./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4011600898 <...> DUID 00:04:e3:38:52:80:67:3f:e9:c9:a2:47:22:a3:59:23:7d:1e forked to background, child pid 4659 [ 43.118513][ T4660] 8021q: adding VLAN 0 to HW filter on device bond0 [ 43.142860][ T4660] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.48' (ECDSA) to the list of known hosts. execve("./syz-executor4011600898", ["./syz-executor4011600898"], 0x7ffd725cc920 /* 10 vars */) = 0 brk(NULL) = 0x5555567bc000 brk(0x5555567bcc40) = 0x5555567bcc40 arch_prctl(ARCH_SET_FS, 0x5555567bc300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 set_tid_address(0x5555567bc5d0) = 4994 set_robust_list(0x5555567bc5e0, 24) = 0 rt_sigaction(SIGRTMIN, {sa_handler=0x7f92ef6e76e0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f92ef6e7db0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=0x7f92ef6e7780, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f92ef6e7db0}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4011600898", 4096) = 28 brk(0x5555567ddc40) = 0x5555567ddc40 brk(0x5555567de000) = 0x5555567de000 mprotect(0x7f92ef7a9000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567bc5d0) = 4995 ./strace-static-x86_64: Process 4995 attached [pid 4994] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] set_robust_list(0x5555567bc5e0, 24) = 0 ./strace-static-x86_64: Process 4996 attached [pid 4996] set_robust_list(0x5555567bc5e0, 24) = 0 [pid 4996] getpid() = 4996 [pid 4996] mkdir("./syzkaller.0bY7pW", 0700 [pid 4994] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 4996 [pid 4995] getpid( [pid 4994] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] <... getpid resumed>) = 4995 [pid 4994] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 4997 [pid 4995] mkdir("./syzkaller.NRp6CU", 0700 [pid 4996] <... mkdir resumed>) = 0 [pid 4996] chmod("./syzkaller.0bY7pW", 0777) = 0 [pid 4996] chdir("./syzkaller.0bY7pW") = 0 [pid 4996] mkdir("./0", 0777 [pid 4995] <... mkdir resumed>) = 0 [pid 4994] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] chmod("./syzkaller.NRp6CU", 0777./strace-static-x86_64: Process 4997 attached [pid 4996] <... mkdir resumed>) = 0 [pid 4996] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 4996] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 4996] close(3./strace-static-x86_64: Process 4998 attached [pid 4994] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 4998 [pid 4997] set_robust_list(0x5555567bc5e0, 24 [pid 4996] <... close resumed>) = 0 [pid 4995] <... chmod resumed>) = 0 [pid 4995] chdir("./syzkaller.NRp6CU") = 0 [pid 4995] mkdir("./0", 0777) = 0 [pid 4994] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 4994] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 4999 [pid 4994] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 4999 attached [pid 4998] set_robust_list(0x5555567bc5e0, 24 [pid 4999] set_robust_list(0x5555567bc5e0, 24 [pid 4998] <... set_robust_list resumed>) = 0 [pid 4999] <... set_robust_list resumed>) = 0 [pid 4995] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4998] getpid( [pid 4995] close(3 [pid 4999] getpid( [pid 4998] <... getpid resumed>) = 4998 [pid 4995] <... close resumed>) = 0 [pid 4999] <... getpid resumed>) = 4999 [pid 4998] mkdir("./syzkaller.mOZDn7", 0700 [pid 4995] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4999] mkdir("./syzkaller.0f3mWb", 0700 [pid 4998] <... mkdir resumed>) = 0 [pid 4999] <... mkdir resumed>) = 0 [pid 4998] chmod("./syzkaller.mOZDn7", 0777 [pid 4997] <... set_robust_list resumed>) = 0 [pid 4997] getpid( [pid 4994] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5000 [pid 4997] <... getpid resumed>) = 4997 [pid 4997] mkdir("./syzkaller.0pSMs5", 0700 [pid 4999] chmod("./syzkaller.0f3mWb", 0777 [pid 4995] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5001 ./strace-static-x86_64: Process 5001 attached ./strace-static-x86_64: Process 5000 attached [pid 4998] <... chmod resumed>) = 0 [pid 4997] <... mkdir resumed>) = 0 [pid 4996] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5001] set_robust_list(0x5555567bc5e0, 24 [pid 5000] set_robust_list(0x5555567bc5e0, 24 [pid 4999] <... chmod resumed>) = 0 [pid 4998] chdir("./syzkaller.mOZDn7" [pid 4997] chmod("./syzkaller.0pSMs5", 0777 [pid 5001] <... set_robust_list resumed>) = 0 [pid 5000] <... set_robust_list resumed>) = 0 [pid 4999] chdir("./syzkaller.0f3mWb" [pid 4998] <... chdir resumed>) = 0 [pid 5001] chdir("./0" [pid 5000] getpid( [pid 4999] <... chdir resumed>) = 0 [pid 4998] mkdir("./0", 0777 [pid 4997] <... chmod resumed>) = 0 [pid 5001] <... chdir resumed>) = 0 [pid 5000] <... getpid resumed>) = 5000 [pid 4999] mkdir("./0", 0777 [pid 4997] chdir("./syzkaller.0pSMs5" [pid 4996] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5003 [pid 5001] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5000] mkdir("./syzkaller.2mlfng", 0700 [pid 4998] <... mkdir resumed>) = 0 [pid 4997] <... chdir resumed>) = 0 [pid 5001] <... prctl resumed>) = 0 [pid 4999] <... mkdir resumed>) = 0 [pid 4997] mkdir("./0", 0777 [pid 5001] setpgid(0, 0 [pid 5000] <... mkdir resumed>) = 0 [pid 4999] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 4998] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 4997] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5003 attached [pid 5001] <... setpgid resumed>) = 0 [pid 5000] chmod("./syzkaller.2mlfng", 0777 [pid 4999] <... openat resumed>) = 3 [pid 4997] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5003] set_robust_list(0x5555567bc5e0, 24 [pid 4998] <... openat resumed>) = 3 [pid 5003] <... set_robust_list resumed>) = 0 [pid 5001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5000] <... chmod resumed>) = 0 [pid 4999] ioctl(3, LOOP_CLR_FD [pid 4998] ioctl(3, LOOP_CLR_FD [pid 4997] <... openat resumed>) = 3 [pid 5003] chdir("./0" [pid 4997] ioctl(3, LOOP_CLR_FD [pid 5001] <... openat resumed>) = 3 [pid 5000] chdir("./syzkaller.2mlfng" [pid 4997] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5000] <... chdir resumed>) = 0 [pid 4999] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5003] <... chdir resumed>) = 0 [pid 4998] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4997] close(3 [pid 5001] write(3, "1000", 4 [pid 5003] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5001] <... write resumed>) = 4 [pid 5000] mkdir("./0", 0777 [pid 4999] close(3 [pid 4998] close(3 [pid 5003] <... prctl resumed>) = 0 [pid 5001] close(3 [pid 4997] <... close resumed>) = 0 [pid 5003] setpgid(0, 0 [pid 5001] <... close resumed>) = 0 [pid 5000] <... mkdir resumed>) = 0 [pid 4999] <... close resumed>) = 0 [pid 4998] <... close resumed>) = 0 [pid 4997] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5003] <... setpgid resumed>) = 0 [pid 5001] symlink("/dev/binderfs", "./binderfs" [pid 5000] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 4999] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4998] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5003] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 4997] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5005 [pid 5003] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5005 attached [pid 5005] set_robust_list(0x5555567bc5e0, 24 [pid 5001] <... symlink resumed>) = 0 [pid 5003] write(3, "1000", 4) = 4 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... openat resumed>) = 3 [pid 4999] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5007 [pid 4998] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5006 [pid 5003] close(3 [pid 5001] <... futex resumed>) = 0 [pid 5000] ioctl(3, LOOP_CLR_FD [pid 5003] <... close resumed>) = 0 [pid 5001] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5000] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5003] symlink("/dev/binderfs", "./binderfs" [pid 5001] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5000] close(3 [pid 5003] <... symlink resumed>) = 0 ./strace-static-x86_64: Process 5006 attached [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5000] <... close resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... mprotect resumed>) = 0 [pid 5000] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5006] set_robust_list(0x5555567bc5e0, 24 [pid 5003] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5001] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5005] <... set_robust_list resumed>) = 0 [pid 5003] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5006] <... set_robust_list resumed>) = 0 [pid 5003] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5000] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5008 [pid 5006] chdir("./0" [pid 5005] chdir("./0" [pid 5003] <... mprotect resumed>) = 0 [pid 5001] <... clone resumed>, parent_tid=[5009], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5009 [pid 5006] <... chdir resumed>) = 0 [pid 5005] <... chdir resumed>) = 0 [pid 5003] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5001] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5008 attached ./strace-static-x86_64: Process 5007 attached [pid 5006] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5005] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5001] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5010 attached ./strace-static-x86_64: Process 5009 attached [pid 5008] set_robust_list(0x5555567bc5e0, 24 [pid 5007] set_robust_list(0x5555567bc5e0, 24 [pid 5006] <... prctl resumed>) = 0 [pid 5005] <... prctl resumed>) = 0 [pid 5003] <... clone resumed>, parent_tid=[5010], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5010 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5010] set_robust_list(0x7f92ef6d69e0, 24 [pid 5009] set_robust_list(0x7f92ef6d69e0, 24 [pid 5008] <... set_robust_list resumed>) = 0 [pid 5007] <... set_robust_list resumed>) = 0 [pid 5006] setpgid(0, 0 [pid 5005] setpgid(0, 0 [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5010] <... set_robust_list resumed>) = 0 [pid 5009] <... set_robust_list resumed>) = 0 [pid 5008] chdir("./0" [pid 5007] chdir("./0" [pid 5006] <... setpgid resumed>) = 0 [pid 5005] <... setpgid resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5010] memfd_create("syzkaller", 0 [pid 5009] memfd_create("syzkaller", 0 [pid 5008] <... chdir resumed>) = 0 [pid 5007] <... chdir resumed>) = 0 [pid 5006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5005] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5009] <... memfd_create resumed>) = 3 [pid 5007] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5005] <... openat resumed>) = 3 [pid 5009] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5007] <... prctl resumed>) = 0 [pid 5005] write(3, "1000", 4 [pid 5009] <... mmap resumed>) = 0x7f92e72b6000 [pid 5007] setpgid(0, 0 [pid 5005] <... write resumed>) = 4 [pid 5009] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5008] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5007] <... setpgid resumed>) = 0 [pid 5006] <... openat resumed>) = 3 [pid 5005] close(3 [pid 5010] <... memfd_create resumed>) = 3 [pid 5009] <... write resumed>) = 262144 [pid 5008] <... prctl resumed>) = 0 [pid 5007] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5006] write(3, "1000", 4 [pid 5005] <... close resumed>) = 0 [pid 5010] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5009] munmap(0x7f92e72b6000, 262144 [pid 5008] setpgid(0, 0 [pid 5007] <... openat resumed>) = 3 [pid 5006] <... write resumed>) = 4 [pid 5005] symlink("/dev/binderfs", "./binderfs" [pid 5010] <... mmap resumed>) = 0x7f92e72b6000 [pid 5009] <... munmap resumed>) = 0 [pid 5008] <... setpgid resumed>) = 0 [pid 5007] write(3, "1000", 4 [pid 5006] close(3 [pid 5005] <... symlink resumed>) = 0 [pid 5009] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5007] <... write resumed>) = 4 [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... openat resumed>) = 4 [pid 5008] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5007] close(3 [pid 5010] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5006] <... close resumed>) = 0 [pid 5005] <... futex resumed>) = 0 [pid 5009] ioctl(4, LOOP_SET_FD, 3 [pid 5008] <... openat resumed>) = 3 [pid 5007] <... close resumed>) = 0 [pid 5006] symlink("/dev/binderfs", "./binderfs" [pid 5005] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5010] <... write resumed>) = 262144 [pid 5009] <... ioctl resumed>) = 0 [pid 5008] write(3, "1000", 4 [pid 5007] symlink("/dev/binderfs", "./binderfs" [pid 5006] <... symlink resumed>) = 0 [pid 5005] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5010] munmap(0x7f92e72b6000, 262144 [pid 5008] <... write resumed>) = 4 [pid 5007] <... symlink resumed>) = 0 [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5005] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5010] <... munmap resumed>) = 0 [pid 5008] close(3 [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] <... futex resumed>) = 0 [pid 5005] <... mprotect resumed>) = 0 [pid 5010] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5008] <... close resumed>) = 0 [pid 5007] <... futex resumed>) = 0 [pid 5006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5005] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5011 attached [pid 5010] <... openat resumed>) = 4 [pid 5008] symlink("/dev/binderfs", "./binderfs" [pid 5007] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5006] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5011] set_robust_list(0x7f92ef6d69e0, 24 [pid 5010] ioctl(4, LOOP_SET_FD, 3 [pid 5008] <... symlink resumed>) = 0 [pid 5007] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5006] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5005] <... clone resumed>, parent_tid=[5011], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5011 syzkaller login: [ 72.763202][ T5010] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5010 'syz-executor401' [ 72.791599][ T5009] loop0: detected capacity change from 0 to 512 [pid 5011] <... set_robust_list resumed>) = 0 [pid 5007] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] close(3 [pid 5007] <... mprotect resumed>) = 0 [pid 5005] <... futex resumed>) = 0 [pid 5009] <... close resumed>) = 0 [pid 5007] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5009] mkdir("./file0", 0777 [pid 5011] memfd_create("syzkaller", 0 [pid 5009] <... mkdir resumed>) = 0 [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] <... clone resumed>, parent_tid=[5012], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5012 [pid 5006] <... mprotect resumed>) = 0 [pid 5011] <... memfd_create resumed>) = 3 [pid 5010] <... ioctl resumed>) = 0 [pid 5009] mount("/dev/loop0", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5008] <... futex resumed>) = 0 [pid 5007] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5011] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5010] close(3 [pid 5008] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5007] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5012 attached [pid 5011] <... mmap resumed>) = 0x7f92e72b6000 [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5008] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5012] set_robust_list(0x7f92ef6d69e0, 24) = 0 [pid 5011] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5008] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5006] <... clone resumed>, parent_tid=[5013], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5013 [pid 5012] memfd_create("syzkaller", 0 [pid 5008] <... mprotect resumed>) = 0 [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5012] <... memfd_create resumed>) = 3 [pid 5008] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5006] <... futex resumed>) = 0 [pid 5012] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5012] <... mmap resumed>) = 0x7f92e72b6000 [pid 5011] <... write resumed>) = 262144 [pid 5010] <... close resumed>) = 0 [pid 5008] <... clone resumed>, parent_tid=[5014], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5014 [pid 5012] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5011] munmap(0x7f92e72b6000, 262144 [pid 5010] mkdir("./file0", 0777 [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5014 attached ./strace-static-x86_64: Process 5013 attached [pid 5012] <... write resumed>) = 262144 [pid 5011] <... munmap resumed>) = 0 [pid 5010] <... mkdir resumed>) = 0 [pid 5008] <... futex resumed>) = 0 [pid 5014] set_robust_list(0x7f92ef6d69e0, 24 [pid 5013] set_robust_list(0x7f92ef6d69e0, 24 [pid 5011] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5010] mount("/dev/loop1", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 72.819764][ T5010] loop1: detected capacity change from 0 to 512 [ 72.831547][ T5009] EXT4-fs: Ignoring removed oldalloc option [pid 5014] <... set_robust_list resumed>) = 0 [pid 5013] <... set_robust_list resumed>) = 0 [pid 5012] munmap(0x7f92e72b6000, 262144 [pid 5011] <... openat resumed>) = 4 [pid 5014] memfd_create("syzkaller", 0 [pid 5013] memfd_create("syzkaller", 0 [pid 5012] <... munmap resumed>) = 0 [pid 5011] ioctl(4, LOOP_SET_FD, 3 [pid 5014] <... memfd_create resumed>) = 3 [pid 5013] <... memfd_create resumed>) = 3 [pid 5012] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5014] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5012] <... openat resumed>) = 4 [pid 5014] <... mmap resumed>) = 0x7f92e72b6000 [pid 5012] ioctl(4, LOOP_SET_FD, 3 [pid 5014] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5013] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5011] <... ioctl resumed>) = 0 [pid 5013] <... mmap resumed>) = 0x7f92e72b6000 [pid 5011] close(3 [pid 5013] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5011] <... close resumed>) = 0 [pid 5013] <... write resumed>) = 262144 [pid 5013] munmap(0x7f92e72b6000, 262144 [pid 5011] mkdir("./file0", 0777 [pid 5013] <... munmap resumed>) = 0 [pid 5011] <... mkdir resumed>) = 0 [pid 5013] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5011] mount("/dev/loop2", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5014] <... write resumed>) = 262144 [pid 5013] <... openat resumed>) = 4 [ 72.863436][ T5010] EXT4-fs: Ignoring removed oldalloc option [ 72.875760][ T5011] loop2: detected capacity change from 0 to 512 [ 72.884317][ T5012] loop4: detected capacity change from 0 to 512 [ 72.895606][ T5011] EXT4-fs: Ignoring removed oldalloc option [ 72.897438][ T5009] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5013] ioctl(4, LOOP_SET_FD, 3 [pid 5014] munmap(0x7f92e72b6000, 262144 [pid 5012] <... ioctl resumed>) = 0 [pid 5012] close(3) = 0 [pid 5012] mkdir("./file0", 0777 [pid 5014] <... munmap resumed>) = 0 [pid 5014] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5014] ioctl(4, LOOP_SET_FD, 3 [pid 5012] <... mkdir resumed>) = 0 [pid 5012] mount("/dev/loop4", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5014] <... ioctl resumed>) = 0 [pid 5013] <... ioctl resumed>) = 0 [pid 5014] close(3) = 0 [pid 5013] close(3 [pid 5014] mkdir("./file0", 0777) = 0 [pid 5014] mount("/dev/loop5", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5013] <... close resumed>) = 0 [ 72.903480][ T5013] loop3: detected capacity change from 0 to 512 [ 72.921527][ T5014] loop5: detected capacity change from 0 to 512 [ 72.922964][ T5012] EXT4-fs: Ignoring removed oldalloc option [ 72.935795][ T5010] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 72.936540][ T5009] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5013] mkdir("./file0", 0777) = 0 [ 72.964483][ T5014] EXT4-fs: Ignoring removed oldalloc option [ 72.964638][ T5010] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 72.971438][ T5011] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 72.990441][ T5013] EXT4-fs: Ignoring removed oldalloc option [ 73.000361][ T5009] Quota error (device loop0): write_blk: dquota write failed [ 73.003144][ T5012] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.008104][ T5009] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 73.031840][ T5014] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.033580][ T5009] EXT4-fs (loop0): 1 truncate cleaned up [ 73.045728][ T5009] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [pid 5013] mount("/dev/loop3", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5009] <... mount resumed>) = 0 [pid 5009] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5009] chdir("./file0") = 0 [ 73.045740][ T5010] Quota error (device loop1): write_blk: dquota write failed [ 73.045801][ T5010] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 73.060510][ T5009] ext4 filesystem being mounted at /root/syzkaller.NRp6CU/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.092559][ T5010] EXT4-fs (loop1): 1 truncate cleaned up [ 73.093778][ T5011] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5009] ioctl(4, LOOP_CLR_FD) = 0 [ 73.098356][ T5010] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 73.126971][ T5014] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 73.127042][ T5013] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.141705][ T5012] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5009] close(4) = 0 [pid 5009] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5001] <... futex resumed>) = 0 [pid 5009] fspick(AT_FDCWD, ".", 0 [pid 5001] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... fspick resumed>) = 4 [pid 5001] <... futex resumed>) = 0 [pid 5009] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5009] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5009] read(-1, [pid 5001] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5001] <... futex resumed>) = 0 [pid 5009] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5009] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5009] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5001] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5001] <... futex resumed>) = 0 [pid 5009] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5009] <... fsconfig resumed>) = 0 [pid 5009] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5001] <... futex resumed>) = 0 [pid 5009] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5001] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5001] <... futex resumed>) = 0 [ 73.179142][ T5010] ext4 filesystem being mounted at /root/syzkaller.0bY7pW/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.182436][ T5014] Quota error (device loop5): write_blk: dquota write failed [ 73.193904][ T5013] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 73.215237][ T5013] Quota error (device loop3): write_blk: dquota write failed [pid 5010] <... mount resumed>) = 0 [pid 5009] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5010] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 73.220365][ T5011] Quota error (device loop2): write_blk: dquota write failed [ 73.222834][ T5013] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 73.241169][ T5014] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 73.243562][ T5012] Quota error (device loop4): write_blk: dquota write failed [ 73.261445][ T5013] EXT4-fs (loop3): 1 truncate cleaned up [ 73.271936][ T5011] EXT4-fs (loop2): 1 truncate cleaned up [pid 5010] chdir("./file0") = 0 [pid 5010] ioctl(4, LOOP_CLR_FD) = 0 [pid 5010] close(4) = 0 [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5003] <... futex resumed>) = 0 [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5010] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5010] fspick(AT_FDCWD, ".", 0 [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5010] <... fspick resumed>) = 4 [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 73.272032][ T5014] EXT4-fs (loop5): 1 truncate cleaned up [ 73.284026][ T5011] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 73.285154][ T5014] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 73.300900][ T5013] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... mount resumed>) = 0 [pid 5011] <... mount resumed>) = 0 [pid 5010] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5003] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = 0 [pid 5011] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5010] read(-1, [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5001] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5011] <... openat resumed>) = 3 [pid 5010] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5001] <... mmap resumed>) = 0x7f92e72d5000 [pid 5011] chdir("./file0" [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5011] <... chdir resumed>) = 0 [pid 5010] <... futex resumed>) = 1 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... mprotect resumed>) = 0 [pid 5011] ioctl(4, LOOP_CLR_FD [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5011] <... ioctl resumed>) = 0 [pid 5010] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5003] <... futex resumed>) = 0 [pid 5011] close(4 [pid 5010] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5001] <... clone resumed>, parent_tid=[5028], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5028 [pid 5011] <... close resumed>) = 0 [pid 5010] <... fsconfig resumed>) = 0 [pid 5001] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] <... futex resumed>) = 0 [pid 5014] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5011] <... futex resumed>) = 1 [pid 5010] <... futex resumed>) = 1 [pid 5003] <... futex resumed>) = 0 [pid 5001] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] <... openat resumed>) = 3 [pid 5011] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] chdir("./file0" [pid 5010] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 73.310644][ T5014] ext4 filesystem being mounted at /root/syzkaller.2mlfng/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.329658][ T5011] ext4 filesystem being mounted at /root/syzkaller.0pSMs5/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.334914][ T5012] EXT4-fs (loop4): 1 truncate cleaned up [ 73.354439][ T5013] ext4 filesystem being mounted at /root/syzkaller.mOZDn7/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.367363][ T5009] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5005] <... futex resumed>) = 0 [pid 5003] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5028 attached [pid 5014] <... chdir resumed>) = 0 [pid 5010] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] ioctl(4, LOOP_CLR_FD) = 0 [pid 5014] close(4 [pid 5028] set_robust_list(0x7f92e72f59e0, 24 [pid 5014] <... close resumed>) = 0 [pid 5011] <... futex resumed>) = 0 [pid 5009] <... fsconfig resumed>) = 0 [pid 5005] <... futex resumed>) = 1 [pid 5028] <... set_robust_list resumed>) = 0 [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] <... mount resumed>) = 0 [pid 5012] <... mount resumed>) = 0 [pid 5011] fspick(AT_FDCWD, ".", 0 [pid 5009] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5028] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5014] <... futex resumed>) = 1 [pid 5013] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5012] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5011] <... fspick resumed>) = 4 [pid 5009] <... futex resumed>) = 0 [pid 5008] <... futex resumed>) = 0 [pid 5028] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5014] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5013] <... openat resumed>) = 3 [pid 5012] <... openat resumed>) = 3 [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5028] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5013] chdir("./file0" [pid 5012] chdir("./file0" [pid 5011] <... futex resumed>) = 1 [pid 5010] <... fsconfig resumed>) = 0 [pid 5008] <... futex resumed>) = 0 [pid 5005] <... futex resumed>) = 0 [pid 5001] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5028] <... futex resumed>) = 0 [pid 5014] fspick(AT_FDCWD, ".", 0 [pid 5013] <... chdir resumed>) = 0 [pid 5012] <... chdir resumed>) = 0 [pid 5011] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... futex resumed>) = 0 [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5003] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5001] <... futex resumed>) = 1 [pid 5028] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5014] <... fspick resumed>) = 4 [pid 5013] ioctl(4, LOOP_CLR_FD [pid 5012] ioctl(4, LOOP_CLR_FD [pid 5011] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5010] <... futex resumed>) = 0 [pid 5009] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5005] <... futex resumed>) = 0 [ 73.380591][ T5012] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 73.395827][ T5012] ext4 filesystem being mounted at /root/syzkaller.0f3mWb/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.408717][ T5010] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] <... ioctl resumed>) = 0 [pid 5012] <... ioctl resumed>) = 0 [pid 5011] read(-1, [pid 5010] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5003] <... futex resumed>) = 0 [pid 5014] <... futex resumed>) = 1 [pid 5011] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5008] <... futex resumed>) = 0 [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5011] <... futex resumed>) = 1 [pid 5008] <... futex resumed>) = 0 [pid 5005] <... futex resumed>) = 0 [pid 5014] read(-1, [pid 5011] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5011] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5005] <... futex resumed>) = 0 [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] close(4 [pid 5012] close(4 [pid 5011] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5010] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] <... futex resumed>) = 1 [pid 5013] <... close resumed>) = 0 [pid 5012] <... close resumed>) = 0 [pid 5011] <... fsconfig resumed>) = 0 [pid 5008] <... futex resumed>) = 0 [pid 5014] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5011] <... futex resumed>) = 1 [pid 5008] <... futex resumed>) = 0 [pid 5005] <... futex resumed>) = 0 [pid 5014] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5011] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... fsconfig resumed>) = 0 [pid 5011] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5005] <... futex resumed>) = 0 [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5011] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] <... futex resumed>) = 1 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5012] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5008] <... futex resumed>) = 0 [pid 5014] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5008] <... futex resumed>) = 0 [pid 5014] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [ 73.447609][ T5009] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 73.469018][ T5011] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.480374][ T5009] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5013] <... futex resumed>) = 1 [pid 5012] <... futex resumed>) = 1 [pid 5010] <... futex resumed>) = 1 [pid 5007] <... futex resumed>) = 0 [pid 5006] <... futex resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5012] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5007] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5012] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5010] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5007] <... futex resumed>) = 0 [pid 5006] <... futex resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = 1 [pid 5028] <... futex resumed>) = 0 [pid 5028] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5013] fspick(AT_FDCWD, ".", 0 [pid 5012] fspick(AT_FDCWD, ".", 0 [pid 5010] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5001] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5013] <... fspick resumed>) = 4 [pid 5012] <... fspick resumed>) = 4 [pid 5012] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5011] <... fsconfig resumed>) = 0 [pid 5012] <... futex resumed>) = 1 [pid 5007] <... futex resumed>) = 0 [pid 5013] <... futex resumed>) = 1 [pid 5012] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] <... futex resumed>) = 0 [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5012] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5011] <... futex resumed>) = 1 [pid 5007] <... futex resumed>) = 0 [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5005] <... futex resumed>) = 0 [pid 5013] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5012] read(-1, [pid 5011] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5006] <... futex resumed>) = 0 [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5011] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5005] <... futex resumed>) = 0 [pid 5011] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5011] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5005] <... futex resumed>) = 0 [pid 5011] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5011] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5005] <... futex resumed>) = 0 [pid 5013] read(-1, [pid 5012] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5011] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5014] <... fsconfig resumed>) = 0 [pid 5008] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5012] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = 0 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5012] <... futex resumed>) = 1 [pid 5008] <... futex resumed>) = 0 [pid 5007] <... futex resumed>) = 0 [pid 5014] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5013] <... futex resumed>) = 1 [pid 5012] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5007] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] <... futex resumed>) = 0 [ 73.490585][ T5014] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.509405][ T5010] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 73.528862][ T5010] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.538170][ T5011] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [pid 5014] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5012] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5007] <... futex resumed>) = 0 [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5008] <... futex resumed>) = 0 [pid 5014] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5008] <... futex resumed>) = 0 [pid 5003] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5001] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5014] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5003] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5012] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5006] <... futex resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = 0 [pid 5003] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5001] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5003] <... mmap resumed>) = 0x7f92e72d5000 [pid 5001] <... mmap resumed>) = 0x7f92e72b4000 [pid 5003] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5001] mprotect(0x7f92e72b5000, 131072, PROT_READ|PROT_WRITE [pid 5005] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5005] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5003] <... mprotect resumed>) = 0 [pid 5001] <... mprotect resumed>) = 0 [pid 5005] <... futex resumed>) = 0 [pid 5003] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5001] clone(child_stack=0x7f92e72d43f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5013] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5012] <... fsconfig resumed>) = 0 [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5005] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 5032 attached [pid 5013] <... fsconfig resumed>) = 0 [pid 5012] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5009] <... fsconfig resumed>) = 0 [pid 5005] <... mmap resumed>) = 0x7f92e72d5000 [pid 5003] <... clone resumed>, parent_tid=[5031], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5031 [pid 5001] <... clone resumed>, parent_tid=[5032], tls=0x7f92e72d4700, child_tidptr=0x7f92e72d49d0) = 5032 [pid 5032] set_robust_list(0x7f92e72d49e0, 24 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5012] <... futex resumed>) = 1 [pid 5009] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] <... futex resumed>) = 0 [pid 5005] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5003] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] futex(0x7f92ef7af7c8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5031 attached [pid 5032] <... set_robust_list resumed>) = 0 [pid 5028] <... fsconfig resumed>) = 0 [pid 5013] <... futex resumed>) = 1 [pid 5012] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5009] <... futex resumed>) = 0 [ 73.555854][ T5009] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.563012][ T5014] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 73.568062][ T5010] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.575517][ T5011] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.594290][ T5028] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5007] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] <... futex resumed>) = 0 [pid 5005] <... mprotect resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5001] <... futex resumed>) = 0 [pid 5032] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5031] set_robust_list(0x7f92e72f59e0, 24 [pid 5028] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5012] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5010] <... fsconfig resumed>) = 0 [pid 5009] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5007] <... futex resumed>) = 0 [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5028] <... futex resumed>) = 0 [pid 5013] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5012] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5006] <... futex resumed>) = 0 [pid 5028] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5013] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5010] <... futex resumed>) = 0 [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5005] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5033], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5033 [pid 5005] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5005] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5003] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5001] futex(0x7f92ef7af7cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5033 attached [pid 5031] <... set_robust_list resumed>) = 0 [pid 5033] set_robust_list(0x7f92e72f59e0, 24 [pid 5031] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5033] <... set_robust_list resumed>) = 0 [pid 5033] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5008] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5008] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5008] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92e72d5000 [pid 5008] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5008] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5034], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5034 [pid 5008] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5008] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] <... fsconfig resumed>) = 0 ./strace-static-x86_64: Process 5034 attached [pid 5034] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 5031] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5031] <... futex resumed>) = 1 [pid 5013] <... fsconfig resumed>) = 0 [pid 5003] <... futex resumed>) = 0 [pid 5031] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5003] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5003] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5010] <... futex resumed>) = 0 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5010] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5006] <... futex resumed>) = 0 [ 73.612992][ T5014] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.625290][ T5031] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.626627][ T5012] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.646078][ T5013] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5013] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5007] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5014] <... fsconfig resumed>) = 0 [pid 5011] <... fsconfig resumed>) = 0 [pid 5007] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] <... futex resumed>) = 0 [pid 5005] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] <... futex resumed>) = 0 [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5005] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5014] <... futex resumed>) = 0 [pid 5011] <... futex resumed>) = 0 [pid 5007] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5005] <... futex resumed>) = 0 [pid 5014] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5011] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5007] <... mmap resumed>) = 0x7f92e72d5000 [pid 5005] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5007] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5007] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5037], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5037 [pid 5007] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5008] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5008] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5003] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5032] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [ 73.668114][ T5014] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.669235][ T5011] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.678389][ T5032] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 73.691447][ T5033] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5032] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5032] futex(0x7f92ef7af7c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5037 attached [pid 5037] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 5037] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0) = -1 EBADF (Bad file descriptor) [pid 5037] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] <... futex resumed>) = 0 [pid 5007] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5014] <... futex resumed>) = 0 [pid 5008] <... futex resumed>) = 1 [pid 5014] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5013] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5007] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5037] <... futex resumed>) = 1 [pid 5037] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5033] <... fsconfig resumed>) = 0 [pid 5033] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5033] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5034] <... fsconfig resumed>) = 0 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5012] <... fsconfig resumed>) = 0 [pid 5010] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5008] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5001] exit_group(0 [pid 5034] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5013] <... futex resumed>) = 1 [pid 5001] <... exit_group resumed>) = ? [pid 5034] <... futex resumed>) = 0 [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5034] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5010] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5012] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5010] <... futex resumed>) = 0 [pid 5012] <... futex resumed>) = 0 [pid 5010] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5003] exit_group(0 [pid 5031] <... futex resumed>) = ? [pid 5003] <... exit_group resumed>) = ? [pid 5031] +++ exited with 0 +++ [pid 5010] <... futex resumed>) = ? [pid 5012] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5032] <... futex resumed>) = ? [pid 5028] <... futex resumed>) = ? [pid 5009] <... futex resumed>) = ? [pid 5006] <... futex resumed>) = 0 [pid 5028] +++ exited with 0 +++ [pid 5032] +++ exited with 0 +++ [pid 5005] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5010] +++ exited with 0 +++ [pid 5009] +++ exited with 0 +++ [pid 5003] +++ exited with 0 +++ [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5001] +++ exited with 0 +++ [pid 4996] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5003, si_uid=0, si_status=0, si_utime=0, si_stime=24 /* 0.24 s */} --- [pid 4995] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5001, si_uid=0, si_status=0, si_utime=0, si_stime=22 /* 0.22 s */} --- [pid 4996] restart_syscall(<... resuming interrupted clone ...> [pid 4995] restart_syscall(<... resuming interrupted clone ...> [pid 5013] <... futex resumed>) = 0 [pid 5006] <... futex resumed>) = 1 [pid 4996] <... restart_syscall resumed>) = 0 [pid 4995] <... restart_syscall resumed>) = 0 [pid 5013] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5011] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5011] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [ 73.714512][ T5034] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.725781][ T5010] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 73.736560][ T5037] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 73.752590][ T5032] syz-executor401 (5032) used greatest stack depth: 19968 bytes left [pid 5005] exit_group(0 [pid 5033] <... futex resumed>) = ? [pid 5011] <... futex resumed>) = ? [pid 5005] <... exit_group resumed>) = ? [pid 5033] +++ exited with 0 +++ [pid 5011] +++ exited with 0 +++ [pid 5005] +++ exited with 0 +++ [pid 5014] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 4996] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5005, si_uid=0, si_status=0, si_utime=0, si_stime=21 /* 0.21 s */} --- [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4997] restart_syscall(<... resuming interrupted clone ...> [pid 4996] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4995] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4997] <... restart_syscall resumed>) = 0 [pid 4996] <... openat resumed>) = 3 [pid 4995] <... openat resumed>) = 3 [pid 4996] fstat(3, [pid 4995] fstat(3, [pid 4996] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] getdents64(3, [pid 4995] getdents64(3, [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4995] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4997] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4996] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] <... openat resumed>) = 3 [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4997] fstat(3, [pid 4996] lstat("./0/binderfs", [pid 4995] lstat("./0/binderfs", [pid 4997] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4996] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4995] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 5014] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4997] getdents64(3, [pid 4996] unlink("./0/binderfs" [pid 4995] unlink("./0/binderfs" [pid 5014] <... futex resumed>) = 1 [pid 5008] <... futex resumed>) = 0 [pid 5007] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4997] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4996] <... unlink resumed>) = 0 [pid 4995] <... unlink resumed>) = 0 [pid 5008] exit_group(0 [pid 4997] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... futex resumed>) = ? [pid 5008] <... exit_group resumed>) = ? [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] +++ exited with 0 +++ [pid 4997] lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4997] unlink("./0/binderfs") = 0 [pid 4997] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5012] <... futex resumed>) = 0 [pid 5007] <... futex resumed>) = 1 [pid 5012] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5014] +++ exited with 0 +++ [pid 5008] +++ exited with 0 +++ [pid 5000] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5008, si_uid=0, si_status=0, si_utime=0, si_stime=20 /* 0.20 s */} --- [pid 5007] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 73.765656][ T5013] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 73.776825][ T5037] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.787659][ T5013] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 73.806569][ T4997] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [pid 5000] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5000] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5000] getdents64(3, 0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 5000] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5000] lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 5000] unlink("./0/binderfs") = 0 [pid 5000] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5006] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5006] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92e72d5000 [pid 5006] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5007] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5037] <... fsconfig resumed>) = 0 [pid 5007] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5006] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5007] <... futex resumed>) = 0 [pid 5007] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5006] <... clone resumed>, parent_tid=[5040], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5040 [pid 5007] <... mmap resumed>) = 0x7f92e72b4000 [ 73.806580][ T4995] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.822000][ T4996] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.839401][ T5037] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.854060][ T5013] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5006] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5007] mprotect(0x7f92e72b5000, 131072, PROT_READ|PROT_WRITE [pid 5006] <... futex resumed>) = 0 [pid 5007] <... mprotect resumed>) = 0 [pid 5006] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5007] clone(child_stack=0x7f92e72d43f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5041], tls=0x7f92e72d4700, child_tidptr=0x7f92e72d49d0) = 5041 [pid 5007] futex(0x7f92ef7af7c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5007] futex(0x7f92ef7af7cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5037] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5037] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5013] <... fsconfig resumed>) = 0 [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5040 attached ./strace-static-x86_64: Process 5041 attached [pid 5012] <... fsconfig resumed>) = 0 [pid 4995] <... umount2 resumed>) = 0 [pid 5040] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 4996] <... umount2 resumed>) = 0 [pid 4995] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4996] lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4996] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] lstat("./0/file0", [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5041] set_robust_list(0x7f92e72d49e0, 24 [pid 4995] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5041] <... set_robust_list resumed>) = 0 [pid 4996] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4995] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5041] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 4996] <... openat resumed>) = 4 [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4996] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [ 73.864994][ T5000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.875236][ T5012] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 4995] <... openat resumed>) = 4 [pid 4996] getdents64(4, 0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4996] getdents64(4, 0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4996] close(4) = 0 [pid 5006] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4996] rmdir("./0/file0" [pid 5040] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5006] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4996] <... rmdir resumed>) = 0 [pid 5013] <... futex resumed>) = 0 [pid 5007] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5006] <... futex resumed>) = 1 [pid 5013] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5006] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4996] getdents64(3, 0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4996] close(3) = 0 [pid 4996] rmdir("./0") = 0 [pid 4995] fstat(4, [pid 4996] mkdir("./1", 0777 [pid 5012] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4997] <... umount2 resumed>) = 0 [pid 4996] <... mkdir resumed>) = 0 [pid 4995] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5012] <... futex resumed>) = 0 [pid 4996] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 4996] ioctl(3, LOOP_CLR_FD [pid 5000] <... umount2 resumed>) = 0 [pid 5012] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5000] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4995] getdents64(4, [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] close(3 [pid 4995] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5000] lstat("./0/file0", [pid 4997] lstat("./0/file0", [pid 4996] <... close resumed>) = 0 [pid 4995] getdents64(4, [pid 5000] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4996] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5000] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] close(4 [pid 5006] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5045 [pid 5000] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4997] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4995] <... close resumed>) = 0 [pid 5041] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5000] <... openat resumed>) = 4 [pid 4997] <... openat resumed>) = 4 [pid 4995] rmdir("./0/file0"./strace-static-x86_64: Process 5045 attached [pid 5041] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] fstat(4, [pid 4997] fstat(4, [pid 5045] set_robust_list(0x5555567bc5e0, 24 [pid 5041] <... futex resumed>) = 0 [pid 5000] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] <... rmdir resumed>) = 0 [pid 5045] <... set_robust_list resumed>) = 0 [pid 5041] futex(0x7f92ef7af7c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5007] exit_group(0 [pid 5000] getdents64(4, [pid 5045] chdir("./1" [pid 5037] <... futex resumed>) = ? [pid 5012] <... futex resumed>) = ? [pid 5007] <... exit_group resumed>) = ? [pid 5000] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4997] getdents64(4, [pid 4995] getdents64(3, [pid 5045] <... chdir resumed>) = 0 [pid 5040] <... fsconfig resumed>) = 0 [pid 5037] +++ exited with 0 +++ [pid 5012] +++ exited with 0 +++ [pid 4997] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4995] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5045] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5040] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] getdents64(4, [pid 4997] getdents64(4, [ 73.917098][ T5041] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 73.933527][ T5040] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 73.944757][ T5013] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 4995] close(3 [pid 5045] <... prctl resumed>) = 0 [pid 5041] <... futex resumed>) = ? [pid 5040] <... futex resumed>) = 0 [pid 5013] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5000] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4997] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4995] <... close resumed>) = 0 [pid 5045] setpgid(0, 0 [pid 5040] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5013] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] close(4 [pid 4997] close(4 [pid 4995] rmdir("./0" [pid 5045] <... setpgid resumed>) = 0 [pid 5013] <... futex resumed>) = 0 [pid 5000] <... close resumed>) = 0 [pid 4997] <... close resumed>) = 0 [pid 5045] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5013] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5000] rmdir("./0/file0" [pid 4997] rmdir("./0/file0" [pid 4995] <... rmdir resumed>) = 0 [pid 5045] <... openat resumed>) = 3 [pid 5006] exit_group(0 [pid 5000] <... rmdir resumed>) = 0 [pid 5045] write(3, "1000", 4 [pid 5040] <... futex resumed>) = ? [pid 5013] <... futex resumed>) = ? [pid 5006] <... exit_group resumed>) = ? [pid 5000] getdents64(3, [pid 4997] <... rmdir resumed>) = 0 [pid 4995] mkdir("./1", 0777 [pid 5045] <... write resumed>) = 4 [pid 5040] +++ exited with 0 +++ [pid 5013] +++ exited with 0 +++ [pid 5006] +++ exited with 0 +++ [pid 5000] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4997] getdents64(3, [pid 5045] close(3 [pid 5041] +++ exited with 0 +++ [pid 5007] +++ exited with 0 +++ [pid 5000] close(3 [pid 4998] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5006, si_uid=0, si_status=0, si_utime=0, si_stime=19 /* 0.19 s */} --- [pid 4997] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4995] <... mkdir resumed>) = 0 [pid 5045] <... close resumed>) = 0 [pid 5000] <... close resumed>) = 0 [pid 4999] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5007, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} --- [pid 4997] close(3 [pid 4995] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5045] symlink("/dev/binderfs", "./binderfs" [pid 5000] rmdir("./0" [pid 4997] <... close resumed>) = 0 [pid 4995] <... openat resumed>) = 3 [pid 5045] <... symlink resumed>) = 0 [pid 5000] <... rmdir resumed>) = 0 [pid 4998] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] rmdir("./0" [pid 4995] ioctl(3, LOOP_CLR_FD [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] mkdir("./1", 0777 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5045] <... futex resumed>) = 0 [pid 4998] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4997] <... rmdir resumed>) = 0 [pid 5045] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5000] <... mkdir resumed>) = 0 [pid 4998] <... openat resumed>) = 3 [pid 4997] mkdir("./1", 0777 [pid 4995] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5045] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5000] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 4999] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] fstat(3, [pid 5045] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5000] <... openat resumed>) = 3 [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] <... mkdir resumed>) = 0 [pid 4995] close(3 [pid 5045] <... mprotect resumed>) = 0 [pid 5000] ioctl(3, LOOP_CLR_FD [pid 4999] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4998] getdents64(3, [pid 4997] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 4995] <... close resumed>) = 0 [pid 5045] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5000] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4999] <... openat resumed>) = 3 [pid 4998] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4997] <... openat resumed>) = 3 [pid 4995] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5000] close(3 [pid 4999] fstat(3, [pid 4998] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5045] <... clone resumed>, parent_tid=[5047], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5047 [pid 4999] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... close resumed>) = 0 [pid 4999] getdents64(3, [pid 4998] lstat("./0/binderfs", [pid 4997] ioctl(3, LOOP_CLR_FD [pid 5045] <... futex resumed>) = 0 [pid 5000] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4999] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4998] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4997] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4995] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5048 [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 4999] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] unlink("./0/binderfs" [pid 4997] close(3 [pid 5000] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5049 [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] <... unlink resumed>) = 0 [pid 4997] <... close resumed>) = 0 ./strace-static-x86_64: Process 5047 attached [pid 4999] lstat("./0/binderfs", [pid 4998] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5048 attached [pid 5047] set_robust_list(0x7f92ef6d69e0, 24 [pid 4999] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 ./strace-static-x86_64: Process 5049 attached [pid 5047] <... set_robust_list resumed>) = 0 [pid 4999] unlink("./0/binderfs" [pid 5049] set_robust_list(0x5555567bc5e0, 24 [pid 5048] set_robust_list(0x5555567bc5e0, 24 [pid 5047] memfd_create("syzkaller", 0 [pid 4999] <... unlink resumed>) = 0 [pid 4997] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5050 ./strace-static-x86_64: Process 5050 attached [pid 5049] <... set_robust_list resumed>) = 0 [pid 5048] <... set_robust_list resumed>) = 0 [pid 5047] <... memfd_create resumed>) = 3 [pid 4999] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5050] set_robust_list(0x5555567bc5e0, 24 [pid 5049] chdir("./1" [pid 5048] chdir("./1" [pid 5047] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5049] <... chdir resumed>) = 0 [pid 5047] <... mmap resumed>) = 0x7f92e72b6000 [pid 5050] <... set_robust_list resumed>) = 0 [pid 5049] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5048] <... chdir resumed>) = 0 [pid 5047] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5050] chdir("./1" [pid 5049] <... prctl resumed>) = 0 [pid 5048] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5047] <... write resumed>) = 262144 [pid 5050] <... chdir resumed>) = 0 [pid 5049] setpgid(0, 0 [pid 5048] <... prctl resumed>) = 0 [pid 5050] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5049] <... setpgid resumed>) = 0 [pid 5048] setpgid(0, 0 [pid 5049] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5049] write(3, "1000", 4 [pid 5047] munmap(0x7f92e72b6000, 262144 [pid 5049] <... write resumed>) = 4 [pid 5047] <... munmap resumed>) = 0 [pid 5049] close(3) = 0 [pid 5049] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5050] <... prctl resumed>) = 0 [pid 5049] <... futex resumed>) = 0 [pid 5048] <... setpgid resumed>) = 0 [pid 5047] <... openat resumed>) = 4 [ 74.047951][ T4998] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.068738][ T4999] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [pid 5050] setpgid(0, 0 [pid 5049] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5048] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5047] ioctl(4, LOOP_SET_FD, 3 [pid 5050] <... setpgid resumed>) = 0 [pid 5049] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5048] <... openat resumed>) = 3 [pid 5047] <... ioctl resumed>) = 0 [pid 5049] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5047] close(3 [pid 5049] <... mprotect resumed>) = 0 [pid 5049] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5047] <... close resumed>) = 0 [pid 5050] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5048] write(3, "1000", 4 [pid 5047] mkdir("./file0", 0777 [pid 5050] <... openat resumed>) = 3 [pid 5049] <... clone resumed>, parent_tid=[5051], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5051 [pid 5048] <... write resumed>) = 4 [pid 5047] <... mkdir resumed>) = 0 [pid 5050] write(3, "1000", 4 [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] close(3 [ 74.093059][ T5047] loop1: detected capacity change from 0 to 512 [pid 5047] mount("/dev/loop1", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 4998] <... umount2 resumed>) = 0 [pid 5050] <... write resumed>) = 4 [pid 5049] <... futex resumed>) = 0 [pid 5048] <... close resumed>) = 0 [pid 4998] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5051 attached [pid 5050] close(3 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5048] symlink("/dev/binderfs", "./binderfs" [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5051] set_robust_list(0x7f92ef6d69e0, 24 [pid 5050] <... close resumed>) = 0 [pid 5048] <... symlink resumed>) = 0 [pid 4998] lstat("./0/file0", [pid 5051] <... set_robust_list resumed>) = 0 [pid 5050] symlink("/dev/binderfs", "./binderfs" [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5051] memfd_create("syzkaller", 0 [pid 5050] <... symlink resumed>) = 0 [pid 5048] <... futex resumed>) = 0 [pid 4998] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5051] <... memfd_create resumed>) = 3 [pid 5050] <... futex resumed>) = 0 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5048] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5051] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5050] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5048] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 4998] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5051] <... mmap resumed>) = 0x7f92e72b6000 [pid 5050] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5048] <... mprotect resumed>) = 0 [pid 4998] <... openat resumed>) = 4 [pid 5051] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5050] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5048] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 4998] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5050] <... mprotect resumed>) = 0 [pid 4998] getdents64(4, ./strace-static-x86_64: Process 5052 attached [pid 5051] <... write resumed>) = 262144 [pid 5050] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5048] <... clone resumed>, parent_tid=[5052], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5052 [pid 4999] <... umount2 resumed>) = 0 [pid 4998] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4999] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5051] munmap(0x7f92e72b6000, 262144 [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] getdents64(4, [pid 5051] <... munmap resumed>) = 0 [pid 5050] <... clone resumed>, parent_tid=[5053], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5053 [pid 5048] <... futex resumed>) = 0 [pid 4999] lstat("./0/file0", [pid 4998] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5052] set_robust_list(0x7f92ef6d69e0, 24 [pid 5051] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 4999] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4998] close(4./strace-static-x86_64: Process 5053 attached [pid 5052] <... set_robust_list resumed>) = 0 [pid 5051] <... openat resumed>) = 4 [pid 5050] <... futex resumed>) = 0 [pid 4999] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] <... close resumed>) = 0 [pid 5053] set_robust_list(0x7f92ef6d69e0, 24 [pid 5052] memfd_create("syzkaller", 0 [pid 5051] ioctl(4, LOOP_SET_FD, 3 [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] rmdir("./0/file0" [pid 5053] <... set_robust_list resumed>) = 0 [pid 5052] <... memfd_create resumed>) = 3 [pid 5051] <... ioctl resumed>) = 0 [pid 4999] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4998] <... rmdir resumed>) = 0 [pid 5053] memfd_create("syzkaller", 0 [pid 5052] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 4998] getdents64(3, [pid 5053] <... memfd_create resumed>) = 3 [pid 5052] <... mmap resumed>) = 0x7f92e72b6000 [ 74.121426][ T5047] EXT4-fs: Ignoring removed oldalloc option [ 74.160222][ T5051] loop5: detected capacity change from 0 to 512 [pid 4999] <... openat resumed>) = 4 [pid 4998] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5053] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5052] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5051] close(3 [pid 4998] close(3 [pid 5053] <... mmap resumed>) = 0x7f92e72b6000 [pid 5052] <... write resumed>) = 262144 [pid 4998] <... close resumed>) = 0 [pid 5053] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5052] munmap(0x7f92e72b6000, 262144 [pid 4999] fstat(4, [pid 4998] rmdir("./0" [pid 5053] <... write resumed>) = 262144 [pid 5052] <... munmap resumed>) = 0 [pid 5051] <... close resumed>) = 0 [pid 4999] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5051] mkdir("./file0", 0777 [pid 4999] getdents64(4, [pid 4998] <... rmdir resumed>) = 0 [pid 5051] <... mkdir resumed>) = 0 [pid 4999] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5051] mount("/dev/loop5", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 4999] getdents64(4, [pid 5053] munmap(0x7f92e72b6000, 262144 [pid 5052] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 4998] mkdir("./1", 0777 [pid 5053] <... munmap resumed>) = 0 [pid 5052] <... openat resumed>) = 4 [pid 4998] <... mkdir resumed>) = 0 [pid 5053] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5052] ioctl(4, LOOP_SET_FD, 3 [pid 4998] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5053] <... openat resumed>) = 4 [pid 4999] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4999] close(4) = 0 [pid 4999] rmdir("./0/file0") = 0 [pid 4999] getdents64(3, 0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4999] close(3) = 0 [pid 4998] <... openat resumed>) = 3 [pid 5053] ioctl(4, LOOP_SET_FD, 3 [pid 4999] rmdir("./0" [pid 4998] ioctl(3, LOOP_CLR_FD [pid 4999] <... rmdir resumed>) = 0 [pid 4999] mkdir("./1", 0777) = 0 [pid 4999] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [ 74.174872][ T5047] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.189282][ T5047] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 74.196456][ T5051] EXT4-fs: Ignoring removed oldalloc option [ 74.208111][ T5052] loop0: detected capacity change from 0 to 512 [pid 4999] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 4999] close(3) = 0 [pid 4998] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4999] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567bc5d0) = 5056 [pid 4998] close(3) = 0 [pid 4998] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5052] <... ioctl resumed>) = 0 [pid 5052] close(3) = 0 [pid 4998] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5058 [pid 5052] mkdir("./file0", 0777) = 0 [pid 5052] mount("/dev/loop0", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5053] <... ioctl resumed>) = 0 [pid 5053] close(3) = 0 ./strace-static-x86_64: Process 5058 attached [pid 5058] set_robust_list(0x5555567bc5e0, 24./strace-static-x86_64: Process 5056 attached ) = 0 [pid 5056] set_robust_list(0x5555567bc5e0, 24 [pid 5058] chdir("./1") = 0 [pid 5056] <... set_robust_list resumed>) = 0 [pid 5053] mkdir("./file0", 0777) = 0 [ 74.219654][ T5053] loop2: detected capacity change from 0 to 512 [ 74.236853][ T5047] EXT4-fs (loop1): 1 truncate cleaned up [ 74.244531][ T5052] EXT4-fs: Ignoring removed oldalloc option [ 74.263328][ T5047] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [pid 5053] mount("/dev/loop2", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5058] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5056] chdir("./1" [pid 5058] <... prctl resumed>) = 0 [pid 5058] setpgid(0, 0) = 0 [pid 5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5047] <... mount resumed>) = 0 [pid 5058] write(3, "1000", 4 [pid 5056] <... chdir resumed>) = 0 [pid 5058] <... write resumed>) = 4 [pid 5056] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5058] close(3) = 0 [pid 5056] <... prctl resumed>) = 0 [pid 5058] symlink("/dev/binderfs", "./binderfs" [pid 5056] setpgid(0, 0 [pid 5058] <... symlink resumed>) = 0 [pid 5056] <... setpgid resumed>) = 0 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5058] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5056] <... openat resumed>) = 3 [pid 5058] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5058] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5056] write(3, "1000", 4 [pid 5058] <... mprotect resumed>) = 0 [pid 5056] <... write resumed>) = 4 [pid 5047] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5058] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5056] close(3 [pid 5047] chdir("./file0") = 0 [pid 5047] ioctl(4, LOOP_CLR_FD) = 0 [pid 5047] close(4) = 0 [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5045] <... futex resumed>) = 0 [pid 5047] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5045] <... futex resumed>) = 0 [pid 5056] <... close resumed>) = 0 [pid 5058] <... clone resumed>, parent_tid=[5062], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5062 [pid 5047] fspick(AT_FDCWD, ".", 0 [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5047] <... fspick resumed>) = 4 [ 74.269838][ T5053] EXT4-fs: Ignoring removed oldalloc option [ 74.280842][ T5051] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.285202][ T5047] ext4 filesystem being mounted at /root/syzkaller.0bY7pW/1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.313911][ T5052] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5045] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5062 attached [pid 5047] read(-1, [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] set_robust_list(0x7f92ef6d69e0, 24 [pid 5047] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5045] <... futex resumed>) = 0 [pid 5062] <... set_robust_list resumed>) = 0 [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5047] <... futex resumed>) = 0 [pid 5045] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5047] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5045] <... futex resumed>) = 0 [pid 5047] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5047] <... fsconfig resumed>) = 0 [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5045] <... futex resumed>) = 0 [pid 5047] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5045] <... futex resumed>) = 0 [pid 5047] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [ 74.323745][ T5051] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 74.346583][ T5047] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.359337][ T5052] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5056] symlink("/dev/binderfs", "./binderfs" [pid 5062] <... futex resumed>) = 0 [pid 5058] <... futex resumed>) = 1 [pid 5062] memfd_create("syzkaller", 0 [pid 5045] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5062] <... memfd_create resumed>) = 3 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5056] <... symlink resumed>) = 0 [pid 5045] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5045] <... futex resumed>) = 0 [pid 5062] <... mmap resumed>) = 0x7f92e72b6000 [pid 5045] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5062] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5056] <... futex resumed>) = 0 [pid 5062] <... write resumed>) = 262144 [pid 5062] munmap(0x7f92e72b6000, 262144) = 0 [pid 5062] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5062] ioctl(4, LOOP_SET_FD, 3 [pid 5056] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5045] <... mmap resumed>) = 0x7f92e72d5000 [pid 5056] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5045] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5056] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5045] <... mprotect resumed>) = 0 [pid 5056] <... mprotect resumed>) = 0 [pid 5045] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5056] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5045] <... clone resumed>, parent_tid=[5065], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5065 [pid 5045] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5045] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5056] <... clone resumed>, parent_tid=[5066], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5066 [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5047] <... fsconfig resumed>) = 0 ./strace-static-x86_64: Process 5066 attached [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] set_robust_list(0x7f92ef6d69e0, 24 [pid 5047] <... futex resumed>) = 0 [pid 5047] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5066] <... set_robust_list resumed>) = 0 [ 74.379377][ T5051] EXT4-fs (loop5): 1 truncate cleaned up [ 74.392927][ T5053] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.401354][ T5051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 74.406601][ T5062] loop3: detected capacity change from 0 to 512 [pid 5066] memfd_create("syzkaller", 0./strace-static-x86_64: Process 5065 attached [pid 5065] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 5065] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0) = -1 EBADF (Bad file descriptor) [pid 5066] <... memfd_create resumed>) = 3 [pid 5065] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... mount resumed>) = 0 [pid 5065] <... futex resumed>) = 1 [pid 5065] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5062] <... ioctl resumed>) = 0 [pid 5066] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5045] <... futex resumed>) = 0 [pid 5066] <... mmap resumed>) = 0x7f92e72b6000 [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] close(3) = 0 [pid 5062] mkdir("./file0", 0777) = 0 [ 74.430968][ T5051] ext4 filesystem being mounted at /root/syzkaller.2mlfng/1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.434885][ T5053] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 74.461433][ T5052] EXT4-fs (loop0): 1 truncate cleaned up [ 74.465490][ T5062] EXT4-fs: Ignoring removed oldalloc option [pid 5062] mount("/dev/loop3", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5066] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5047] <... futex resumed>) = 0 [pid 5045] <... futex resumed>) = 1 [pid 5047] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5066] <... write resumed>) = 262144 [pid 5051] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5066] munmap(0x7f92e72b6000, 262144) = 0 [pid 5051] <... openat resumed>) = 3 [pid 5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5051] chdir("./file0" [pid 5066] <... openat resumed>) = 4 [pid 5051] <... chdir resumed>) = 0 [ 74.470394][ T5052] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 74.485925][ T5047] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 74.504170][ T5047] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.505545][ T5053] EXT4-fs (loop2): 1 truncate cleaned up [ 74.514053][ T5052] ext4 filesystem being mounted at /root/syzkaller.NRp6CU/1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [pid 5066] ioctl(4, LOOP_SET_FD, 3 [pid 5052] <... mount resumed>) = 0 [pid 5051] ioctl(4, LOOP_CLR_FD [pid 5045] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 74.522689][ T5062] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.532482][ T5053] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 74.539234][ T5047] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.551122][ T5053] ext4 filesystem being mounted at /root/syzkaller.0pSMs5/1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.574118][ T5066] loop4: detected capacity change from 0 to 512 [pid 5066] <... ioctl resumed>) = 0 [pid 5053] <... mount resumed>) = 0 [pid 5052] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5051] <... ioctl resumed>) = 0 [pid 5047] <... fsconfig resumed>) = 0 [pid 5045] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] close(3 [pid 5065] <... futex resumed>) = 0 [pid 5053] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5052] <... openat resumed>) = 3 [pid 5051] close(4 [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5045] <... futex resumed>) = 1 [pid 5066] <... close resumed>) = 0 [pid 5065] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5053] <... openat resumed>) = 3 [pid 5052] chdir("./file0" [pid 5051] <... close resumed>) = 0 [pid 5047] <... futex resumed>) = 0 [pid 5045] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5066] mkdir("./file0", 0777 [pid 5053] chdir("./file0" [pid 5052] <... chdir resumed>) = 0 [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5066] <... mkdir resumed>) = 0 [pid 5053] <... chdir resumed>) = 0 [pid 5052] ioctl(4, LOOP_CLR_FD [pid 5051] <... futex resumed>) = 1 [pid 5049] <... futex resumed>) = 0 [pid 5066] mount("/dev/loop4", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5053] ioctl(4, LOOP_CLR_FD [pid 5052] <... ioctl resumed>) = 0 [pid 5051] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] <... ioctl resumed>) = 0 [pid 5052] close(4 [pid 5051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 74.578245][ T5062] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 74.598071][ T5062] EXT4-fs (loop3): 1 truncate cleaned up [ 74.607471][ T5066] EXT4-fs: Ignoring removed oldalloc option [ 74.616962][ T5065] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5049] <... futex resumed>) = 0 [pid 5053] close(4 [pid 5052] <... close resumed>) = 0 [pid 5051] fspick(AT_FDCWD, ".", 0 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5045] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5053] <... close resumed>) = 0 [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... fspick resumed>) = 4 [pid 5045] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5065] <... fsconfig resumed>) = 0 [pid 5062] <... mount resumed>) = 0 [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5052] <... futex resumed>) = 1 [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... futex resumed>) = 0 [pid 5047] <... futex resumed>) = 0 [pid 5045] <... futex resumed>) = 1 [pid 5065] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5053] <... futex resumed>) = 1 [pid 5052] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5051] <... futex resumed>) = 1 [pid 5050] <... futex resumed>) = 0 [pid 5049] <... futex resumed>) = 0 [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5045] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] <... futex resumed>) = 0 [pid 5062] <... openat resumed>) = 3 [pid 5053] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5052] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5051] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... futex resumed>) = 0 [pid 5065] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5062] chdir("./file0" [pid 5053] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5052] fspick(AT_FDCWD, ".", 0 [pid 5051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5050] <... futex resumed>) = 0 [pid 5049] <... futex resumed>) = 0 [pid 5062] <... chdir resumed>) = 0 [pid 5052] <... fspick resumed>) = 4 [pid 5051] read(-1, [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] ioctl(4, LOOP_CLR_FD [pid 5053] fspick(AT_FDCWD, ".", 0 [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5051] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5062] <... ioctl resumed>) = 0 [pid 5062] close(4) = 0 [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] <... futex resumed>) = 0 [pid 5053] <... fspick resumed>) = 4 [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5048] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... futex resumed>) = 0 [pid 5053] <... futex resumed>) = 1 [pid 5050] <... futex resumed>) = 0 [pid 5051] <... futex resumed>) = 1 [pid 5053] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5052] <... futex resumed>) = 0 [pid 5051] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] <... futex resumed>) = 0 [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5053] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5052] read(-1, [pid 5050] <... futex resumed>) = 0 [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] read(-1, [pid 5052] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5049] <... futex resumed>) = 1 [pid 5053] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... futex resumed>) = 0 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5052] <... futex resumed>) = 1 [pid 5051] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5048] <... futex resumed>) = 0 [ 74.631170][ T5062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 74.644038][ T5062] ext4 filesystem being mounted at /root/syzkaller.mOZDn7/1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.667385][ T5047] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5053] <... futex resumed>) = 1 [pid 5052] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5051] <... fsconfig resumed>) = 0 [pid 5050] <... futex resumed>) = 0 [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5052] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... futex resumed>) = 0 [pid 5053] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5052] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5051] <... futex resumed>) = 1 [pid 5050] <... futex resumed>) = 0 [pid 5049] <... futex resumed>) = 0 [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5053] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5052] <... fsconfig resumed>) = 0 [pid 5051] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] <... fsconfig resumed>) = 0 [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5049] <... futex resumed>) = 0 [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5052] <... futex resumed>) = 1 [pid 5051] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] <... futex resumed>) = 0 [pid 5053] <... futex resumed>) = 1 [pid 5052] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5050] <... futex resumed>) = 0 [pid 5062] <... futex resumed>) = 0 [pid 5053] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5052] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] fspick(AT_FDCWD, ".", 0) = 4 [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] <... futex resumed>) = 0 [pid 5052] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5050] <... futex resumed>) = 0 [pid 5048] <... futex resumed>) = 0 [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] <... futex resumed>) = 0 [pid 5062] read(-1, NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] <... futex resumed>) = 0 [pid 5062] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0) = 0 [pid 5058] <... futex resumed>) = 0 [ 74.691232][ T5051] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.706252][ T5066] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.717077][ T5053] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.720658][ T5052] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5045] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5062] <... futex resumed>) = 0 [pid 5053] <... fsconfig resumed>) = 0 [pid 5051] <... fsconfig resumed>) = 0 [pid 5047] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5053] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5050] <... futex resumed>) = 0 [pid 5047] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... futex resumed>) = 0 [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5047] <... futex resumed>) = 0 [pid 5053] <... futex resumed>) = 0 [pid 5052] <... fsconfig resumed>) = 0 [pid 5051] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5050] <... futex resumed>) = 1 [pid 5058] <... futex resumed>) = 1 [pid 5049] <... futex resumed>) = 0 [pid 5048] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5047] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5062] <... futex resumed>) = 0 [pid 5053] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5062] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5053] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5045] exit_group(0 [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5052] <... futex resumed>) = 0 [pid 5051] <... futex resumed>) = 0 [pid 5049] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5048] <... futex resumed>) = 0 [pid 5047] <... futex resumed>) = ? [pid 5045] <... exit_group resumed>) = ? [pid 5051] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5047] +++ exited with 0 +++ [pid 5051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5049] <... futex resumed>) = 0 [pid 5051] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] <... futex resumed>) = ? [pid 5053] <... futex resumed>) = 1 [pid 5052] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5050] <... futex resumed>) = 0 [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5065] +++ exited with 0 +++ [pid 5045] +++ exited with 0 +++ [pid 5053] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5052] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 4996] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5045, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- [pid 4996] restart_syscall(<... resuming interrupted clone ...>) = 0 [ 74.735956][ T5066] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 74.758173][ T5062] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.766162][ T5051] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 74.771854][ T5066] EXT4-fs (loop4): 1 truncate cleaned up [pid 4996] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4996] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5062] <... fsconfig resumed>) = 0 [pid 4996] <... openat resumed>) = 3 [pid 5058] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4996] fstat(3, [pid 5058] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 4996] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5058] <... futex resumed>) = 0 [pid 4996] getdents64(3, [pid 5058] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 4996] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 5058] <... mmap resumed>) = 0x7f92e72d5000 [pid 5048] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4996] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5058] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5048] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5058] <... mprotect resumed>) = 0 [pid 5048] <... futex resumed>) = 0 [pid 4996] lstat("./1/binderfs", [pid 5058] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5048] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 4996] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 5048] <... mmap resumed>) = 0x7f92e72d5000 [pid 4996] unlink("./1/binderfs" [pid 5058] <... clone resumed>, parent_tid=[5072], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5072 [pid 5048] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 4996] <... unlink resumed>) = 0 [pid 5058] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... mprotect resumed>) = 0 [pid 4996] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5062] <... futex resumed>) = 0 [pid 5058] <... futex resumed>) = 0 [pid 5052] <... futex resumed>) = 0 [pid 5049] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5048] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5072 attached [pid 5058] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5049] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5072] set_robust_list(0x7f92e72f59e0, 24 [pid 5049] <... futex resumed>) = 0 [pid 5048] <... clone resumed>, parent_tid=[5073], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5073 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5050] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5049] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5048] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5072] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5050] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] <... mmap resumed>) = 0x7f92e72d5000 [pid 5048] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5073 attached [pid 5072] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5050] <... futex resumed>) = 0 [pid 5049] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5048] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5073] set_robust_list(0x7f92e72f59e0, 24 [pid 5072] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5050] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5049] <... mprotect resumed>) = 0 [pid 5073] <... set_robust_list resumed>) = 0 [pid 5072] <... futex resumed>) = 1 [pid 5058] <... futex resumed>) = 0 [pid 5050] <... mmap resumed>) = 0x7f92e72d5000 [ 74.786300][ T5066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 74.794329][ T5051] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.799237][ T5053] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 74.818127][ T5053] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.828490][ T5066] ext4 filesystem being mounted at /root/syzkaller.0f3mWb/1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [pid 5049] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5052] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5073] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5072] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5050] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5062] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5058] <... futex resumed>) = 0 [pid 5050] <... mprotect resumed>) = 0 [pid 5049] <... clone resumed>, parent_tid=[5074], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5074 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5050] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5049] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5075 attached [pid 5062] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5049] <... futex resumed>) = 0 [pid 5075] set_robust_list(0x7f92e72f59e0, 24 [pid 5050] <... clone resumed>, parent_tid=[5075], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5075 [pid 5049] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5074 attached [pid 5050] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5074] set_robust_list(0x7f92e72f59e0, 24 [pid 5050] <... futex resumed>) = 0 [pid 5074] <... set_robust_list resumed>) = 0 [pid 5050] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5074] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5075] <... set_robust_list resumed>) = 0 [pid 5066] <... mount resumed>) = 0 [ 74.842754][ T4996] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.843951][ T5073] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 74.866235][ T5062] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 74.873706][ T5073] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5075] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5066] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5048] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4996] <... umount2 resumed>) = 0 [pid 5058] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5048] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5058] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... futex resumed>) = 1 [pid 4996] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5072] <... futex resumed>) = 0 [pid 5058] <... futex resumed>) = 1 [pid 5052] <... futex resumed>) = 0 [pid 5066] <... openat resumed>) = 3 [pid 5048] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5066] chdir("./file0" [pid 5053] <... fsconfig resumed>) = 0 [pid 5052] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 4996] lstat("./1/file0", [pid 5075] <... fsconfig resumed>) = 0 [pid 5072] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5066] <... chdir resumed>) = 0 [pid 5058] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] <... fsconfig resumed>) = 0 [pid 5049] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4996] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5066] ioctl(4, LOOP_CLR_FD [pid 5053] <... futex resumed>) = 0 [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4996] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5066] <... ioctl resumed>) = 0 [pid 5053] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5051] <... futex resumed>) = 0 [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5066] close(4 [pid 5051] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 4996] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5066] <... close resumed>) = 0 [pid 5051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5050] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5049] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4996] <... openat resumed>) = 4 [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5051] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 4996] fstat(4, [pid 5050] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5049] <... futex resumed>) = 0 [pid 5066] <... futex resumed>) = 1 [pid 5056] <... futex resumed>) = 0 [pid 5051] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 4996] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [ 74.886690][ T5053] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.887005][ T5051] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.899067][ T5062] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 74.918416][ T5075] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.918548][ T5074] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5066] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] <... futex resumed>) = 0 [pid 5051] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5050] <... futex resumed>) = 1 [pid 5049] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4996] getdents64(4, [pid 5075] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5053] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5051] <... futex resumed>) = 0 [pid 4996] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5075] <... futex resumed>) = 0 [pid 5074] <... fsconfig resumed>) = 0 [pid 5066] fspick(AT_FDCWD, ".", 0 [pid 5062] <... fsconfig resumed>) = 0 [pid 5056] <... futex resumed>) = 0 [pid 5050] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5049] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5074] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... fspick resumed>) = 4 [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5049] exit_group(0 [pid 4996] getdents64(4, [pid 5074] <... futex resumed>) = ? [pid 5062] <... futex resumed>) = 0 [pid 5058] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5049] <... exit_group resumed>) = ? [pid 5048] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5074] +++ exited with 0 +++ [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5058] <... futex resumed>) = 0 [pid 5048] <... futex resumed>) = 0 [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5058] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 4996] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5066] <... futex resumed>) = 1 [pid 5062] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5056] <... futex resumed>) = 0 [pid 5048] <... mmap resumed>) = 0x7f92e72b4000 [pid 4996] close(4 [pid 5075] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5066] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5062] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] mprotect(0x7f92e72b5000, 131072, PROT_READ|PROT_WRITE [pid 4996] <... close resumed>) = 0 [pid 5072] <... fsconfig resumed>) = 0 [pid 5066] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5062] <... futex resumed>) = 1 [pid 5058] <... futex resumed>) = 0 [pid 5056] <... futex resumed>) = 0 [pid 5051] +++ exited with 0 +++ [pid 5049] +++ exited with 0 +++ [pid 5048] <... mprotect resumed>) = 0 [pid 4996] rmdir("./1/file0" [pid 5072] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] read(-1, [pid 5062] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5058] exit_group(0 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5048] clone(child_stack=0x7f92e72d43f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5072] <... futex resumed>) = ? [pid 5066] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5062] <... futex resumed>) = ? [pid 5058] <... exit_group resumed>) = ? [pid 5000] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5049, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- [pid 4996] <... rmdir resumed>) = 0 [pid 5072] +++ exited with 0 +++ [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5062] +++ exited with 0 +++ [pid 5058] +++ exited with 0 +++ [ 74.947299][ T5062] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.950899][ T5053] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 74.975670][ T5072] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 74.975843][ T5073] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5048] <... clone resumed>, parent_tid=[5080], tls=0x7f92e72d4700, child_tidptr=0x7f92e72d49d0) = 5080 [pid 5000] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] getdents64(3, [pid 5066] <... futex resumed>) = 1 [pid 5056] <... futex resumed>) = 0 [pid 5048] futex(0x7f92ef7af7c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5058, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5048] <... futex resumed>) = 0 [pid 5000] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4998] restart_syscall(<... resuming interrupted clone ...> [pid 5056] <... futex resumed>) = 0 [pid 5048] futex(0x7f92ef7af7cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] <... openat resumed>) = 3 [pid 4998] <... restart_syscall resumed>) = 0 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] fstat(3, ./strace-static-x86_64: Process 5080 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5080] set_robust_list(0x7f92e72d49e0, 24 [pid 5000] getdents64(3, [pid 4998] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5080] <... set_robust_list resumed>) = 0 [pid 5000] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5080] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5000] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5073] <... fsconfig resumed>) = 0 [pid 5066] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5052] <... fsconfig resumed>) = 0 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5073] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... fsconfig resumed>) = 0 [pid 5053] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5052] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] lstat("./1/binderfs", [pid 4998] <... openat resumed>) = 3 [pid 4996] close(3 [pid 5073] <... futex resumed>) = 0 [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5052] <... futex resumed>) = 0 [pid 5000] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4998] fstat(3, [pid 4996] <... close resumed>) = 0 [pid 5073] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5066] <... futex resumed>) = 1 [pid 5056] <... futex resumed>) = 0 [pid 5053] <... futex resumed>) = 1 [pid 5052] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5050] <... futex resumed>) = 0 [pid 5000] unlink("./1/binderfs" [pid 4998] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4996] rmdir("./1" [pid 5066] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5053] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5050] exit_group(0 [pid 5000] <... unlink resumed>) = 0 [pid 4998] getdents64(3, [pid 4996] <... rmdir resumed>) = 0 [pid 5075] <... futex resumed>) = ? [pid 5066] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5056] <... futex resumed>) = 0 [pid 5053] <... futex resumed>) = ? [pid 5050] <... exit_group resumed>) = ? [pid 5000] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4996] mkdir("./2", 0777 [pid 5075] +++ exited with 0 +++ [pid 5066] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4998] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] <... mkdir resumed>) = 0 [pid 5080] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5053] +++ exited with 0 +++ [pid 5050] +++ exited with 0 +++ [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5080] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] lstat("./1/binderfs", [pid 5080] <... futex resumed>) = 1 [pid 5048] <... futex resumed>) = 0 [pid 4998] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4997] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5050, si_uid=0, si_status=0, si_utime=0, si_stime=20 /* 0.20 s */} --- [pid 5080] futex(0x7f92ef7af7c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5048] exit_group(0 [pid 4998] unlink("./1/binderfs" [pid 4997] restart_syscall(<... resuming interrupted clone ...> [pid 5080] <... futex resumed>) = ? [pid 5048] <... exit_group resumed>) = ? [pid 4998] <... unlink resumed>) = 0 [pid 4997] <... restart_syscall resumed>) = 0 [pid 5080] +++ exited with 0 +++ [ 75.015828][ T5052] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.036762][ T5000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.048801][ T4998] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [pid 4998] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5073] <... futex resumed>) = ? [pid 4996] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5073] +++ exited with 0 +++ [pid 5052] <... futex resumed>) = ? [pid 4997] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] <... openat resumed>) = 3 [pid 5052] +++ exited with 0 +++ [pid 5048] +++ exited with 0 +++ [pid 4996] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 4996] close(3 [pid 4995] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5048, si_uid=0, si_status=0, si_utime=0, si_stime=18 /* 0.18 s */} --- [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] <... close resumed>) = 0 [pid 4995] restart_syscall(<... resuming interrupted clone ...> [pid 4997] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4996] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] <... restart_syscall resumed>) = 0 [pid 4997] <... openat resumed>) = 3 [pid 4997] fstat(3, [pid 4996] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5081 [pid 4997] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] getdents64(3, [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4997] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4995] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4997] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] <... openat resumed>) = 3 [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] fstat(3, [pid 4997] lstat("./1/binderfs", [pid 4995] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4995] getdents64(3, [pid 4997] unlink("./1/binderfs" [pid 4995] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 5081 attached [pid 4997] <... unlink resumed>) = 0 [pid 4995] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5081] set_robust_list(0x5555567bc5e0, 24 [pid 4997] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5081] <... set_robust_list resumed>) = 0 [pid 4995] lstat("./1/binderfs", [pid 5081] chdir("./2" [pid 4995] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 5081] <... chdir resumed>) = 0 [pid 4995] unlink("./1/binderfs" [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 4995] <... unlink resumed>) = 0 [pid 5081] <... prctl resumed>) = 0 [pid 4995] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5081] setpgid(0, 0) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5081] write(3, "1000", 4 [pid 5066] <... fsconfig resumed>) = 0 [pid 5056] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... futex resumed>) = 0 [pid 5056] <... futex resumed>) = 0 [pid 5066] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5066] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5056] <... futex resumed>) = 0 [pid 5066] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5056] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5056] <... futex resumed>) = 0 [pid 5066] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5056] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... write resumed>) = 4 [pid 5000] <... umount2 resumed>) = 0 [pid 5081] close(3 [pid 5000] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5081] <... close resumed>) = 0 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5081] symlink("/dev/binderfs", "./binderfs" [pid 5000] lstat("./1/file0", [pid 5081] <... symlink resumed>) = 0 [pid 5000] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5081] <... futex resumed>) = 0 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5081] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5000] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5081] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5000] <... openat resumed>) = 4 [pid 5081] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5000] fstat(4, [pid 5081] <... mprotect resumed>) = 0 [pid 5000] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5081] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5000] getdents64(4, 0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5081] <... clone resumed>, parent_tid=[5082], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5082 [pid 5000] getdents64(4, [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5081] <... futex resumed>) = 0 [pid 5000] close(4 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5000] <... close resumed>) = 0 [pid 5000] rmdir("./1/file0") = 0 [pid 5000] getdents64(3, 0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5000] close(3) = 0 [pid 5000] rmdir("./1") = 0 [pid 5000] mkdir("./2", 0777) = 0 [ 75.058520][ T5066] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.077923][ T4997] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.088758][ T4995] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.103979][ T5066] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended ./strace-static-x86_64: Process 5082 attached [pid 5000] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5000] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5000] close(3) = 0 [pid 5000] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567bc5d0) = 5084 ./strace-static-x86_64: Process 5084 attached [pid 5084] set_robust_list(0x5555567bc5e0, 24) = 0 [pid 5084] chdir("./2") = 0 [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5084] setpgid(0, 0) = 0 [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5082] set_robust_list(0x7f92ef6d69e0, 24) = 0 [pid 5084] <... openat resumed>) = 3 [pid 5082] memfd_create("syzkaller", 0 [pid 4998] <... umount2 resumed>) = 0 [pid 4997] <... umount2 resumed>) = 0 [pid 4998] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5082] <... memfd_create resumed>) = 3 [pid 4997] lstat("./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5082] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 4997] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4997] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5082] <... mmap resumed>) = 0x7f92e72b6000 [pid 4997] <... openat resumed>) = 4 [pid 5084] write(3, "1000", 4 [pid 4997] fstat(4, [pid 5084] <... write resumed>) = 4 [pid 4997] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5084] close(3 [pid 4997] getdents64(4, [pid 5084] <... close resumed>) = 0 [pid 4997] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5084] symlink("/dev/binderfs", "./binderfs" [pid 4997] getdents64(4, [pid 4995] <... umount2 resumed>) = 0 [pid 5084] <... symlink resumed>) = 0 [pid 4997] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4997] close(4 [pid 5084] <... futex resumed>) = 0 [pid 4997] <... close resumed>) = 0 [pid 5084] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 4997] rmdir("./1/file0" [pid 5082] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5084] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5056] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4997] <... rmdir resumed>) = 0 [pid 5084] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 4997] getdents64(3, [pid 5084] <... mprotect resumed>) = 0 [pid 4997] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5084] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 4997] close(3 [pid 5056] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 4997] <... close resumed>) = 0 [pid 5084] <... clone resumed>, parent_tid=[5085], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5085 [pid 4997] rmdir("./1" [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4997] <... rmdir resumed>) = 0 [pid 5084] <... futex resumed>) = 0 [pid 4997] mkdir("./2", 0777 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 4997] <... mkdir resumed>) = 0 [pid 4997] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 4997] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 4997] close(3) = 0 [pid 4997] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567bc5d0) = 5086 ./strace-static-x86_64: Process 5085 attached [pid 5085] set_robust_list(0x7f92ef6d69e0, 24) = 0 ./strace-static-x86_64: Process 5086 attached [pid 5085] memfd_create("syzkaller", 0 [pid 5056] <... futex resumed>) = 0 [pid 5085] <... memfd_create resumed>) = 3 [pid 5086] set_robust_list(0x5555567bc5e0, 24 [pid 5056] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5085] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5086] <... set_robust_list resumed>) = 0 [pid 5085] <... mmap resumed>) = 0x7f92e72b6000 [pid 5056] <... mmap resumed>) = 0x7f92e72d5000 [pid 5086] chdir("./2" [pid 5056] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5086] <... chdir resumed>) = 0 [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5056] <... mprotect resumed>) = 0 [pid 4995] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5086] <... prctl resumed>) = 0 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5086] setpgid(0, 0 [pid 5056] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5086] <... setpgid resumed>) = 0 [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5082] <... write resumed>) = 262144 [pid 5056] <... clone resumed>, parent_tid=[5087], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5087 [pid 4998] lstat("./1/file0", [pid 4995] lstat("./1/file0", [pid 5086] <... openat resumed>) = 3 [pid 5085] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5082] munmap(0x7f92e72b6000, 262144 [pid 5056] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5087 attached [pid 5086] write(3, "1000", 4 [pid 5056] <... futex resumed>) = 0 [pid 4998] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5087] set_robust_list(0x7f92e72f59e0, 24 [pid 5086] <... write resumed>) = 4 [pid 5085] <... write resumed>) = 262144 [pid 5082] <... munmap resumed>) = 0 [pid 5087] <... set_robust_list resumed>) = 0 [pid 5086] close(3 [pid 5056] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5086] <... close resumed>) = 0 [ 75.137545][ T5066] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5086] symlink("/dev/binderfs", "./binderfs" [pid 4998] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5086] <... symlink resumed>) = 0 [pid 5085] munmap(0x7f92e72b6000, 262144 [pid 5082] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] <... munmap resumed>) = 0 [pid 5082] <... openat resumed>) = 4 [pid 5086] <... futex resumed>) = 0 [pid 5085] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5082] ioctl(4, LOOP_SET_FD, 3 [pid 4998] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4995] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5085] <... openat resumed>) = 4 [pid 4998] <... openat resumed>) = 4 [pid 5086] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5085] ioctl(4, LOOP_SET_FD, 3 [pid 4995] <... openat resumed>) = 4 [pid 5086] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5082] <... ioctl resumed>) = 0 [pid 4998] fstat(4, [pid 4995] fstat(4, [pid 5086] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5082] close(3 [pid 4998] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5086] <... clone resumed>, parent_tid=[5088], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5088 [pid 5082] <... close resumed>) = 0 [pid 4998] getdents64(4, [pid 4995] getdents64(4, [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5086] <... futex resumed>) = 0 [pid 5082] mkdir("./file0", 0777 [pid 4998] getdents64(4, [pid 4995] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5082] <... mkdir resumed>) = 0 [pid 4995] getdents64(4, [pid 4998] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5082] mount("/dev/loop1", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 4998] close(4 [pid 4995] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4998] <... close resumed>) = 0 [pid 4995] close(4 [pid 4998] rmdir("./1/file0"./strace-static-x86_64: Process 5088 attached [pid 5088] set_robust_list(0x7f92ef6d69e0, 24) = 0 [pid 5088] memfd_create("syzkaller", 0) = 3 [pid 5088] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92e72b6000 [pid 5088] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 4995] <... close resumed>) = 0 [pid 4998] <... rmdir resumed>) = 0 [pid 4995] rmdir("./1/file0" [pid 4998] getdents64(3, [pid 4995] <... rmdir resumed>) = 0 [pid 4998] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5088] <... write resumed>) = 262144 [pid 5088] munmap(0x7f92e72b6000, 262144) = 0 [pid 5088] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5088] ioctl(4, LOOP_SET_FD, 3 [pid 5085] <... ioctl resumed>) = 0 [pid 5085] close(3) = 0 [pid 5085] mkdir("./file0", 0777 [pid 4998] close(3 [pid 4995] getdents64(3, [pid 4998] <... close resumed>) = 0 [pid 5085] <... mkdir resumed>) = 0 [pid 5056] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 4998] rmdir("./1" [pid 4995] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5056] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] mount("/dev/loop5", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 4998] <... rmdir resumed>) = 0 [pid 4995] close(3 [pid 5056] <... futex resumed>) = 0 [pid 4998] mkdir("./2", 0777 [pid 5056] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 4995] <... close resumed>) = 0 [ 75.202831][ T5082] loop1: detected capacity change from 0 to 512 [ 75.203831][ T5085] loop5: detected capacity change from 0 to 512 [ 75.222925][ T5082] EXT4-fs: Ignoring removed oldalloc option [ 75.231651][ T5066] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.243196][ T5088] loop2: detected capacity change from 0 to 512 [pid 5056] <... mmap resumed>) = 0x7f92e72b4000 [pid 4998] <... mkdir resumed>) = 0 [pid 4995] rmdir("./1" [pid 5056] mprotect(0x7f92e72b5000, 131072, PROT_READ|PROT_WRITE [pid 4998] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5088] <... ioctl resumed>) = 0 [pid 5088] close(3) = 0 [pid 5088] mkdir("./file0", 0777 [pid 4998] <... openat resumed>) = 3 [pid 4995] <... rmdir resumed>) = 0 [pid 5056] <... mprotect resumed>) = 0 [pid 4998] ioctl(3, LOOP_CLR_FD [pid 4995] mkdir("./2", 0777 [pid 5056] clone(child_stack=0x7f92e72d43f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 4998] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5088] <... mkdir resumed>) = 0 [pid 4998] close(3 [pid 4995] <... mkdir resumed>) = 0 [pid 4998] <... close resumed>) = 0 [pid 5088] mount("/dev/loop2", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5056] <... clone resumed>, parent_tid=[5090], tls=0x7f92e72d4700, child_tidptr=0x7f92e72d49d0) = 5090 [pid 4998] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4995] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5056] futex(0x7f92ef7af7c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 4995] <... openat resumed>) = 3 [pid 5056] futex(0x7f92ef7af7cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4998] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5091 [pid 4995] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 4995] close(3) = 0 ./strace-static-x86_64: Process 5090 attached [pid 4995] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5090] set_robust_list(0x7f92e72d49e0, 24) = 0 [pid 5090] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 4995] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5092 ./strace-static-x86_64: Process 5091 attached [pid 5091] set_robust_list(0x5555567bc5e0, 24./strace-static-x86_64: Process 5092 attached ) = 0 [pid 5091] chdir("./2") = 0 [pid 5091] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5091] setpgid(0, 0) = 0 [pid 5092] set_robust_list(0x5555567bc5e0, 24 [ 75.254662][ T5085] EXT4-fs: Ignoring removed oldalloc option [ 75.267540][ T5088] EXT4-fs: Ignoring removed oldalloc option [pid 5091] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5092] <... set_robust_list resumed>) = 0 [pid 5091] <... openat resumed>) = 3 [pid 5090] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5092] chdir("./2" [pid 5091] write(3, "1000", 4 [pid 5090] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] <... chdir resumed>) = 0 [pid 5091] <... write resumed>) = 4 [pid 5090] <... futex resumed>) = 1 [pid 5066] <... fsconfig resumed>) = 0 [pid 5056] <... futex resumed>) = 0 [pid 5092] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5066] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] <... prctl resumed>) = 0 [pid 5066] <... futex resumed>) = 0 [pid 5092] setpgid(0, 0 [pid 5066] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] <... setpgid resumed>) = 0 [pid 5092] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5092] write(3, "1000", 4) = 4 [pid 5092] close(3) = 0 [pid 5092] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5092] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92ef6b6000 [pid 5091] close(3 [pid 5090] futex(0x7f92ef7af7c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5091] <... close resumed>) = 0 [pid 5092] <... mprotect resumed>) = 0 [pid 5091] symlink("/dev/binderfs", "./binderfs" [pid 5092] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5091] <... symlink resumed>) = 0 [pid 5092] <... clone resumed>, parent_tid=[5097], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5097 [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... fsconfig resumed>) = 0 [pid 5092] <... futex resumed>) = 0 [pid 5091] <... futex resumed>) = 0 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5097 attached [pid 5097] set_robust_list(0x7f92ef6d69e0, 24) = 0 [pid 5097] memfd_create("syzkaller", 0) = 3 [ 75.301745][ T5087] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.312964][ T5082] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 75.322439][ T5085] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5097] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92e72b6000 [pid 5097] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5091] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5087] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5056] exit_group(0 [pid 5091] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5090] <... futex resumed>) = ? [pid 5066] <... futex resumed>) = ? [pid 5056] <... exit_group resumed>) = ? [pid 5091] <... mprotect resumed>) = 0 [pid 5090] +++ exited with 0 +++ [pid 5087] <... futex resumed>) = ? [pid 5066] +++ exited with 0 +++ [pid 5097] <... write resumed>) = 262144 [pid 5097] munmap(0x7f92e72b6000, 262144) = 0 [pid 5097] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5097] ioctl(4, LOOP_SET_FD, 3 [pid 5091] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5097] <... ioctl resumed>) = 0 [pid 5097] close(3) = 0 [pid 5097] mkdir("./file0", 0777) = 0 [pid 5097] mount("/dev/loop0", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5091] <... clone resumed>, parent_tid=[5100], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5100 [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5087] +++ exited with 0 +++ [pid 5056] +++ exited with 0 +++ [ 75.341454][ T5082] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 75.361440][ T5085] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 75.375768][ T5097] loop0: detected capacity change from 0 to 512 [ 75.378583][ T5088] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 75.396791][ T5085] EXT4-fs (loop5): 1 truncate cleaned up ./strace-static-x86_64: Process 5100 attached [ 75.397422][ T5082] EXT4-fs (loop1): 1 truncate cleaned up [ 75.404372][ T5085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 75.420627][ T5085] ext4 filesystem being mounted at /root/syzkaller.2mlfng/2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.421938][ T5088] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5100] set_robust_list(0x7f92ef6d69e0, 24 [pid 5085] <... mount resumed>) = 0 [pid 4999] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5056, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- [pid 5100] <... set_robust_list resumed>) = 0 [pid 5085] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 4999] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5100] memfd_create("syzkaller", 0 [pid 5085] <... openat resumed>) = 3 [pid 5085] chdir("./file0" [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5100] <... memfd_create resumed>) = 3 [pid 5085] <... chdir resumed>) = 0 [pid 4999] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5085] ioctl(4, LOOP_CLR_FD [pid 4999] <... openat resumed>) = 3 [pid 5085] <... ioctl resumed>) = 0 [pid 5100] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 4999] fstat(3, [pid 5085] close(4 [pid 5100] <... mmap resumed>) = 0x7f92e72b6000 [pid 5085] <... close resumed>) = 0 [pid 4999] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5082] <... mount resumed>) = 0 [pid 5082] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5082] chdir("./file0" [pid 5100] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] getdents64(3, [pid 5085] <... futex resumed>) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5085] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 4999] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5085] <... futex resumed>) = 0 [pid 5084] <... futex resumed>) = 1 [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5085] fspick(AT_FDCWD, ".", 0 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] lstat("./1/binderfs", [pid 5100] <... write resumed>) = 262144 [pid 5085] <... fspick resumed>) = 4 [pid 5082] <... chdir resumed>) = 0 [pid 4999] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] unlink("./1/binderfs" [pid 5100] munmap(0x7f92e72b6000, 262144 [pid 5085] <... futex resumed>) = 1 [pid 5084] <... futex resumed>) = 0 [pid 4999] <... unlink resumed>) = 0 [pid 5100] <... munmap resumed>) = 0 [pid 5085] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [ 75.433819][ T5097] EXT4-fs: Ignoring removed oldalloc option [ 75.448551][ T5082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 75.469428][ T5082] ext4 filesystem being mounted at /root/syzkaller.0bY7pW/2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.490467][ T5088] EXT4-fs (loop2): 1 truncate cleaned up [pid 5100] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5085] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5084] <... futex resumed>) = 0 [pid 5100] <... openat resumed>) = 4 [pid 5085] read(-1, [pid 5100] ioctl(4, LOOP_SET_FD, 3 [pid 5085] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] <... futex resumed>) = 0 [pid 5085] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] ioctl(4, LOOP_CLR_FD) = 0 [pid 5082] close(4 [pid 5088] <... mount resumed>) = 0 [pid 5084] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5082] <... close resumed>) = 0 [pid 5088] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] <... openat resumed>) = 3 [pid 5085] <... futex resumed>) = 0 [pid 5084] <... futex resumed>) = 1 [pid 5082] <... futex resumed>) = 1 [pid 5081] <... futex resumed>) = 0 [pid 5088] chdir("./file0" [pid 5085] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5085] <... fsconfig resumed>) = 0 [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5085] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5082] <... futex resumed>) = 0 [pid 5081] <... futex resumed>) = 1 [pid 5088] <... chdir resumed>) = 0 [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] fspick(AT_FDCWD, ".", 0) = 4 [ 75.505375][ T4999] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.509995][ T5088] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 75.516955][ T5100] loop3: detected capacity change from 0 to 512 [ 75.527756][ T5088] ext4 filesystem being mounted at /root/syzkaller.0pSMs5/2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.547806][ T5097] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5088] ioctl(4, LOOP_CLR_FD [pid 5084] <... futex resumed>) = 1 [pid 5088] <... ioctl resumed>) = 0 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] close(4) = 0 [pid 5085] <... futex resumed>) = 0 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5088] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5086] <... futex resumed>) = 0 [pid 5088] fspick(AT_FDCWD, ".", 0 [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] <... fspick resumed>) = 4 [pid 5085] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5081] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5100] <... ioctl resumed>) = 0 [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] <... umount2 resumed>) = 0 [pid 5100] close(3 [pid 5088] <... futex resumed>) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = 0 [pid 5081] <... futex resumed>) = 1 [pid 4999] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5100] <... close resumed>) = 0 [pid 5088] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] read(-1, [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5100] mkdir("./file0", 0777 [pid 5088] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5086] <... futex resumed>) = 0 [pid 4999] lstat("./1/file0", [pid 5100] <... mkdir resumed>) = 0 [pid 5088] read(-1, [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5100] mount("/dev/loop3", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5088] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 4999] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5082] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5088] <... futex resumed>) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5084] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5088] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = 1 [pid 5081] <... futex resumed>) = 0 [pid 4999] <... openat resumed>) = 4 [pid 5088] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5086] <... futex resumed>) = 0 [ 75.574333][ T5097] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 75.593062][ T5085] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.614969][ T5100] EXT4-fs: Ignoring removed oldalloc option [pid 5084] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] fstat(4, [pid 5088] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5084] <... mmap resumed>) = 0x7f92e72d5000 [pid 4999] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5088] <... fsconfig resumed>) = 0 [pid 5084] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 4999] getdents64(4, [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] <... mprotect resumed>) = 0 [pid 4999] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5088] <... futex resumed>) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5084] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5082] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5081] <... futex resumed>) = 0 [pid 4999] getdents64(4, [pid 5088] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 5103 attached [pid 5088] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5086] <... futex resumed>) = 0 [pid 5084] <... clone resumed>, parent_tid=[5103], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5103 [pid 5082] <... fsconfig resumed>) = 0 [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5084] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] <... futex resumed>) = 1 [pid 5081] <... futex resumed>) = 0 [pid 4999] close(4 [pid 5084] <... futex resumed>) = 0 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] <... close resumed>) = 0 [pid 5084] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] rmdir("./1/file0") = 0 [pid 4999] getdents64(3, 0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4999] close(3) = 0 [pid 4999] rmdir("./1") = 0 [pid 4999] mkdir("./2", 0777 [pid 5103] set_robust_list(0x7f92e72f59e0, 24 [pid 4999] <... mkdir resumed>) = 0 [pid 5103] <... set_robust_list resumed>) = 0 [pid 4999] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5103] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 4999] <... openat resumed>) = 3 [pid 5103] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 4999] ioctl(3, LOOP_CLR_FD [pid 5103] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5103] <... futex resumed>) = 1 [pid 5084] <... futex resumed>) = 0 [pid 4999] close(3 [pid 5103] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5084] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4999] <... close resumed>) = 0 [pid 5084] <... futex resumed>) = 0 [ 75.628047][ T5097] EXT4-fs (loop0): 1 truncate cleaned up [ 75.642073][ T5088] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.643486][ T5097] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 75.669235][ T5103] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [pid 4999] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5097] <... mount resumed>) = 0 [pid 5088] <... fsconfig resumed>) = 0 [pid 5086] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5084] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5082] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5081] <... futex resumed>) = 0 [pid 5097] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] <... fsconfig resumed>) = 0 [pid 5082] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5106 ./strace-static-x86_64: Process 5106 attached [ 75.673354][ T5097] ext4 filesystem being mounted at /root/syzkaller.NRp6CU/2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.679833][ T5100] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 75.706057][ T5082] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.716716][ T5103] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5097] <... openat resumed>) = 3 [pid 5088] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = 0 [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] set_robust_list(0x5555567bc5e0, 24 [pid 5097] chdir("./file0" [pid 5088] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5085] <... futex resumed>) = 0 [pid 5082] <... fsconfig resumed>) = 0 [pid 5106] <... set_robust_list resumed>) = 0 [pid 5097] <... chdir resumed>) = 0 [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] chdir("./2" [pid 5097] ioctl(4, LOOP_CLR_FD [pid 5082] <... futex resumed>) = 1 [pid 5081] <... futex resumed>) = 0 [pid 5106] <... chdir resumed>) = 0 [pid 5097] <... ioctl resumed>) = 0 [pid 5086] <... mmap resumed>) = 0x7f92e72d5000 [pid 5085] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5097] close(4 [pid 5082] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5081] <... futex resumed>) = 0 [pid 5106] <... prctl resumed>) = 0 [pid 5097] <... close resumed>) = 0 [pid 5082] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5106] setpgid(0, 0 [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5084] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5106] <... setpgid resumed>) = 0 [pid 5100] <... mount resumed>) = 0 [pid 5097] <... futex resumed>) = 1 [pid 5092] <... futex resumed>) = 0 [pid 5086] <... mprotect resumed>) = 0 [pid 5082] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5100] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... openat resumed>) = 3 [pid 5100] <... openat resumed>) = 3 [pid 5097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5092] <... futex resumed>) = 0 [pid 5086] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5082] <... futex resumed>) = 1 [pid 5081] <... futex resumed>) = 0 [ 75.718287][ T5100] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 75.742659][ T5100] EXT4-fs (loop3): 1 truncate cleaned up [ 75.749479][ T5100] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 75.761948][ T5100] ext4 filesystem being mounted at /root/syzkaller.mOZDn7/2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [pid 5106] write(3, "1000", 4 [pid 5100] chdir("./file0" [pid 5097] fspick(AT_FDCWD, ".", 0 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] <... futex resumed>) = 0 [pid 5084] <... futex resumed>) = 1 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5108 attached [pid 5106] <... write resumed>) = 4 [pid 5103] <... fsconfig resumed>) = 0 [pid 5100] <... chdir resumed>) = 0 [pid 5097] <... fspick resumed>) = 4 [pid 5082] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5081] <... futex resumed>) = 0 [pid 5106] close(3 [pid 5103] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5108] set_robust_list(0x7f92e72f59e0, 24 [pid 5106] <... close resumed>) = 0 [pid 5103] <... futex resumed>) = 0 [pid 5100] ioctl(4, LOOP_CLR_FD [pid 5097] <... futex resumed>) = 1 [pid 5092] <... futex resumed>) = 0 [pid 5086] <... clone resumed>, parent_tid=[5108], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5108 [pid 5085] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5108] <... set_robust_list resumed>) = 0 [pid 5106] symlink("/dev/binderfs", "./binderfs" [pid 5103] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5100] <... ioctl resumed>) = 0 [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... symlink resumed>) = 0 [pid 5097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5092] <... futex resumed>) = 0 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5097] read(-1, [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5106] <... futex resumed>) = 0 [pid 5097] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5097] <... futex resumed>) = 1 [pid 5092] <... futex resumed>) = 0 [pid 5106] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... mprotect resumed>) = 0 [pid 5097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5092] <... futex resumed>) = 0 [pid 5106] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5097] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5097] <... fsconfig resumed>) = 0 [pid 5106] <... clone resumed>, parent_tid=[5109], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5109 [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5097] <... futex resumed>) = 1 [pid 5092] <... futex resumed>) = 0 [pid 5106] <... futex resumed>) = 0 [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5092] <... futex resumed>) = 0 [pid 5097] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5086] <... futex resumed>) = 0 [pid 5108] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5100] close(4 [ 75.780630][ T5103] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.792821][ T5082] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 75.799757][ T5085] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.814131][ T5082] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5086] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5109 attached [pid 5108] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5100] <... close resumed>) = 0 [pid 5108] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5108] <... futex resumed>) = 1 [pid 5100] <... futex resumed>) = 1 [pid 5091] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = 0 [pid 5109] set_robust_list(0x7f92ef6d69e0, 24) = 0 [pid 5108] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5097] <... fsconfig resumed>) = 0 [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] <... fsconfig resumed>) = 0 [pid 5109] memfd_create("syzkaller", 0 [pid 5100] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] <... futex resumed>) = 0 [pid 5088] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = 1 [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5109] <... memfd_create resumed>) = 3 [pid 5100] fspick(AT_FDCWD, ".", 0 [pid 5097] <... futex resumed>) = 1 [pid 5092] <... futex resumed>) = 0 [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] <... futex resumed>) = 1 [pid 5084] <... futex resumed>) = 0 [pid 5109] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5100] <... fspick resumed>) = 4 [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5085] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5084] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] <... fsconfig resumed>) = 0 [pid 5081] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5109] <... mmap resumed>) = 0x7f92e72b6000 [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5109] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5082] <... futex resumed>) = 0 [pid 5081] <... futex resumed>) = 0 [pid 5109] <... write resumed>) = 262144 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5081] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5109] munmap(0x7f92e72b6000, 262144 [pid 5081] <... mmap resumed>) = 0x7f92e72d5000 [pid 5109] <... munmap resumed>) = 0 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5084] <... futex resumed>) = 0 [pid 5081] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5109] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5100] <... futex resumed>) = 1 [pid 5097] <... futex resumed>) = 0 [pid 5092] <... futex resumed>) = 1 [pid 5091] <... futex resumed>) = 0 [pid 5085] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5084] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... mprotect resumed>) = 0 [pid 5109] <... openat resumed>) = 4 [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5097] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] <... futex resumed>) = 0 [pid 5084] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5081] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5109] ioctl(4, LOOP_SET_FD, 3 [pid 5100] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5097] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5091] <... futex resumed>) = 0 [pid 5085] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5084] exit_group(0 [pid 5109] <... ioctl resumed>) = 0 [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] <... clone resumed>, parent_tid=[5111], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5111 [pid 5103] <... futex resumed>) = ? [ 75.823380][ T5097] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.844007][ T5082] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.850754][ T5088] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 75.872119][ T5109] loop4: detected capacity change from 0 to 512 [pid 5100] read(-1, [pid 5097] <... futex resumed>) = 1 [pid 5092] <... futex resumed>) = 0 [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] <... futex resumed>) = ? [pid 5084] <... exit_group resumed>) = ? [pid 5081] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5103] +++ exited with 0 +++ [pid 5100] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] +++ exited with 0 +++ [pid 5081] <... futex resumed>) = 0 [pid 5097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5081] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5097] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] <... futex resumed>) = 0 [pid 5084] +++ exited with 0 +++ [pid 5109] close(3) = 0 [pid 5109] mkdir("./file0", 0777) = 0 ./strace-static-x86_64: Process 5111 attached [pid 5111] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 5109] mount("/dev/loop4", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5111] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5100] <... futex resumed>) = 1 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5091] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5000] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=0, si_stime=18 /* 0.18 s */} --- [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5108] <... futex resumed>) = 0 [pid 5100] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5091] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = 1 [pid 5108] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5100] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5086] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5111] <... fsconfig resumed>) = 0 [pid 5100] <... fsconfig resumed>) = 0 [pid 5111] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5111] <... futex resumed>) = 1 [pid 5100] <... futex resumed>) = 1 [pid 5091] <... futex resumed>) = 0 [pid 5081] <... futex resumed>) = 0 [pid 5000] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5111] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5100] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5091] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = 0 [pid 5081] <... futex resumed>) = 1 [pid 5000] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5100] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 75.882172][ T5097] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 75.883967][ T5088] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 75.895621][ T5109] EXT4-fs: Ignoring removed oldalloc option [ 75.905632][ T5097] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 75.906990][ T5111] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5082] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5081] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] <... openat resumed>) = 3 [pid 5082] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5082] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] fstat(3, [pid 5100] <... fsconfig resumed>) = 0 [pid 5000] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] getdents64(3, [pid 5100] <... futex resumed>) = 1 [pid 5091] <... futex resumed>) = 0 [pid 5000] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5100] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5091] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = 1 [pid 5081] <... futex resumed>) = 0 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5088] <... fsconfig resumed>) = 0 [pid 5108] <... fsconfig resumed>) = 0 [pid 5108] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5081] exit_group(0 [pid 5111] <... futex resumed>) = ? [pid 5108] <... futex resumed>) = 1 [pid 5088] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = ? [pid 5081] <... exit_group resumed>) = ? [pid 5111] +++ exited with 0 +++ [pid 5108] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5088] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] +++ exited with 0 +++ [pid 5081] +++ exited with 0 +++ [pid 5100] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0) = -1 EBADF (Bad file descriptor) [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5100] <... futex resumed>) = 0 [pid 5091] <... futex resumed>) = 1 [pid 5100] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5097] <... fsconfig resumed>) = 0 [pid 5092] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5086] <... futex resumed>) = 0 [pid 5000] lstat("./2/binderfs", [pid 4996] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5081, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- [pid 5092] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = 1 [pid 5092] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5086] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5092] <... mmap resumed>) = 0x7f92e72d5000 [pid 5092] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5092] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5116], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5116 [pid 5092] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5092] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5116 attached [pid 5116] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 5116] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 75.929322][ T5100] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.933418][ T5088] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.951882][ T5108] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.963106][ T5097] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5097] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5000] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 5088] <... futex resumed>) = 0 [pid 5000] unlink("./2/binderfs" [pid 5088] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5000] <... unlink resumed>) = 0 [pid 5116] <... fsconfig resumed>) = 0 [pid 5116] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] <... futex resumed>) = 0 [pid 5092] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5097] <... futex resumed>) = 0 [pid 5092] <... futex resumed>) = 1 [pid 5097] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5092] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5116] <... futex resumed>) = 1 [pid 5116] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5000] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4996] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4996] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4996] getdents64(3, 0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4996] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4996] lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4996] unlink("./2/binderfs") = 0 [pid 5086] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 75.974847][ T5100] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 75.986023][ T5109] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 75.987859][ T5116] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 75.996844][ T5100] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.018131][ T5000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [pid 4996] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5097] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5091] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5088] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5091] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] exit_group(0 [pid 5108] <... futex resumed>) = ? [pid 5091] <... futex resumed>) = 0 [pid 5088] <... futex resumed>) = ? [pid 5086] <... exit_group resumed>) = ? [pid 5108] +++ exited with 0 +++ [pid 5097] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5092] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5091] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5088] +++ exited with 0 +++ [pid 5086] +++ exited with 0 +++ [pid 5092] exit_group(0 [pid 5091] <... mmap resumed>) = 0x7f92e72d5000 [pid 4997] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5086, si_uid=0, si_status=0, si_utime=0, si_stime=19 /* 0.19 s */} --- [pid 5116] <... futex resumed>) = ? [pid 5092] <... exit_group resumed>) = ? [pid 5091] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5116] +++ exited with 0 +++ [pid 5091] <... mprotect resumed>) = 0 [pid 5091] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5118], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5118 [pid 5091] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4997] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5091] <... futex resumed>) = 0 [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5091] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4997] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4997] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] getdents64(3, 0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 5097] <... futex resumed>) = ? [pid 4997] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5097] +++ exited with 0 +++ [pid 5092] +++ exited with 0 +++ [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4997] lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4997] unlink("./2/binderfs") = 0 [pid 4997] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5118 attached [pid 5100] <... fsconfig resumed>) = 0 [pid 4995] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5092, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- [pid 5118] set_robust_list(0x7f92e72f59e0, 24 [ 76.027301][ T5097] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 76.030427][ T5109] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 76.060974][ T4996] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.070944][ T5100] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 4995] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5118] <... set_robust_list resumed>) = 0 [pid 5118] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4995] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] getdents64(3, 0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4995] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4995] lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 4995] unlink("./2/binderfs") = 0 [pid 4995] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5118] <... fsconfig resumed>) = 0 [pid 5118] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] <... futex resumed>) = 0 [pid 5091] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5100] <... futex resumed>) = 0 [pid 5091] <... futex resumed>) = 1 [pid 5100] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [ 76.094013][ T4997] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.103993][ T5118] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.104339][ T5109] EXT4-fs (loop4): 1 truncate cleaned up [ 76.121509][ T5109] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 76.124257][ T4995] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [pid 5091] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5118] <... futex resumed>) = 1 [pid 5100] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5118] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5109] <... mount resumed>) = 0 [pid 5100] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5091] <... futex resumed>) = 0 [pid 5109] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5100] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5091] exit_group(0 [pid 5000] <... umount2 resumed>) = 0 [pid 5118] <... futex resumed>) = ? [pid 5100] <... futex resumed>) = ? [pid 5091] <... exit_group resumed>) = ? [pid 5118] +++ exited with 0 +++ [pid 5100] +++ exited with 0 +++ [pid 5091] +++ exited with 0 +++ [pid 4998] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5091, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} --- [pid 4998] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4998] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4998] fstat(3, [pid 4997] <... umount2 resumed>) = 0 [pid 4998] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] <... umount2 resumed>) = 0 [pid 4995] <... umount2 resumed>) = 0 [pid 4998] getdents64(3, [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5000] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] <... getdents64 resumed>0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4997] lstat("./2/file0", [pid 4996] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] lstat("./2/file0", [pid 5000] lstat("./2/file0", [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5000] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4998] lstat("./2/binderfs", [pid 5000] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4998] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [ 76.134850][ T5109] ext4 filesystem being mounted at /root/syzkaller.0f3mWb/2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [pid 4997] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4996] lstat("./2/file0", [pid 4995] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5000] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4998] unlink("./2/binderfs" [pid 4997] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4996] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4995] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5109] <... openat resumed>) = 3 [pid 5000] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4998] <... unlink resumed>) = 0 [pid 4997] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4996] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5109] chdir("./file0" [pid 5000] <... openat resumed>) = 4 [pid 4998] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4997] <... openat resumed>) = 4 [pid 4996] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5109] <... chdir resumed>) = 0 [pid 5000] fstat(4, [pid 4997] fstat(4, [pid 4996] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5109] ioctl(4, LOOP_CLR_FD [pid 5000] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4997] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4996] <... openat resumed>) = 4 [pid 4995] <... openat resumed>) = 4 [pid 5109] <... ioctl resumed>) = 0 [pid 5000] getdents64(4, [pid 4997] getdents64(4, [pid 4996] fstat(4, [pid 4995] fstat(4, [pid 5109] close(4 [pid 5000] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4997] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4996] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5109] <... close resumed>) = 0 [pid 5000] getdents64(4, [pid 4997] getdents64(4, [pid 4996] getdents64(4, [pid 4995] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4997] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4996] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5109] <... futex resumed>) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5000] close(4 [pid 4997] close(4 [pid 4996] getdents64(4, [pid 4995] getdents64(4, [pid 5109] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... close resumed>) = 0 [pid 4997] <... close resumed>) = 0 [pid 4996] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5109] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5106] <... futex resumed>) = 0 [pid 5000] rmdir("./2/file0" [pid 4997] rmdir("./2/file0" [pid 4996] close(4 [pid 4995] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5109] fspick(AT_FDCWD, ".", 0 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] <... rmdir resumed>) = 0 [pid 4996] <... close resumed>) = 0 [pid 5109] <... fspick resumed>) = 4 [pid 5000] getdents64(3, [pid 4997] <... rmdir resumed>) = 0 [pid 4996] rmdir("./2/file0" [pid 4995] getdents64(4, [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4997] getdents64(3, [pid 4996] <... rmdir resumed>) = 0 [pid 4995] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5109] <... futex resumed>) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5000] close(3 [pid 4997] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4996] getdents64(3, [pid 4995] close(4 [pid 5109] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... close resumed>) = 0 [pid 4997] close(3 [pid 4996] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5109] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5106] <... futex resumed>) = 0 [pid 5000] rmdir("./2" [pid 4997] <... close resumed>) = 0 [pid 4996] close(3 [pid 4995] <... close resumed>) = 0 [pid 5109] read(-1, [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] <... rmdir resumed>) = 0 [pid 4997] rmdir("./2" [pid 4996] <... close resumed>) = 0 [pid 4995] rmdir("./2/file0" [pid 5109] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5000] mkdir("./3", 0777 [pid 4996] rmdir("./2" [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... mkdir resumed>) = 0 [pid 4997] <... rmdir resumed>) = 0 [pid 4996] <... rmdir resumed>) = 0 [pid 4995] <... rmdir resumed>) = 0 [pid 5109] <... futex resumed>) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5000] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 4997] mkdir("./3", 0777 [pid 4996] mkdir("./3", 0777 [pid 4995] getdents64(3, [pid 5109] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... openat resumed>) = 3 [pid 4997] <... mkdir resumed>) = 0 [pid 4996] <... mkdir resumed>) = 0 [pid 4995] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5109] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5106] <... futex resumed>) = 0 [pid 5000] ioctl(3, LOOP_CLR_FD [pid 4997] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 4996] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 4995] close(3 [pid 5109] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5000] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 4997] <... openat resumed>) = 3 [pid 4996] <... openat resumed>) = 3 [pid 4995] <... close resumed>) = 0 [pid 5109] <... fsconfig resumed>) = 0 [pid 5000] close(3 [pid 4997] ioctl(3, LOOP_CLR_FD [pid 4996] ioctl(3, LOOP_CLR_FD [pid 4995] rmdir("./2" [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5000] <... close resumed>) = 0 [pid 4996] <... ioctl resumed>) = -1 ENXIO (No such device or address) [ 76.218558][ T4998] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [pid 5109] <... futex resumed>) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5000] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4996] close(3 [pid 5109] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4996] <... close resumed>) = 0 [pid 5109] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5106] <... futex resumed>) = 0 [pid 5000] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5120 [pid 4996] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5109] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4996] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5121 ./strace-static-x86_64: Process 5120 attached [pid 5120] set_robust_list(0x5555567bc5e0, 24) = 0 [pid 5120] chdir("./3") = 0 [pid 5120] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5120] setpgid(0, 0 [pid 4997] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5120] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5121 attached [pid 5120] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 4997] close(3 [pid 4995] <... rmdir resumed>) = 0 [pid 5121] set_robust_list(0x5555567bc5e0, 24 [pid 5120] <... openat resumed>) = 3 [pid 4997] <... close resumed>) = 0 [pid 4995] mkdir("./3", 0777 [pid 5121] <... set_robust_list resumed>) = 0 [pid 5120] write(3, "1000", 4 [pid 4997] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5120] <... write resumed>) = 4 [pid 5120] close(3) = 0 [pid 5120] symlink("/dev/binderfs", "./binderfs" [pid 4995] <... mkdir resumed>) = 0 [pid 5121] chdir("./3" [pid 5120] <... symlink resumed>) = 0 [pid 5121] <... chdir resumed>) = 0 [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4995] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5120] <... futex resumed>) = 0 [pid 5120] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5121] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5120] <... mmap resumed>) = 0x7f92ef6b6000 [pid 4998] <... umount2 resumed>) = 0 [pid 4995] <... openat resumed>) = 3 [pid 5121] <... prctl resumed>) = 0 [pid 5120] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 4997] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5122 [pid 5121] setpgid(0, 0 [pid 5120] <... mprotect resumed>) = 0 [pid 4998] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] ioctl(3, LOOP_CLR_FD [pid 5121] <... setpgid resumed>) = 0 [pid 5120] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5123], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5123 [pid 5121] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5109] <... fsconfig resumed>) = 0 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5121] <... openat resumed>) = 3 [pid 5120] <... futex resumed>) = 0 [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] lstat("./2/file0", [pid 4995] close(3 [pid 5121] write(3, "1000", 4 [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5109] <... futex resumed>) = 1 [pid 5106] <... futex resumed>) = 0 [pid 4998] <... lstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5121] <... write resumed>) = 4 [pid 5109] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 4995] <... close resumed>) = 0 ./strace-static-x86_64: Process 5123 attached [pid 5121] close(3 [pid 5109] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5106] <... futex resumed>) = 0 [pid 4998] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4995] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5123] set_robust_list(0x7f92ef6d69e0, 24 [pid 5121] <... close resumed>) = 0 [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4998] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5123] <... set_robust_list resumed>) = 0 [pid 5109] <... futex resumed>) = 0 [pid 5106] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) ./strace-static-x86_64: Process 5122 attached [pid 5123] memfd_create("syzkaller", 0 [pid 5121] symlink("/dev/binderfs", "./binderfs" [pid 5109] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] <... openat resumed>) = 4 [pid 4995] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5124 [pid 5123] <... memfd_create resumed>) = 3 [pid 5122] set_robust_list(0x5555567bc5e0, 24 [pid 5121] <... symlink resumed>) = 0 [pid 5109] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5106] <... futex resumed>) = 0 [pid 4998] fstat(4, ./strace-static-x86_64: Process 5124 attached [ 76.295470][ T5109] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [pid 5123] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5122] <... set_robust_list resumed>) = 0 [pid 5121] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5109] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4998] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 5124] set_robust_list(0x5555567bc5e0, 24 [pid 5123] <... mmap resumed>) = 0x7f92e72b6000 [pid 5122] chdir("./3" [pid 5121] <... futex resumed>) = 0 [pid 4998] getdents64(4, [pid 5124] <... set_robust_list resumed>) = 0 [pid 5123] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5122] <... chdir resumed>) = 0 [pid 5121] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5124] chdir("./3" [pid 5123] <... write resumed>) = 262144 [pid 5122] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5121] <... mmap resumed>) = 0x7f92ef6b6000 [pid 4998] <... getdents64 resumed>0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 5124] <... chdir resumed>) = 0 [pid 5123] munmap(0x7f92e72b6000, 262144 [pid 5122] <... prctl resumed>) = 0 [pid 5121] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 4998] getdents64(4, [pid 5124] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5123] <... munmap resumed>) = 0 [pid 5122] setpgid(0, 0 [pid 5121] <... mprotect resumed>) = 0 [pid 5124] <... prctl resumed>) = 0 [pid 5123] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5124] setpgid(0, 0 [pid 5123] <... openat resumed>) = 4 [pid 5124] <... setpgid resumed>) = 0 [pid 5123] ioctl(4, LOOP_SET_FD, 3 [pid 5122] <... setpgid resumed>) = 0 [pid 5121] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 4998] <... getdents64 resumed>0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 5124] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5123] <... ioctl resumed>) = 0 [pid 5122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 4998] close(4 [pid 5124] <... openat resumed>) = 3 [pid 5122] <... openat resumed>) = 3 [pid 5121] <... clone resumed>, parent_tid=[5125], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5125 [pid 4998] <... close resumed>) = 0 [pid 5124] write(3, "1000", 4 [pid 5122] write(3, "1000", 4 [pid 5121] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] rmdir("./2/file0"./strace-static-x86_64: Process 5125 attached [pid 5124] <... write resumed>) = 4 [pid 5122] <... write resumed>) = 4 [pid 5121] <... futex resumed>) = 0 [pid 5125] set_robust_list(0x7f92ef6d69e0, 24 [pid 5124] close(3 [pid 5122] close(3 [pid 5121] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 4998] <... rmdir resumed>) = 0 [pid 5125] <... set_robust_list resumed>) = 0 [pid 5124] <... close resumed>) = 0 [pid 5122] <... close resumed>) = 0 [pid 4998] getdents64(3, [pid 5124] symlink("/dev/binderfs", "./binderfs" [pid 5122] symlink("/dev/binderfs", "./binderfs" [pid 4998] <... getdents64 resumed>0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 5125] memfd_create("syzkaller", 0 [pid 5124] <... symlink resumed>) = 0 [pid 5125] <... memfd_create resumed>) = 3 [pid 5124] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] <... symlink resumed>) = 0 [pid 4998] close(3 [pid 5125] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5124] <... futex resumed>) = 0 [pid 5122] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] <... close resumed>) = 0 [pid 5125] <... mmap resumed>) = 0x7f92e72b6000 [pid 5124] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5122] <... futex resumed>) = 0 [pid 4998] rmdir("./2" [pid 5124] <... mmap resumed>) = 0x7f92ef6b6000 [pid 5123] close(3 [pid 5122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5124] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 5123] <... close resumed>) = 0 [pid 5122] <... mmap resumed>) = 0x7f92ef6b6000 [pid 4998] <... rmdir resumed>) = 0 [pid 5124] <... mprotect resumed>) = 0 [pid 5123] mkdir("./file0", 0777 [pid 5122] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE [pid 4998] mkdir("./3", 0777 [pid 5125] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5124] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5123] <... mkdir resumed>) = 0 [pid 5122] <... mprotect resumed>) = 0 [pid 5106] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 76.335773][ T5109] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 76.361950][ T5123] loop5: detected capacity change from 0 to 512 [ 76.370831][ T5109] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [pid 5123] mount("/dev/loop5", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5122] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5106] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5127 attached ./strace-static-x86_64: Process 5126 attached [pid 5125] <... write resumed>) = 262144 [pid 5124] <... clone resumed>, parent_tid=[5126], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5126 [pid 5106] <... futex resumed>) = 0 [pid 4998] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5127] set_robust_list(0x7f92ef6d69e0, 24 [pid 5126] set_robust_list(0x7f92ef6d69e0, 24 [pid 5125] munmap(0x7f92e72b6000, 262144 [pid 5124] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] <... clone resumed>, parent_tid=[5127], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5127 [pid 5106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 4998] <... openat resumed>) = 3 [pid 5127] <... set_robust_list resumed>) = 0 [pid 5126] <... set_robust_list resumed>) = 0 [pid 5125] <... munmap resumed>) = 0 [pid 5122] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 4998] ioctl(3, LOOP_CLR_FD [pid 5127] memfd_create("syzkaller", 0 [pid 5126] memfd_create("syzkaller", 0 [pid 5125] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5122] <... futex resumed>) = 0 [pid 4998] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5127] <... memfd_create resumed>) = 3 [pid 5126] <... memfd_create resumed>) = 3 [pid 5125] <... openat resumed>) = 4 [pid 5122] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 4998] close(3 [pid 5127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5126] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5125] ioctl(4, LOOP_SET_FD, 3 [pid 5124] <... futex resumed>) = 0 [pid 5109] <... fsconfig resumed>) = 0 [pid 5106] <... mmap resumed>) = 0x7f92e72d5000 [pid 4998] <... close resumed>) = 0 [pid 5127] <... mmap resumed>) = 0x7f92e72b6000 [pid 5126] <... mmap resumed>) = 0x7f92e72b6000 [pid 5124] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE [pid 5109] <... futex resumed>) = 0 [pid 5106] <... mprotect resumed>) = 0 [pid 5109] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5106] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 4998] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5106] <... clone resumed>, parent_tid=[5129], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5129 [pid 5106] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5106] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4998] <... clone resumed>, child_tidptr=0x5555567bc5d0) = 5130 [pid 5127] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144./strace-static-x86_64: Process 5129 attached [pid 5129] set_robust_list(0x7f92e72f59e0, 24 [pid 5126] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5129] <... set_robust_list resumed>) = 0 [pid 5129] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [ 76.401119][ T5123] EXT4-fs: Ignoring removed oldalloc option [ 76.409672][ T5109] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.425182][ T5125] loop1: detected capacity change from 0 to 512 [pid 5127] <... write resumed>) = 262144 [pid 5127] munmap(0x7f92e72b6000, 262144 [pid 5126] <... write resumed>) = 262144 [pid 5125] <... ioctl resumed>) = 0 [pid 5129] <... fsconfig resumed>) = 0 ./strace-static-x86_64: Process 5130 attached [pid 5127] <... munmap resumed>) = 0 [pid 5126] munmap(0x7f92e72b6000, 262144 [pid 5125] close(3 [pid 5127] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5126] <... munmap resumed>) = 0 [pid 5125] <... close resumed>) = 0 [pid 5130] set_robust_list(0x5555567bc5e0, 24 [pid 5127] ioctl(4, LOOP_SET_FD, 3 [pid 5125] mkdir("./file0", 0777 [pid 5129] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... futex resumed>) = 0 [pid 5106] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5109] <... futex resumed>) = 0 [pid 5106] <... futex resumed>) = 1 [pid 5109] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5106] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5129] <... futex resumed>) = 1 [pid 5129] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [ 76.445643][ T5129] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.462412][ T5127] loop2: detected capacity change from 0 to 512 [ 76.469868][ T5123] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.473119][ T5125] EXT4-fs: Ignoring removed oldalloc option [ 76.479658][ T5109] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5126] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5130] <... set_robust_list resumed>) = 0 [pid 5127] <... ioctl resumed>) = 0 [pid 5126] <... openat resumed>) = 4 [pid 5125] <... mkdir resumed>) = 0 [pid 5130] chdir("./3" [pid 5126] ioctl(4, LOOP_SET_FD, 3 [pid 5125] mount("/dev/loop1", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5130] <... chdir resumed>) = 0 [pid 5130] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5130] setpgid(0, 0) = 0 [pid 5130] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5127] close(3 [pid 5130] <... openat resumed>) = 3 [pid 5130] write(3, "1000", 4 [pid 5127] <... close resumed>) = 0 [pid 5130] <... write resumed>) = 4 [pid 5127] mkdir("./file0", 0777 [pid 5130] close(3 [pid 5127] <... mkdir resumed>) = 0 [pid 5130] <... close resumed>) = 0 [pid 5127] mount("/dev/loop2", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5130] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5106] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5130] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5130] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92ef6b6000 [pid 5109] <... openat resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 5130] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5130] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5109] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5130] <... clone resumed>, parent_tid=[5133], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5133 [pid 5106] exit_group(0 [pid 5130] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5129] <... futex resumed>) = ? [pid 5109] <... futex resumed>) = ? [pid 5106] <... exit_group resumed>) = ? [pid 5130] <... futex resumed>) = 0 [pid 5130] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5129] +++ exited with 0 +++ ./strace-static-x86_64: Process 5133 attached [pid 5133] set_robust_list(0x7f92ef6d69e0, 24) = 0 [pid 5133] memfd_create("syzkaller", 0 [pid 5109] +++ exited with 0 +++ [pid 5106] +++ exited with 0 +++ [pid 4999] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5106, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} --- [pid 4999] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5133] <... memfd_create resumed>) = 3 [pid 5133] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92e72b6000 [pid 5133] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 4999] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4999] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4999] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4999] getdents64(3, 0x5555567bd620 /* 4 entries */, 32768) = 112 [pid 4999] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4999] lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [ 76.484484][ T5126] loop0: detected capacity change from 0 to 512 [ 76.502571][ T5123] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 76.511882][ T5127] EXT4-fs: Ignoring removed oldalloc option [ 76.539196][ T5123] EXT4-fs (loop5): 1 truncate cleaned up [pid 5133] <... write resumed>) = 262144 [pid 4999] unlink("./2/binderfs" [pid 5133] munmap(0x7f92e72b6000, 262144) = 0 [pid 5133] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5133] ioctl(4, LOOP_SET_FD, 3 [pid 4999] <... unlink resumed>) = 0 [pid 4999] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5126] <... ioctl resumed>) = 0 [pid 5133] <... ioctl resumed>) = 0 [pid 5133] close(3 [pid 5126] close(3 [pid 5123] <... mount resumed>) = 0 [pid 5133] <... close resumed>) = 0 [pid 5133] mkdir("./file0", 0777) = 0 [pid 5133] mount("/dev/loop3", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5123] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5123] chdir("./file0") = 0 [pid 5123] ioctl(4, LOOP_CLR_FD) = 0 [pid 5123] close(4) = 0 [pid 5126] <... close resumed>) = 0 [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5126] mkdir("./file0", 0777 [pid 5123] <... futex resumed>) = 1 [pid 5120] <... futex resumed>) = 0 [ 76.552233][ T5123] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 76.557719][ T5133] loop3: detected capacity change from 0 to 512 [ 76.572597][ T5123] ext4 filesystem being mounted at /root/syzkaller.2mlfng/3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.574539][ T4999] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.591192][ T5133] EXT4-fs: Ignoring removed oldalloc option [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5126] <... mkdir resumed>) = 0 [pid 5123] fspick(AT_FDCWD, ".", 0 [pid 5120] <... futex resumed>) = 0 [pid 4999] <... umount2 resumed>) = 0 [pid 4999] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 4999] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 4999] lstat("./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4999] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 4999] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 4999] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 4999] getdents64(4, 0x5555567c5660 /* 2 entries */, 32768) = 48 [pid 4999] getdents64(4, 0x5555567c5660 /* 0 entries */, 32768) = 0 [pid 4999] close(4) = 0 [pid 4999] rmdir("./2/file0") = 0 [pid 4999] getdents64(3, 0x5555567bd620 /* 0 entries */, 32768) = 0 [pid 4999] close(3) = 0 [pid 4999] rmdir("./2") = 0 [pid 4999] mkdir("./3", 0777) = 0 [pid 4999] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 4999] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 4999] close(3) = 0 [pid 4999] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555567bc5d0) = 5140 [pid 5126] mount("/dev/loop0", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5123] <... fspick resumed>) = 4 [ 76.617924][ T5125] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.633616][ T5127] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.645117][ T5133] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.661755][ T5126] EXT4-fs: Ignoring removed oldalloc option [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5120] <... futex resumed>) = 0 [pid 5123] read(-1, [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5140 attached [pid 5140] set_robust_list(0x5555567bc5e0, 24) = 0 [pid 5140] chdir("./3") = 0 [pid 5140] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5120] <... futex resumed>) = 0 [pid 5140] setpgid(0, 0) = 0 [pid 5140] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5140] write(3, "1000", 4) = 4 [pid 5140] close(3) = 0 [pid 5140] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5140] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5140] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92ef6b6000 [pid 5140] mprotect(0x7f92ef6b7000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5140] clone(child_stack=0x7f92ef6d63f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5141 attached [pid 5123] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5141] set_robust_list(0x7f92ef6d69e0, 24 [pid 5140] <... clone resumed>, parent_tid=[5141], tls=0x7f92ef6d6700, child_tidptr=0x7f92ef6d69d0) = 5141 [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5120] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5141] <... set_robust_list resumed>) = 0 [pid 5140] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... futex resumed>) = 0 [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5141] memfd_create("syzkaller", 0 [pid 5140] <... futex resumed>) = 0 [pid 5123] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5120] <... futex resumed>) = 0 [pid 5141] <... memfd_create resumed>) = 3 [pid 5140] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5123] <... fsconfig resumed>) = 0 [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5141] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5141] <... mmap resumed>) = 0x7f92e72b6000 [pid 5123] <... futex resumed>) = 1 [pid 5120] <... futex resumed>) = 0 [pid 5123] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5120] <... futex resumed>) = 0 [ 76.669499][ T5125] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 76.685419][ T5133] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 76.685876][ T5127] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5123] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5141] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144 [pid 5141] munmap(0x7f92e72b6000, 262144) = 0 [pid 5141] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5141] ioctl(4, LOOP_SET_FD, 3 [pid 5123] <... fsconfig resumed>) = 0 [pid 5141] <... ioctl resumed>) = 0 [pid 5141] close(3) = 0 [pid 5141] mkdir("./file0", 0777 [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5120] <... futex resumed>) = 0 [pid 5141] <... mkdir resumed>) = 0 [pid 5141] mount("/dev/loop4", "./file0", "ext4", MS_NODEV, "oldalloc,noblock_validity,stripe=0x0000000000000006,barrier=0x000000007fff0038,discard,sysvgroups,re"... [pid 5123] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5123] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL) = 0 [pid 5120] <... futex resumed>) = 1 [pid 5123] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [ 76.717215][ T5123] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.723154][ T5141] loop4: detected capacity change from 0 to 512 [ 76.737948][ T5125] EXT4-fs (loop1): 1 truncate cleaned up [ 76.741378][ T5141] EXT4-fs: Ignoring removed oldalloc option [ 76.750427][ T5125] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [pid 5120] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... futex resumed>) = 0 [pid 5120] <... futex resumed>) = 1 [pid 5123] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5120] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [ 76.755301][ T5123] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 76.773872][ T5126] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.776141][ T5125] ext4 filesystem being mounted at /root/syzkaller.0bY7pW/3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.796130][ T5123] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.797020][ T5127] EXT4-fs (loop2): 1 truncate cleaned up [ 76.804403][ T5133] EXT4-fs (loop3): 1 truncate cleaned up [pid 5120] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5120] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92e72d5000 [pid 5120] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5120] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5144], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5144 [pid 5120] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5120] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5125] <... mount resumed>) = 0 [pid 5125] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5125] chdir("./file0") = 0 [pid 5125] ioctl(4, LOOP_CLR_FD) = 0 [pid 5125] close(4./strace-static-x86_64: Process 5144 attached [ 76.810995][ T5127] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 76.817339][ T5133] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 76.840251][ T5127] ext4 filesystem being mounted at /root/syzkaller.0pSMs5/3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.853260][ T5126] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [pid 5144] set_robust_list(0x7f92e72f59e0, 24 [pid 5127] <... mount resumed>) = 0 [pid 5127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5127] chdir("./file0") = 0 [pid 5127] ioctl(4, LOOP_CLR_FD) = 0 [pid 5127] close(4) = 0 [pid 5127] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5144] <... set_robust_list resumed>) = 0 [pid 5144] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5127] <... futex resumed>) = 1 [pid 5127] fspick(AT_FDCWD, ".", 0) = 4 [pid 5127] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5127] <... futex resumed>) = 1 [pid 5127] read(-1, [pid 5120] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5120] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5120] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f92e72b4000 [pid 5120] mprotect(0x7f92e72b5000, 131072, PROT_READ|PROT_WRITE [pid 5125] <... close resumed>) = 0 [pid 5120] <... mprotect resumed>) = 0 [pid 5125] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5120] clone(child_stack=0x7f92e72d43f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5125] <... futex resumed>) = 1 [pid 5121] <... futex resumed>) = 0 [pid 5121] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5120] <... clone resumed>, parent_tid=[5148], tls=0x7f92e72d4700, child_tidptr=0x7f92e72d49d0) = 5148 [pid 5121] <... futex resumed>) = 0 [pid 5120] futex(0x7f92ef7af7c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5121] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5120] <... futex resumed>) = 0 [pid 5120] futex(0x7f92ef7af7cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5127] <... read resumed>NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5127] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5127] <... futex resumed>) = 1 [pid 5127] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0) = 0 [pid 5127] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5127] <... futex resumed>) = 1 [pid 5127] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5125] fspick(AT_FDCWD, ".", 0) = 4 [pid 5125] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5148 attached [pid 5148] set_robust_list(0x7f92e72d49e0, 24) = 0 [pid 5148] openat(AT_FDCWD, "blkio.bfq.io_merged", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5125] <... futex resumed>) = 1 [pid 5121] <... futex resumed>) = 0 [pid 5121] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5121] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5133] <... mount resumed>) = 0 [pid 5133] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5133] chdir("./file0") = 0 [ 76.853592][ T5133] ext4 filesystem being mounted at /root/syzkaller.mOZDn7/3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.902138][ T5126] EXT4-fs (loop0): 1 truncate cleaned up [ 76.908380][ T5126] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [pid 5133] ioctl(4, LOOP_CLR_FD) = 0 [pid 5126] <... mount resumed>) = 0 [pid 5125] read(-1, NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5125] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5125] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [ 76.927235][ T5123] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.936476][ T5126] ext4 filesystem being mounted at /root/syzkaller.NRp6CU/3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.938056][ T5141] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c842c018, mo2=0002] [ 76.957973][ T5127] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.970995][ T5148] ------------[ cut here ]------------ [pid 5126] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5133] close(4 [pid 5123] <... fsconfig resumed>) = 0 [pid 5122] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5121] <... futex resumed>) = 0 [pid 5120] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5123] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5121] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... futex resumed>) = 0 [pid 5122] <... futex resumed>) = 0 [pid 5121] <... futex resumed>) = 1 [pid 5123] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5121] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5122] <... mmap resumed>) = 0x7f92e72d5000 [pid 5122] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5122] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5149], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5149 [pid 5122] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5133] <... close resumed>) = 0 [pid 5133] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5130] <... futex resumed>) = 0 [pid 5130] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5130] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5133] <... futex resumed>) = 1 [pid 5133] fspick(AT_FDCWD, ".", 0) = 4 [pid 5133] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5130] <... futex resumed>) = 0 [pid 5130] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5130] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5133] <... futex resumed>) = 1 [pid 5133] read(-1, NULL, 0) = -1 EBADF (Bad file descriptor) [pid 5133] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5130] <... futex resumed>) = 0 [pid 5133] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5130] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5133] <... fsconfig resumed>) = 0 [pid 5130] <... futex resumed>) = 0 [pid 5133] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5130] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5133] <... futex resumed>) = 0 [pid 5130] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5133] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5130] futex(0x7f92ef7af7a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 76.976690][ T5148] WARNING: CPU: 0 PID: 5148 at fs/ext4/xattr.c:2140 ext4_xattr_block_set+0x2ef2/0x3680 [ 76.976896][ T5144] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. Quota mode: writeback. [ 76.986685][ T5148] Modules linked in: [ 77.000533][ T5148] CPU: 0 PID: 5148 Comm: syz-executor401 Not tainted 6.4.0-rc1-syzkaller-00001-gba0ad6ed89fd #0 [ 77.011335][ T5148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [pid 5130] futex(0x7f92ef7af7ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5125] <... futex resumed>) = 0 [pid 5122] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5121] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5125] fsconfig(4, FSCONFIG_SET_FLAG, "ro", NULL, 0 [pid 5122] futex(0x7f92ef7af7cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5121] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5125] <... fsconfig resumed>) = 0 [pid 5122] <... futex resumed>) = 0 [pid 5121] <... futex resumed>) = 0 [pid 5125] futex(0x7f92ef7af7ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5121] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5125] <... futex resumed>) = 0 [pid 5122] <... mmap resumed>) = 0x7f92e72b4000 [pid 5121] <... mmap resumed>) = 0x7f92e72d5000 [pid 5125] futex(0x7f92ef7af7a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5122] mprotect(0x7f92e72b5000, 131072, PROT_READ|PROT_WRITE [ 77.021581][ T5148] RIP: 0010:ext4_xattr_block_set+0x2ef2/0x3680 [ 77.028217][ T5148] Code: 4f 3d ff 48 8b 7c 24 50 4c 89 ee e8 c8 3e c2 ff 45 31 ed e9 86 f4 ff ff e8 db 4f 3d ff 45 31 ed e9 79 f4 ff ff e8 ce 4f 3d ff <0f> 0b e9 5d f2 ff ff e8 c2 4f 3d ff 0f 0b 43 80 3c 26 00 0f 85 6f [ 77.032138][ T5141] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3782: comm syz-executor401: Allocating blocks 41-42 which overlap fs metadata [ 77.047970][ T5148] RSP: 0018:ffffc900040ff000 EFLAGS: 00010293 [ 77.069013][ T5148] RAX: ffffffff824e1772 RBX: 1ffff9200081fe7d RCX: ffff888016759dc0 [pid 5121] mprotect(0x7f92e72d6000, 131072, PROT_READ|PROT_WRITE./strace-static-x86_64: Process 5149 attached [pid 5122] <... mprotect resumed>) = 0 [pid 5121] <... mprotect resumed>) = 0 [pid 5122] clone(child_stack=0x7f92e72d43f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5121] clone(child_stack=0x7f92e72f53f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 5149] set_robust_list(0x7f92e72f59e0, 24) = 0 [pid 5122] <... clone resumed>, parent_tid=[5150], tls=0x7f92e72d4700, child_tidptr=0x7f92e72d49d0) = 5150 [pid 5121] <... clone resumed>, parent_tid=[5151], tls=0x7f92e72f5700, child_tidptr=0x7f92e72f59d0) = 5151 ./strace-static-x86_64: Process 5150 attached [pid 5149] ioctl(-1, _IOC(_IOC_WRITE, 0x58, 0x29, 0x30), 0 [pid 5122] futex(0x7f92ef7af7c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5121] futex(0x7f92ef7af7b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5150] set_robust_list(0x7f92e72d49e0, 24 [pid 5149] <... ioctl resumed>) = -1 EBADF (Bad file descriptor) [pid 5122] <... futex resumed>) = 0 [pid 5121] <... futex resumed>) = 0 [pid 5150] <... set_robust_list resumed>) = 0 [pid 5149] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] futex(0x7f92ef7af7cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5121] futex(0x7f92ef7af7bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5150] fsconfig(4, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 5149] <... futex resumed>) = 0 [pid 5149] futex(0x7f92ef7af7b8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5144] <... fsconfig resumed>) = 0 [ 77.077192][ T5148] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 77.085287][ T5148] RBP: ffffc900040ff230 R08: ffffffff8213f210 R09: ffffed100477eaae [ 77.093401][ T5148] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 77.101498][ T5148] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc900040ff3c0 [ 77.109509][ T5148] FS: 00007f92e72d4700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 77.118592][ T5148] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [pid 5144] futex(0x7f92ef7af7bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 77.125298][ T5148] CR2: 00007f92e72f5718 CR3: 00000000284c0000 CR4: 00000000003506f0 [ 77.133343][ T5148] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.133368][ T5148] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.133385][ T5148] Call Trace: [ 77.133394][ T5148] [ 77.133431][ T5148] ? ext4_xattr_block_find+0x520/0x520 [ 77.133472][ T5148] ? ext4_reserve_inode_write+0x2b7/0x360 [ 77.167181][ T5148] ? ext4_mark_iloc_dirty+0x1c60/0x1c60 [ 77.172852][ T5148] ? ext4_create+0x279/0x550 [ 77.177500][ T5148] ? ext4_xattr_block_find+0xda/0x520 [ 77.182997][ T5148] ? do_sys_openat2+0x13f/0x500 [ 77.187908][ T5148] ? ext4_xattr_ibody_set+0xfd/0x330 [ 77.192890][ T5141] EXT4-fs (loop4): 1 truncate cleaned up [ 77.193306][ T5148] ext4_xattr_set_handle+0xcd4/0x15c0 [ 77.204367][ T5148] ? ext4_xattr_set_entry+0x3bf0/0x3bf0 [ 77.210092][ T5148] ? smack_inode_init_security+0x3e0/0x4a0 [ 77.216078][ T5148] ? __asan_memcpy+0x40/0x70 [ 77.220796][ T5148] ext4_initxattrs+0xa3/0x110 [ 77.222089][ T5141] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback. [ 77.225513][ T5148] security_inode_init_security+0x2df/0x3f0 [ 77.243625][ T5148] ? ext4_init_security+0x40/0x40 [ 77.248711][ T5148] ? security_dentry_create_files_as+0xc0/0xc0 [ 77.254991][ T5148] ? ext4_init_acl+0x387/0x400 [ 77.259815][ T5148] ? _raw_spin_unlock+0x28/0x40 [ 77.264785][ T5148] ? insert_inode_locked+0x3b7/0x410 [ 77.270258][ T5148] ? ext4_has_metadata_csum+0x12f/0x1c0 [ 77.275877][ T5148] __ext4_new_inode+0x341c/0x42e0 [ 77.281060][ T5148] ? ext4_has_group_desc_csum+0x1e0/0x1e0 [ 77.286865][ T5148] ext4_create+0x279/0x550 [ 77.291420][ T5148] ? ext4_lookup+0x750/0x750 [ 77.296092][ T5148] ? bpf_lsm_inode_create+0x9/0x10 [ 77.301322][ T5148] ? security_inode_create+0xb8/0x100 [ 77.306755][ T5148] ? ext4_lookup+0x750/0x750 [ 77.311476][ T5148] path_openat+0x13df/0x3170 [ 77.313751][ T5141] ext4 filesystem being mounted at /root/syzkaller.0f3mWb/3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.316123][ T5148] ? do_filp_open+0x490/0x490 [ 77.316174][ T5148] do_filp_open+0x234/0x490 [ 77.337628][ T5148] ? vfs_tmpfile+0x4a0/0x4a0 [ 77.342354][ T5148] ? _raw_spin_unlock+0x28/0x40 [ 77.347256][ T5148] ? alloc_fd+0x59c/0x640 [ 77.351723][ T5148] do_sys_openat2+0x13f/0x500 [ 77.356468][ T5148] ? print_irqtrace_events+0x220/0x220 [ 77.362045][ T5148] ? do_sys_open+0x230/0x230 [ 77.366706][ T5148] ? lockdep_hardirqs_on+0x98/0x140 [ 77.372056][ T5148] ? _raw_spin_unlock_irq+0x2e/0x50 [ 77.377307][ T5148] ? ptrace_notify+0x278/0x380 [ 77.382191][ T5148] __x64_sys_openat+0x247/0x290 [ 77.387106][ T5148] ? __ia32_sys_open+0x270/0x270 [ 77.392165][ T5148] ? syscall_enter_from_user_mode+0x32/0x230 [ 77.398190][ T5148] ? syscall_enter_from_user_mode+0x8c/0x230 [ 77.404272][ T5148] do_syscall_64+0x41/0xc0 [ 77.408745][ T5148] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 77.414746][ T5148] RIP: 0033:0x7f92ef72a839 [ 77.419227][ T5148] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 71 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 77.439054][ T5148] RSP: 002b:00007f92e72d42f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 77.447573][ T5148] RAX: ffffffffffffffda RBX: 00007f92ef7af7c0 RCX: 00007f92ef72a839 [ 77.455681][ T5148] RDX: 000000000000275a RSI: 0000000020000100 RDI: 00000000ffffff9c [ 77.463771][ T5148] RBP: 00007f92ef77c58c R08: 00007f92e72d4700 R09: 0000000000000000 [ 77.471956][ T5148] R10: 0000000000000000 R11: 0000000000000246 R12: 756f726776737973 [ 77.480026][ T5148] R13: 636f6c6c61646c6f R14: 0030656c69662f2e R15: 00007f92ef7af7c8 [ 77.488082][ T5148] [ 77.491207][ T5148] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 77.498532][ T5148] CPU: 0 PID: 5148 Comm: syz-executor401 Not tainted 6.4.0-rc1-syzkaller-00001-gba0ad6ed89fd #0 [ 77.508992][ T5148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 77.519081][ T5148] Call Trace: [ 77.522377][ T5148] [ 77.525338][ T5148] dump_stack_lvl+0x1e7/0x2d0 [ 77.530043][ T5148] ? nf_tcp_handle_invalid+0x650/0x650 [ 77.535519][ T5148] ? panic+0x770/0x770 [ 77.539607][ T5148] ? vscnprintf+0x5d/0x80 [ 77.544059][ T5148] panic+0x30f/0x770 [ 77.547981][ T5148] ? __warn+0x171/0x4a0 [ 77.552157][ T5148] ? __memcpy_flushcache+0x2b0/0x2b0 [ 77.557472][ T5148] __warn+0x314/0x4a0 [ 77.561470][ T5148] ? ext4_xattr_block_set+0x2ef2/0x3680 [ 77.567035][ T5148] report_bug+0x2b3/0x500 [ 77.571398][ T5148] ? ext4_xattr_block_set+0x2ef2/0x3680 [ 77.576963][ T5148] handle_bug+0x3d/0x70 [ 77.581144][ T5148] exc_invalid_op+0x1a/0x50 [ 77.585685][ T5148] asm_exc_invalid_op+0x1a/0x20 [ 77.590679][ T5148] RIP: 0010:ext4_xattr_block_set+0x2ef2/0x3680 [ 77.596861][ T5148] Code: 4f 3d ff 48 8b 7c 24 50 4c 89 ee e8 c8 3e c2 ff 45 31 ed e9 86 f4 ff ff e8 db 4f 3d ff 45 31 ed e9 79 f4 ff ff e8 ce 4f 3d ff <0f> 0b e9 5d f2 ff ff e8 c2 4f 3d ff 0f 0b 43 80 3c 26 00 0f 85 6f [ 77.616515][ T5148] RSP: 0018:ffffc900040ff000 EFLAGS: 00010293 [ 77.622609][ T5148] RAX: ffffffff824e1772 RBX: 1ffff9200081fe7d RCX: ffff888016759dc0 [ 77.630703][ T5148] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 77.638689][ T5148] RBP: ffffc900040ff230 R08: ffffffff8213f210 R09: ffffed100477eaae [ 77.646713][ T5148] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 77.654708][ T5148] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc900040ff3c0 [ 77.662701][ T5148] ? dquot_initialize_needed+0x170/0x320 [ 77.668357][ T5148] ? ext4_xattr_block_set+0x2ef2/0x3680 [ 77.673943][ T5148] ? ext4_xattr_block_find+0x520/0x520 [ 77.679425][ T5148] ? ext4_reserve_inode_write+0x2b7/0x360 [ 77.685183][ T5148] ? ext4_mark_iloc_dirty+0x1c60/0x1c60 [ 77.690748][ T5148] ? ext4_create+0x279/0x550 [ 77.695354][ T5148] ? ext4_xattr_block_find+0xda/0x520 [ 77.700749][ T5148] ? do_sys_openat2+0x13f/0x500 [ 77.705629][ T5148] ? ext4_xattr_ibody_set+0xfd/0x330 [ 77.710954][ T5148] ext4_xattr_set_handle+0xcd4/0x15c0 [ 77.716392][ T5148] ? ext4_xattr_set_entry+0x3bf0/0x3bf0 [ 77.721962][ T5148] ? smack_inode_init_security+0x3e0/0x4a0 [ 77.727898][ T5148] ? __asan_memcpy+0x40/0x70 [ 77.732515][ T5148] ext4_initxattrs+0xa3/0x110 [ 77.737228][ T5148] security_inode_init_security+0x2df/0x3f0 [ 77.743138][ T5148] ? ext4_init_security+0x40/0x40 [ 77.748185][ T5148] ? security_dentry_create_files_as+0xc0/0xc0 [ 77.754352][ T5148] ? ext4_init_acl+0x387/0x400 [ 77.759139][ T5148] ? _raw_spin_unlock+0x28/0x40 [ 77.764033][ T5148] ? insert_inode_locked+0x3b7/0x410 [ 77.769451][ T5148] ? ext4_has_metadata_csum+0x12f/0x1c0 [ 77.775034][ T5148] __ext4_new_inode+0x341c/0x42e0 [ 77.780101][ T5148] ? ext4_has_group_desc_csum+0x1e0/0x1e0 [ 77.785856][ T5148] ext4_create+0x279/0x550 [ 77.790303][ T5148] ? ext4_lookup+0x750/0x750 [ 77.794937][ T5148] ? bpf_lsm_inode_create+0x9/0x10 [ 77.800067][ T5148] ? security_inode_create+0xb8/0x100 [ 77.805482][ T5148] ? ext4_lookup+0x750/0x750 [ 77.810092][ T5148] path_openat+0x13df/0x3170 [ 77.814808][ T5148] ? do_filp_open+0x490/0x490 [ 77.819512][ T5148] do_filp_open+0x234/0x490 [ 77.824060][ T5148] ? vfs_tmpfile+0x4a0/0x4a0 [ 77.828768][ T5148] ? _raw_spin_unlock+0x28/0x40 [ 77.833630][ T5148] ? alloc_fd+0x59c/0x640 [ 77.837985][ T5148] do_sys_openat2+0x13f/0x500 [ 77.842678][ T5148] ? print_irqtrace_events+0x220/0x220 [ 77.848161][ T5148] ? do_sys_open+0x230/0x230 [ 77.852772][ T5148] ? lockdep_hardirqs_on+0x98/0x140 [ 77.857981][ T5148] ? _raw_spin_unlock_irq+0x2e/0x50 [ 77.863196][ T5148] ? ptrace_notify+0x278/0x380 [ 77.867978][ T5148] __x64_sys_openat+0x247/0x290 [ 77.872846][ T5148] ? __ia32_sys_open+0x270/0x270 [ 77.877889][ T5148] ? syscall_enter_from_user_mode+0x32/0x230 [ 77.883888][ T5148] ? syscall_enter_from_user_mode+0x8c/0x230 [ 77.889905][ T5148] do_syscall_64+0x41/0xc0 [ 77.894361][ T5148] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 77.900274][ T5148] RIP: 0033:0x7f92ef72a839 [ 77.904718][ T5148] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 71 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 77.924593][ T5148] RSP: 002b:00007f92e72d42f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 77.933016][ T5148] RAX: ffffffffffffffda RBX: 00007f92ef7af7c0 RCX: 00007f92ef72a839 [ 77.941014][ T5148] RDX: 000000000000275a RSI: 0000000020000100 RDI: 00000000ffffff9c [ 77.948991][ T5148] RBP: 00007f92ef77c58c R08: 00007f92e72d4700 R09: 0000000000000000 [ 77.956972][ T5148] R10: 0000000000000000 R11: 0000000000000246 R12: 756f726776737973 [ 77.965040][ T5148] R13: 636f6c6c61646c6f R14: 0030656c69662f2e R15: 00007f92ef7af7c8 [ 77.973059][ T5148] [ 77.976310][ T5148] Kernel Offset: disabled [ 77.980748][ T5148] Rebooting in 86400 seconds..