.457625][ T5842] RAX: 0000000000000000 RBX: 000000000001e9b3 RCX: 00007f10280f95b7 [ 127.465612][ T5842] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff34d96ce0 [ 127.473593][ T5842] RBP: 00007fff34d96ce0 R08: 0000000000000000 R09: 0000000000000000 [ 127.481583][ T5842] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007fff34d97d50 [ 127.489661][ T5842] R13: 000055558e4416c0 R14: 0000000000000014 R15: 431bde82d7b634db [ 127.497824][ T5842] [ 127.500842][ T5842] Modules linked in: [ 127.505258][ T5842] ---[ end trace 0000000000000000 ]--- [ 127.522505][ T5842] RIP: 0010:lmLogSync+0x1f1/0x9d0 [pid 5992] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 127.527585][ T5842] Code: 69 81 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 fd 7a e3 fe 4d 8b 3f 49 83 c7 30 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 e1 7a e3 fe 49 8b 3f e8 79 c0 b6 fe [pid 5991] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5990] <... write resumed>) = 16777216 [pid 5990] munmap(0x7f101fc00000, 138412032) = 0 [pid 5990] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5993] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 127.673116][ T5842] RSP: 0018:ffffc90003fafa80 EFLAGS: 00010216 [ 127.679243][ T5842] RAX: 0000000000000006 RBX: dffffc0000000000 RCX: 0000000000000000 [ 127.710587][ T5990] loop1: detected capacity change from 0 to 32768 [pid 5990] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5990] close(3) = 0 [pid 5990] close(4) = 0 [pid 5990] mkdir("./file1", 0777) = 0 [ 127.721693][ T5842] RDX: ffff888033a7bc00 RSI: 0000000000000000 RDI: 0000000000000000 [ 127.730000][ T5842] RBP: ffffc90003fafb88 R08: 0000000000000003 R09: ffffc90003fafae0 [ 127.748620][ T5842] R10: dffffc0000000000 R11: fffff520007f5f60 R12: ffff888033b6f800 [pid 5990] mount("/dev/loop1", "./file1", "jfs", MS_NODIRATIME|MS_SILENT, "nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity" [pid 5991] <... write resumed>) = 16777216 [ 127.771226][ T5842] R13: dffffc0000000000 R14: ffff88814c019638 R15: 0000000000000030 [ 127.809563][ T5842] FS: 000055558e440380(0000) GS:ffff888125c23000(0000) knlGS:0000000000000000 [pid 5991] munmap(0x7f101fc00000, 138412032 [pid 5992] <... write resumed>) = 16777216 [pid 5991] <... munmap resumed>) = 0 [pid 5991] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5991] ioctl(4, LOOP_SET_FD, 3 [ 127.836515][ T5842] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.848659][ T5842] CR2: 00007f177f801000 CR3: 0000000034102000 CR4: 0000000000350ef0 [ 127.859802][ T5991] loop5: detected capacity change from 0 to 32768 [ 127.876893][ T5842] Kernel panic - not syncing: Fatal exception [ 127.883159][ T5842] Kernel Offset: disabled [ 127.887476][ T5842] Rebooting in 86400 seconds..