./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2382845966

<...>
Warning: Permanently added '10.128.0.5' (ED25519) to the list of known hosts.
execve("./syz-executor2382845966", ["./syz-executor2382845966"], 0x7ffd0789e0e0 /* 10 vars */) = 0
brk(NULL)                               = 0x55558e782000
brk(0x55558e782e00)                     = 0x55558e782e00
arch_prctl(ARCH_SET_FS, 0x55558e782480) = 0
set_tid_address(0x55558e782750)         = 5823
set_robust_list(0x55558e782760, 24)     = 0
rseq(0x55558e782da0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2382845966", 4096) = 28
getrandom("\x78\xac\x9c\xf7\xda\xec\x58\x8c", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55558e782e00
brk(0x55558e7a3e00)                     = 0x55558e7a3e00
brk(0x55558e7a4000)                     = 0x55558e7a4000
mprotect(0x7f732c5c1000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f732c512990, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f732c51b160}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f732c512990, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f732c51b160}, NULL, 8) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5824 attached
 <unfinished ...>
[pid  5824] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5823] <... clone resumed>, child_tidptr=0x55558e782750) = 5824
[pid  5824] <... set_robust_list resumed>) = 0
[pid  5824] mkdir("./syzkaller.FOFM90", 0700 <unfinished ...>
[pid  5823] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5825 attached
, child_tidptr=0x55558e782750) = 5825
[pid  5824] <... mkdir resumed>)        = 0
[pid  5825] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5824] chmod("./syzkaller.FOFM90", 0777 <unfinished ...>
[pid  5823] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5825] <... set_robust_list resumed>) = 0
[pid  5824] <... chmod resumed>)        = 0
[pid  5824] chdir("./syzkaller.FOFM90"./strace-static-x86_64: Process 5826 attached
 <unfinished ...>
[pid  5825] mkdir("./syzkaller.Iyz3HL", 0700 <unfinished ...>
[pid  5824] <... chdir resumed>)        = 0
[pid  5826] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5824] mkdir("./0", 0777 <unfinished ...>
[pid  5823] <... clone resumed>, child_tidptr=0x55558e782750) = 5826
[pid  5826] <... set_robust_list resumed>) = 0
[pid  5825] <... mkdir resumed>)        = 0
[pid  5824] <... mkdir resumed>)        = 0
[pid  5823] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5826] mkdir("./syzkaller.BkPtbE", 0700 <unfinished ...>
[pid  5825] chmod("./syzkaller.Iyz3HL", 0777 <unfinished ...>
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5826] <... mkdir resumed>)        = 0
[pid  5825] <... chmod resumed>)        = 0
./strace-static-x86_64: Process 5827 attached
[pid  5823] <... clone resumed>, child_tidptr=0x55558e782750) = 5827
[pid  5826] chmod("./syzkaller.BkPtbE", 0777 <unfinished ...>
[pid  5825] chdir("./syzkaller.Iyz3HL" <unfinished ...>
[pid  5824] <... openat resumed>)       = 3
[pid  5823] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5827] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5826] <... chmod resumed>)        = 0
[pid  5825] <... chdir resumed>)        = 0
[pid  5824] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5827] <... set_robust_list resumed>) = 0
[pid  5826] chdir("./syzkaller.BkPtbE" <unfinished ...>
[pid  5827] mkdir("./syzkaller.HqTVFu", 0700 <unfinished ...>
[pid  5826] <... chdir resumed>)        = 0
[pid  5825] mkdir("./0", 0777 <unfinished ...>
[pid  5824] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
./strace-static-x86_64: Process 5828 attached
[pid  5823] <... clone resumed>, child_tidptr=0x55558e782750) = 5828
[pid  5827] <... mkdir resumed>)        = 0
[pid  5826] mkdir("./0", 0777 <unfinished ...>
[pid  5825] <... mkdir resumed>)        = 0
[pid  5824] close(3 <unfinished ...>
[pid  5827] chmod("./syzkaller.HqTVFu", 0777 <unfinished ...>
[pid  5826] <... mkdir resumed>)        = 0
[pid  5828] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5827] <... chmod resumed>)        = 0
[pid  5824] <... close resumed>)        = 0
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5827] chdir("./syzkaller.HqTVFu" <unfinished ...>
[pid  5828] <... set_robust_list resumed>) = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5825] <... openat resumed>)       = 3
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5828] mkdir("./syzkaller.aKuUDa", 0700 <unfinished ...>
[pid  5827] <... chdir resumed>)        = 0
[pid  5828] <... mkdir resumed>)        = 0
[pid  5827] mkdir("./0", 0777 <unfinished ...>
[pid  5826] <... openat resumed>)       = 3
[pid  5825] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5829 attached
)       = -1 ENXIO (No such device or address)
[pid  5825] close(3)                    = 0
[pid  5828] chmod("./syzkaller.aKuUDa", 0777 <unfinished ...>
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5831 attached
 <unfinished ...>
[pid  5828] <... chmod resumed>)        = 0
[pid  5824] <... clone resumed>, child_tidptr=0x55558e782750) = 5829
[pid  5828] chdir("./syzkaller.aKuUDa") = 0
[pid  5831] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5828] mkdir("./0", 0777 <unfinished ...>
[pid  5831] <... set_robust_list resumed>) = 0
[pid  5831] chdir("./0" <unfinished ...>
[pid  5828] <... mkdir resumed>)        = 0
[pid  5831] <... chdir resumed>)        = 0
[pid  5825] <... clone resumed>, child_tidptr=0x55558e782750) = 5831
[pid  5831] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5831] setpgid(0, 0)               = 0
[pid  5831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5831] <... openat resumed>)       = 3
[pid  5829] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5827] <... mkdir resumed>)        = 0
[pid  5826] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5831] write(3, "1000", 4 <unfinished ...>
[pid  5828] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5831] <... write resumed>)        = 4
[pid  5831] close(3)                    = 0
[pid  5831] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5828] close(3 <unfinished ...>
[pid  5831] <... symlink resumed>)      = 0
[pid  5828] <... close resumed>)        = 0
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5832 attached
 <unfinished ...>
[pid  5829] <... set_robust_list resumed>) = 0
[pid  5827] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5826] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5829] chdir("./0" <unfinished ...>
[pid  5826] close(3 <unfinished ...>
[pid  5832] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5827] <... openat resumed>)       = 3
[pid  5826] <... close resumed>)        = 0
[pid  5832] <... set_robust_list resumed>) = 0
[pid  5829] <... chdir resumed>)        = 0
[pid  5827] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
 <unfinished ...>
[pid  5832] chdir("./0" <unfinished ...>
[pid  5831] write(1, "executing program\n", 18 <unfinished ...>
[pid  5829] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5833 attached
 <unfinished ...>
[pid  5832] <... chdir resumed>)        = 0
[pid  5831] <... write resumed>)        = 18
[pid  5827] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5829] <... prctl resumed>)        = 0
[pid  5833] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5827] close(3 <unfinished ...>
[pid  5829] setpgid(0, 0 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55558e782750) = 5833
[pid  5833] <... set_robust_list resumed>) = 0
[pid  5829] <... setpgid resumed>)      = 0
[pid  5827] <... close resumed>)        = 0
[pid  5827] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5832] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5831] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5829] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5828] <... clone resumed>, child_tidptr=0x55558e782750) = 5832
./strace-static-x86_64: Process 5834 attached
[pid  5833] chdir("./0" <unfinished ...>
[pid  5832] <... prctl resumed>)        = 0
[pid  5831] <... memfd_create resumed>) = 3
[pid  5834] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5833] <... chdir resumed>)        = 0
[pid  5832] setpgid(0, 0 <unfinished ...>
[pid  5829] <... openat resumed>)       = 3
[pid  5827] <... clone resumed>, child_tidptr=0x55558e782750) = 5834
[pid  5834] <... set_robust_list resumed>) = 0
[pid  5833] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5832] <... setpgid resumed>)      = 0
[pid  5831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5829] write(3, "1000", 4 <unfinished ...>
[pid  5834] chdir("./0" <unfinished ...>
[pid  5833] <... prctl resumed>)        = 0
[pid  5832] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5833] setpgid(0, 0 <unfinished ...>
[pid  5832] <... openat resumed>)       = 3
[pid  5831] <... mmap resumed>)         = 0x7f7324000000
[pid  5834] <... chdir resumed>)        = 0
[pid  5833] <... setpgid resumed>)      = 0
[pid  5829] <... write resumed>)        = 4
[pid  5834] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5833] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5829] close(3 <unfinished ...>
[pid  5832] write(3, "1000", 4)         = 4
[pid  5832] close(3 <unfinished ...>
[pid  5829] <... close resumed>)        = 0
[pid  5832] <... close resumed>)        = 0
[pid  5832] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5833] <... openat resumed>)       = 3
[pid  5832] <... symlink resumed>)      = 0
[pid  5829] symlink("/dev/binderfs", "./binderfs"executing program
 <unfinished ...>
[pid  5832] write(1, "executing program\n", 18executing program
 <unfinished ...>
[pid  5829] <... symlink resumed>)      = 0
[pid  5832] <... write resumed>)        = 18
[pid  5834] <... prctl resumed>)        = 0
[pid  5832] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5829] write(1, "executing program\n", 18 <unfinished ...>
[pid  5834] setpgid(0, 0 <unfinished ...>
[pid  5829] <... write resumed>)        = 18
[pid  5834] <... setpgid resumed>)      = 0
[pid  5833] write(3, "1000", 4 <unfinished ...>
[pid  5834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5833] <... write resumed>)        = 4
[pid  5832] <... memfd_create resumed>) = 3
[pid  5832] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  5834] <... openat resumed>)       = 3
[pid  5833] close(3 <unfinished ...>
[pid  5829] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5834] write(3, "1000", 4 <unfinished ...>
[pid  5833] <... close resumed>)        = 0
[pid  5834] <... write resumed>)        = 4
[pid  5833] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5829] <... memfd_create resumed>) = 3
[pid  5834] close(3)                    = 0
[pid  5829] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5834] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5833] <... symlink resumed>)      = 0
[pid  5829] <... mmap resumed>)         = 0x7f7324000000
executing program
[pid  5834] <... symlink resumed>)      = 0
[pid  5833] write(1, "executing program\n", 18 <unfinished ...>
[pid  5834] write(1, "executing program\n", 18 <unfinished ...>
[pid  5833] <... write resumed>)        = 18
[pid  5833] memfd_create("syzkaller", 0) = 3
executing program
[pid  5834] <... write resumed>)        = 18
[pid  5833] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  5834] memfd_create("syzkaller", 0) = 3
[pid  5834] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  5833] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5831] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5832] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5829] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5834] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5833] <... write resumed>)        = 16777216
[pid  5834] <... write resumed>)        = 16777216
[pid  5833] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5832] <... write resumed>)        = 16777216
[pid  5831] <... write resumed>)        = 16777216
[pid  5829] <... write resumed>)        = 16777216
[pid  5834] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5832] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5831] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5829] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5833] <... munmap resumed>)       = 0
[pid  5834] <... munmap resumed>)       = 0
[pid  5833] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5834] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  5834] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5833] <... openat resumed>)       = 4
[pid  5832] <... munmap resumed>)       = 0
[pid  5829] <... munmap resumed>)       = 0
[pid  5833] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5831] <... munmap resumed>)       = 0
[pid  5829] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5829] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5832] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5832] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5833] <... ioctl resumed>)        = 0
[pid  5831] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5829] <... ioctl resumed>)        = 0
[pid  5831] <... openat resumed>)       = 4
[pid  5831] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5833] close(3 <unfinished ...>
[pid  5831] <... ioctl resumed>)        = 0
[pid  5829] close(3 <unfinished ...>
[pid  5833] <... close resumed>)        = 0
[pid  5829] <... close resumed>)        = 0
[pid  5833] close(4 <unfinished ...>
[pid  5829] close(4 <unfinished ...>
[pid  5834] <... ioctl resumed>)        = 0
[pid  5833] <... close resumed>)        = 0
[pid  5832] <... ioctl resumed>)        = 0
[pid  5831] close(3)                    = 0
[pid  5831] close(4 <unfinished ...>
[pid  5829] <... close resumed>)        = 0
[pid  5833] mkdir("./file1", 0777 <unfinished ...>
[pid  5831] <... close resumed>)        = 0
[pid  5831] mkdir("./file1", 0777 <unfinished ...>
[pid  5829] mkdir("./file1", 0777 <unfinished ...>
[pid  5834] close(3 <unfinished ...>
[pid  5833] <... mkdir resumed>)        = 0
[pid  5831] <... mkdir resumed>)        = 0
[pid  5834] <... close resumed>)        = 0
[pid  5833] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5831] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5834] close(4)                    = 0
[pid  5832] close(3 <unfinished ...>
[pid  5834] mkdir("./file1", 0777 <unfinished ...>
[pid  5832] <... close resumed>)        = 0
[pid  5834] <... mkdir resumed>)        = 0
[pid  5834] mount("/dev/loop3", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5832] close(4)                    = 0
[pid  5832] mkdir("./file1", 0777 <unfinished ...>
[pid  5829] <... mkdir resumed>)        = 0
[pid  5832] <... mkdir resumed>)        = 0
[pid  5829] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[   89.903697][ T5833] loop2: detected capacity change from 0 to 32768
[   89.905510][ T5834] loop3: detected capacity change from 0 to 32768
[   89.919840][ T5829] loop0: detected capacity change from 0 to 32768
[   89.920524][ T5832] loop4: detected capacity change from 0 to 32768
[   89.936872][ T5831] loop1: detected capacity change from 0 to 32768
[   90.260450][ T5832] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   90.271599][ T5834] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,background_target=invalid device 79,nojournal_transaction_names
[   90.275949][ T5832] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   90.296025][ T5834] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[   90.300729][ T5833] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   90.329838][ T5834] bcachefs (loop3): Version upgrade required:
[   90.329838][ T5834] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   90.329838][ T5834] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   90.329838][ T5834]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   90.330658][ T5833] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   90.408103][ T5831] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   90.419020][ T5829] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   90.428816][ T5829] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   90.437403][ T5831] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   90.463214][ T5834] bcachefs (loop3): error validating btree node on loop3 at btree extents level 0/0
[   90.463252][ T5834]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0  
[   90.463270][ T5834]   node offset 8/16: btree node data missing: expected 16 sectors, found 8, fixing
[   90.562797][ T5834] bcachefs (loop3): btree_node_read_work: rewriting btree node at btree=extents level=0 SPOS_MAX due to error
[pid  5832] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5829] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5829] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5829] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5829] close(3 <unfinished ...>
[pid  5831] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5831] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5832] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5831] <... openat resumed>)       = 3
[pid  5831] ioctl(3, LOOP_CLR_FD)       = 0
[   90.578915][ T5834] bcachefs (loop3): error validating btree node on loop3 at btree dirents level 0/0
[   90.578944][ T5834]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0  
[   90.578962][ T5834]   node offset 16/24: btree node data missing: expected 24 sectors, found 16, fixing
[pid  5831] close(3 <unfinished ...>
[pid  5832] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5832] ioctl(3, LOOP_CLR_FD)       = 0
[   90.590679][ T5829] bcachefs: bch2_fs_get_tree() error: EINVAL
[   90.633221][ T5832] bcachefs: bch2_fs_get_tree() error: EINVAL
[   90.633289][ T5831] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5832] close(3 <unfinished ...>
[pid  5833] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5833] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5833] ioctl(3, LOOP_CLR_FD)       = 0
[   90.767002][ T5833] bcachefs: bch2_fs_get_tree() error: EINVAL
[   90.831933][ T5834] bcachefs (loop3): btree_node_read_work: rewriting btree node at btree=dirents level=0 SPOS_MAX due to error
[pid  5833] close(3 <unfinished ...>
[pid  5832] <... close resumed>)        = 0
[pid  5832] exit_group(0)               = ?
[pid  5832] +++ exited with 0 +++
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5832, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=43 /* 0.43 s */} ---
[pid  5828] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5828] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5828] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] unlink("./0/binderfs")      = 0
[pid  5828] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5828] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[   90.873877][ T5834] bcachefs (loop3): error validating btree node at btree alloc level 0/0
[   90.873903][ T5834]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0  
[pid  5828] close(4)                    = 0
[pid  5828] rmdir("./0/file1")          = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] close(3)                    = 0
[pid  5828] rmdir("./0")                = 0
[pid  5828] mkdir("./1", 0777 <unfinished ...>
[pid  5829] <... close resumed>)        = 0
[pid  5828] <... mkdir resumed>)        = 0
[pid  5829] exit_group(0 <unfinished ...>
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5828] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5828] close(3)                    = 0
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5829] <... exit_group resumed>)   = ?
[pid  5829] +++ exited with 0 +++
[pid  5828] <... clone resumed>, child_tidptr=0x55558e782750) = 5875
[pid  5824] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5829, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=43 /* 0.43 s */} ---
[pid  5824] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5875 attached
) = -1 EINVAL (Invalid argument)
[pid  5875] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5824] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5875] <... set_robust_list resumed>) = 0
[pid  5824] <... openat resumed>)       = 3
[pid  5875] chdir("./1" <unfinished ...>
[pid  5824] newfstatat(3, "",  <unfinished ...>
[pid  5875] <... chdir resumed>)        = 0
[pid  5824] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5875] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5824] getdents64(3,  <unfinished ...>
[pid  5875] <... prctl resumed>)        = 0
[pid  5875] setpgid(0, 0 <unfinished ...>
[pid  5824] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5875] <... setpgid resumed>)      = 0
[pid  5824] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5875] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5875] <... openat resumed>)       = 3
[pid  5824] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid  5875] write(3, "1000", 4 <unfinished ...>
[pid  5824] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5875] <... write resumed>)        = 4
[pid  5824] unlink("./0/binderfs")      = 0
[   90.873922][ T5834]   node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing
[pid  5824] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5875] close(3)                    = 0
[pid  5875] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  5875] write(1, "executing program\n", 18) = 18
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5875] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5824] newfstatat(AT_FDCWD, "./0/file1",  <unfinished ...>
[pid  5875] <... memfd_create resumed>) = 3
[pid  5824] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5875] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5824] <... openat resumed>)       = 4
[pid  5875] <... mmap resumed>)         = 0x7f7324000000
[pid  5824] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5824] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5824] close(4)                    = 0
[pid  5824] rmdir("./0/file1" <unfinished ...>
[pid  5831] <... close resumed>)        = 0
[pid  5824] <... rmdir resumed>)        = 0
[pid  5831] exit_group(0 <unfinished ...>
[pid  5824] getdents64(3,  <unfinished ...>
[pid  5831] <... exit_group resumed>)   = ?
[pid  5824] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5824] close(3 <unfinished ...>
[pid  5831] +++ exited with 0 +++
[pid  5824] <... close resumed>)        = 0
[pid  5824] rmdir("./0" <unfinished ...>
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5831, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=50 /* 0.50 s */} ---
[pid  5825] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5824] <... rmdir resumed>)        = 0
[pid  5824] mkdir("./1", 0777)          = 0
[   91.029567][ T5834] bcachefs (loop3): btree_node_read_work: rewriting btree node at btree=alloc level=0 SPOS_MAX due to error
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5825] <... restart_syscall resumed>) = 0
[pid  5825] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5825] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5825] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] unlink("./0/binderfs" <unfinished ...>
[pid  5824] <... openat resumed>)       = 3
[pid  5824] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5825] <... unlink resumed>)       = 0
[pid  5824] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5824] close(3)                    = 0
[pid  5825] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5825] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5825] getdents64(4, ./strace-static-x86_64: Process 5876 attached
0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5876] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5824] <... clone resumed>, child_tidptr=0x55558e782750) = 5876
[pid  5876] <... set_robust_list resumed>) = 0
[pid  5825] getdents64(4,  <unfinished ...>
[pid  5876] chdir("./1" <unfinished ...>
[pid  5825] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5876] <... chdir resumed>)        = 0
[pid  5825] close(4 <unfinished ...>
[pid  5876] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5825] <... close resumed>)        = 0
[pid  5825] rmdir("./0/file1")          = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] close(3)                    = 0
[pid  5825] rmdir("./0")                = 0
[pid  5825] mkdir("./1", 0777)          = 0
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5825] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5876] <... prctl resumed>)        = 0
[pid  5825] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5876] setpgid(0, 0 <unfinished ...>
[pid  5825] close(3)                    = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5877 attached
, child_tidptr=0x55558e782750) = 5877
[pid  5877] set_robust_list(0x55558e782760, 24) = 0
[pid  5877] chdir("./1" <unfinished ...>
[pid  5876] <... setpgid resumed>)      = 0
[pid  5877] <... chdir resumed>)        = 0
[pid  5877] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5833] <... close resumed>)        = 0
[pid  5877] <... prctl resumed>)        = 0
[pid  5876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5877] setpgid(0, 0)               = 0
[pid  5877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5876] <... openat resumed>)       = 3
[pid  5833] exit_group(0 <unfinished ...>
[pid  5876] write(3, "1000", 4 <unfinished ...>
[pid  5877] write(3, "1000", 4 <unfinished ...>
[pid  5876] <... write resumed>)        = 4
[pid  5833] <... exit_group resumed>)   = ?
[   91.080933][ T5834] bcachefs (loop3): error validating btree node on loop3 at btree subvolumes level 0/0
[   91.080986][ T5834]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:32:96 gen 0  
[pid  5876] close(3 <unfinished ...>
[pid  5877] <... write resumed>)        = 4
[pid  5876] <... close resumed>)        = 0
[pid  5833] +++ exited with 0 +++
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5833, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=48 /* 0.48 s */} ---
[pid  5826] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
executing program
[pid  5877] close(3 <unfinished ...>
[pid  5876] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5826] getdents64(3,  <unfinished ...>
[pid  5877] <... close resumed>)        = 0
[pid  5876] <... symlink resumed>)      = 0
[pid  5826] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5877] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5826] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5877] <... symlink resumed>)      = 0
[pid  5876] write(1, "executing program\n", 18 <unfinished ...>
[pid  5826] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5877] write(1, "executing program\n", 18 <unfinished ...>
[pid  5826] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid  5877] <... write resumed>)        = 18
executing program
[pid  5826] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5877] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5876] <... write resumed>)        = 18
[pid  5826] unlink("./0/binderfs" <unfinished ...>
[pid  5877] <... memfd_create resumed>) = 3
[pid  5826] <... unlink resumed>)       = 0
[pid  5877] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5826] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5877] <... mmap resumed>)         = 0x7f7324000000
[pid  5876] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5826] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5876] <... memfd_create resumed>) = 3
[pid  5826] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5876] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  5826] <... openat resumed>)       = 4
[pid  5826] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5826] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5826] close(4)                    = 0
[   91.081005][ T5834]   node offset 0/16: bad magic: want 59513f585d347cd2, got 0
[   91.185846][ T5834] bcachefs (loop3): flagging btree subvolumes lost data
[pid  5826] rmdir("./0/file1")          = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5826] close(3)                    = 0
[pid  5826] rmdir("./0")                = 0
[pid  5826] mkdir("./1", 0777)          = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5826] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5826] close(3)                    = 0
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e782750) = 5878
./strace-static-x86_64: Process 5878 attached
[pid  5878] set_robust_list(0x55558e782760, 24) = 0
[pid  5878] chdir("./1")                = 0
[pid  5878] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5878] setpgid(0, 0)               = 0
[pid  5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5878] write(3, "1000", 4)         = 4
[pid  5878] close(3)                    = 0
[pid  5878] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5878] write(1, "executing program\n", 18executing program
) = 18
[pid  5878] memfd_create("syzkaller", 0) = 3
[pid  5878] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   91.219207][ T5834] error reading btree root subvolumes l=0: btree_node_read_error, fixing
[   91.255690][ T5834] bcachefs (loop3): will run btree node scan
[pid  5876] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5875] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5877] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5878] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5876] <... write resumed>)        = 16777216
[pid  5876] munmap(0x7f7324000000, 138412032) = 0
[pid  5876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5876] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5875] <... write resumed>)        = 16777216
[pid  5876] <... ioctl resumed>)        = 0
[pid  5875] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5876] close(3 <unfinished ...>
[pid  5875] <... munmap resumed>)       = 0
[pid  5876] <... close resumed>)        = 0
[pid  5876] close(4)                    = 0
[pid  5876] mkdir("./file1", 0777)      = 0
[pid  5876] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5878] <... write resumed>)        = 16777216
[   91.277352][ T5834] bcachefs (loop3): scan_for_btree_nodes...
[   91.829976][ T5876] loop0: detected capacity change from 0 to 32768
[pid  5878] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5875] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5875] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5878] <... munmap resumed>)       = 0
[pid  5877] <... write resumed>)        = 16777216
[pid  5878] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5877] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5878] <... openat resumed>)       = 4
[pid  5875] <... ioctl resumed>)        = 0
[pid  5878] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5875] close(3)                    = 0
[pid  5875] close(4)                    = 0
[pid  5875] mkdir("./file1", 0777)      = 0
[pid  5875] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5877] <... munmap resumed>)       = 0
[pid  5877] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5878] close(3)                    = 0
[pid  5878] close(4)                    = 0
[pid  5877] <... openat resumed>)       = 4
[   91.914225][ T5875] loop4: detected capacity change from 0 to 32768
[   91.935804][ T5878] loop2: detected capacity change from 0 to 32768
[pid  5878] mkdir("./file1", 0777)      = 0
[pid  5877] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5878] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5877] <... ioctl resumed>)        = 0
[pid  5877] close(3)                    = 0
[pid  5877] close(4)                    = 0
[pid  5877] mkdir("./file1", 0777)      = 0
[   91.977687][ T5877] loop1: detected capacity change from 0 to 32768
[   91.996919][ T5876] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   92.015154][ T5876] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   92.062319][ T5875] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   92.074465][ T5875] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   92.134540][ T5877] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   92.170242][ T5834] bch2_scan_for_btree_nodes: nodes found after overwrites:
[   92.170283][ T5834]   extents l=0 seq=1 journal_seq=0 cookie=c6c25c03258c59c5 POS_MIN-SPOS_MAX ptr: 0:27:0 gen 0
[   92.170300][ T5834]   inodes l=0 seq=1 journal_seq=5 cookie=7589ab5e0c11cc7a POS_MIN-SPOS_MAX ptr: 0:38:0 gen 0
[   92.170317][ T5834]   dirents l=0 seq=1 journal_seq=1 cookie=9aa2895aefce4bdf POS_MIN-SPOS_MAX ptr: 0:41:0 gen 0
[   92.170333][ T5834]   xattrs l=0 seq=1 journal_seq=4 cookie=2285c34bed0abe32 POS_MIN-SPOS_MAX ptr: 0:31:0 gen 0
[   92.170349][ T5834]   subvolumes l=0 seq=1 journal_seq=1 cookie=c0bef60d07ceb940 POS_MIN-SPOS_MAX ptr: 0:35:0 gen 0
[   92.170365][ T5834]   snapshots l=0 seq=1 journal_seq=1 cookie=ebb8d5a9e3463bdb POS_MIN-SPOS_MAX ptr: 0:32:0 gen 0
[pid  5877] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5876] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5876] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5876] close(3 <unfinished ...>
[pid  5875] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   92.170381][ T5834]   lru l=0 seq=1 journal_seq=5 cookie=28f61e078e70b95c POS_MIN-SPOS_MAX ptr: 0:28:0 gen 0
[pid  5875] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5875] ioctl(3, LOOP_CLR_FD)       = 0
[   92.170397][ T5834]   deleted_inodes l=0 seq=1 journal_seq=0 cookie=1db8f60c84bb244c POS_MIN-SPOS_MAX ptr: 0:42:0 gen 0
[   92.170413][ T5834] 
[   92.185340][ T5877] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5875] close(3 <unfinished ...>
[pid  5878] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5877] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5878] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5877] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5878] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5877] <... openat resumed>)       = 3
[pid  5878] close(3 <unfinished ...>
[pid  5877] ioctl(3, LOOP_CLR_FD)       = 0
[   92.197816][ T5878] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   92.197898][ T5878] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   92.290919][ T5876] bcachefs: bch2_fs_get_tree() error: EINVAL
[   92.355409][ T5875] bcachefs: bch2_fs_get_tree() error: EINVAL
[   92.436807][ T5877] bcachefs: bch2_fs_get_tree() error: EINVAL
[   92.439103][ T5878] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5877] close(3 <unfinished ...>
[pid  5876] <... close resumed>)        = 0
[pid  5876] exit_group(0)               = ?
[pid  5876] +++ exited with 0 +++
[pid  5824] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5876, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=46 /* 0.46 s */} ---
[pid  5824] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5824] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   92.541141][  T976] cfg80211: failed to load regulatory.db
[   92.646951][ T5834]  done
[   92.650061][ T5834] bcachefs (loop3): check_topology...
[   92.650176][ T5834] bcachefs (loop3): btree root subvolumes unreadable, must recover from scan
[pid  5824] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5824] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5824] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5875] <... close resumed>)        = 0
[pid  5875] exit_group(0 <unfinished ...>
[pid  5824] unlink("./1/binderfs" <unfinished ...>
[pid  5875] <... exit_group resumed>)   = ?
[pid  5824] <... unlink resumed>)       = 0
[pid  5875] +++ exited with 0 +++
[pid  5824] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5824] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   92.712280][ T5834] bcachefs (loop3): bch2_get_scanned_nodes(): recovering subvolumes l=0 POS_MIN - SPOS_MAX
[   92.736384][ T5834] bcachefs (loop3): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0
[pid  5824] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5824] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5824] close(4 <unfinished ...>
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5875, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=49 /* 0.49 s */} ---
[pid  5824] <... close resumed>)        = 0
[pid  5824] rmdir("./1/file1")          = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5824] close(3 <unfinished ...>
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] <... close resumed>)        = 0
[pid  5824] rmdir("./1" <unfinished ...>
[pid  5828] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5824] <... rmdir resumed>)        = 0
[pid  5824] mkdir("./2", 0777)          = 0
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5824] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5824] close(3 <unfinished ...>
[pid  5828] <... openat resumed>)       = 3
[pid  5824] <... close resumed>)        = 0
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[   92.778777][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   92.778834][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   92.778853][   T43]   node offset 8/960 bset u64s 60677 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   92.814947][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[pid  5828] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
./strace-static-x86_64: Process 5908 attached
[pid  5828] getdents64(3,  <unfinished ...>
[pid  5824] <... clone resumed>, child_tidptr=0x55558e782750) = 5908
[pid  5828] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5828] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] unlink("./1/binderfs")      = 0
[pid  5828] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5908] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5828] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5908] <... set_robust_list resumed>) = 0
[pid  5828] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5908] chdir("./2" <unfinished ...>
[pid  5828] <... openat resumed>)       = 4
[pid  5828] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5828] close(4)                    = 0
[pid  5828] rmdir("./1/file1")          = 0
[pid  5908] <... chdir resumed>)        = 0
[pid  5828] getdents64(3,  <unfinished ...>
[pid  5908] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5828] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5908] <... prctl resumed>)        = 0
[pid  5828] close(3)                    = 0
[pid  5828] rmdir("./1")                = 0
[pid  5908] setpgid(0, 0 <unfinished ...>
[pid  5828] mkdir("./2", 0777)          = 0
[pid  5908] <... setpgid resumed>)      = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5908] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5828] <... openat resumed>)       = 3
[pid  5908] <... openat resumed>)       = 3
[   92.814970][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   92.814989][   T43]   node offset 8/960 bset u64s 57064 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   92.852120][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   92.852141][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[pid  5828] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5908] write(3, "1000", 4 <unfinished ...>
[pid  5828] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5908] <... write resumed>)        = 4
[pid  5828] close(3 <unfinished ...>
[pid  5908] close(3 <unfinished ...>
[pid  5878] <... close resumed>)        = 0
[pid  5828] <... close resumed>)        = 0
[pid  5908] <... close resumed>)        = 0
[pid  5878] exit_group(0 <unfinished ...>
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5908] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5878] <... exit_group resumed>)   = ?
./strace-static-x86_64: Process 5909 attached
[pid  5908] <... symlink resumed>)      = 0
[pid  5878] +++ exited with 0 +++
[pid  5828] <... clone resumed>, child_tidptr=0x55558e782750) = 5909
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5878, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=48 /* 0.48 s */} ---
[pid  5826] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "",  <unfinished ...>
[pid  5909] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5826] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
executing program
[pid  5908] write(1, "executing program\n", 18 <unfinished ...>
[pid  5877] <... close resumed>)        = 0
[pid  5826] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5909] <... set_robust_list resumed>) = 0
[pid  5908] <... write resumed>)        = 18
[pid  5826] newfstatat(AT_FDCWD, "./1/binderfs",  <unfinished ...>
[pid  5909] chdir("./2" <unfinished ...>
[pid  5908] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5826] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5909] <... chdir resumed>)        = 0
[pid  5908] <... memfd_create resumed>) = 3
[pid  5826] unlink("./1/binderfs" <unfinished ...>
[pid  5909] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5908] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5826] <... unlink resumed>)       = 0
[   92.852157][   T43]   node offset 8/960 bset u64s 53451 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   92.894322][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   92.894354][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   92.894371][   T43]   node offset 8/960 bset u64s 49838 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[pid  5909] <... prctl resumed>)        = 0
[pid  5908] <... mmap resumed>)         = 0x7f7324000000
[pid  5877] exit_group(0 <unfinished ...>
[pid  5826] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5909] setpgid(0, 0 <unfinished ...>
[pid  5826] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5909] <... setpgid resumed>)      = 0
[pid  5826] newfstatat(AT_FDCWD, "./1/file1",  <unfinished ...>
[pid  5909] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5826] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5909] <... openat resumed>)       = 3
[pid  5877] <... exit_group resumed>)   = ?
[pid  5826] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5909] write(3, "1000", 4 <unfinished ...>
[pid  5877] +++ exited with 0 +++
[pid  5826] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5909] <... write resumed>)        = 4
[pid  5826] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5877, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=43 /* 0.43 s */} ---
[pid  5909] close(3 <unfinished ...>
[pid  5826] <... openat resumed>)       = 4
[pid  5825] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5826] newfstatat(4, "",  <unfinished ...>
[pid  5825] <... restart_syscall resumed>) = 0
[pid  5909] <... close resumed>)        = 0
[pid  5826] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5909] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5826] getdents64(4,  <unfinished ...>
[pid  5909] <... symlink resumed>)      = 0
[pid  5826] <... getdents64 resumed>0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5825] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[   92.930972][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   92.930998][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   92.931018][   T43]   node offset 8/960 bset u64s 46225 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   92.966850][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[pid  5909] write(1, "executing program\n", 18executing program
 <unfinished ...>
[pid  5826] getdents64(4,  <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5826] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5825] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5826] close(4 <unfinished ...>
[pid  5825] <... openat resumed>)       = 3
[pid  5826] <... close resumed>)        = 0
[pid  5825] newfstatat(3, "",  <unfinished ...>
[pid  5826] rmdir("./1/file1" <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] <... rmdir resumed>)        = 0
[pid  5825] getdents64(3,  <unfinished ...>
[pid  5826] getdents64(3,  <unfinished ...>
[pid  5825] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5909] <... write resumed>)        = 18
[pid  5826] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5909] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5826] close(3 <unfinished ...>
[pid  5825] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5909] <... memfd_create resumed>) = 3
[pid  5826] <... close resumed>)        = 0
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5909] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5826] rmdir("./1" <unfinished ...>
[pid  5825] newfstatat(AT_FDCWD, "./1/binderfs",  <unfinished ...>
[pid  5909] <... mmap resumed>)         = 0x7f7324000000
[pid  5826] <... rmdir resumed>)        = 0
[pid  5825] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] mkdir("./2", 0777 <unfinished ...>
[pid  5825] unlink("./1/binderfs" <unfinished ...>
[pid  5826] <... mkdir resumed>)        = 0
[pid  5825] <... unlink resumed>)       = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5825] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5826] <... openat resumed>)       = 3
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5826] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5825] newfstatat(AT_FDCWD, "./1/file1",  <unfinished ...>
[pid  5826] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   92.966874][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   92.966892][   T43]   node offset 8/960 bset u64s 42612 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.002194][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.002231][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[pid  5826] close(3 <unfinished ...>
[pid  5825] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5826] <... close resumed>)        = 0
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5825] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5825] newfstatat(4, "", ./strace-static-x86_64: Process 5910 attached
{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5910] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5825] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5825] getdents64(4,  <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55558e782750) = 5910
[pid  5825] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5825] close(4)                    = 0
[pid  5825] rmdir("./1/file1")          = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] close(3)                    = 0
[pid  5825] rmdir("./1")                = 0
[pid  5825] mkdir("./2", 0777 <unfinished ...>
[pid  5910] <... set_robust_list resumed>) = 0
[pid  5825] <... mkdir resumed>)        = 0
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5910] chdir("./2" <unfinished ...>
[pid  5825] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5910] <... chdir resumed>)        = 0
[   93.002251][   T43]   node offset 8/960 bset u64s 38999 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.038494][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.038522][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.038540][   T43]   node offset 8/960 bset u64s 35386 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[pid  5910] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5825] close(3)                    = 0
[pid  5910] <... prctl resumed>)        = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5911 attached
 <unfinished ...>
[pid  5910] setpgid(0, 0 <unfinished ...>
[pid  5911] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5910] <... setpgid resumed>)      = 0
[pid  5911] <... set_robust_list resumed>) = 0
[pid  5910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5911] chdir("./2" <unfinished ...>
[pid  5910] <... openat resumed>)       = 3
[pid  5911] <... chdir resumed>)        = 0
[pid  5910] write(3, "1000", 4 <unfinished ...>
[pid  5825] <... clone resumed>, child_tidptr=0x55558e782750) = 5911
[pid  5911] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5910] <... write resumed>)        = 4
[pid  5911] <... prctl resumed>)        = 0
[pid  5910] close(3 <unfinished ...>
[pid  5911] setpgid(0, 0 <unfinished ...>
[pid  5910] <... close resumed>)        = 0
[pid  5911] <... setpgid resumed>)      = 0
[pid  5910] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5910] <... symlink resumed>)      = 0
executing program
[pid  5911] <... openat resumed>)       = 3
[   93.074610][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.074633][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.074648][   T43]   node offset 8/960 bset u64s 31773 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.110297][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[pid  5910] write(1, "executing program\n", 18 <unfinished ...>
[pid  5911] write(3, "1000", 4 <unfinished ...>
[pid  5910] <... write resumed>)        = 18
[pid  5911] <... write resumed>)        = 4
[pid  5910] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5911] close(3)                    = 0
[pid  5911] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  5911] write(1, "executing program\n", 18) = 18
[pid  5910] <... memfd_create resumed>) = 3
[   93.110321][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.110340][   T43]   node offset 8/960 bset u64s 28160 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.146223][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.146247][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.146267][   T43]   node offset 8/960 bset u64s 24547 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[pid  5911] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  5911] <... memfd_create resumed>) = 3
[pid  5911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   93.180578][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.180604][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.180624][   T43]   node offset 8/960 bset u64s 20934 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.216322][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.216345][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.216365][   T43]   node offset 8/960 bset u64s 17321 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.250968][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.250992][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.251012][   T43]   node offset 8/960 bset u64s 13708 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.286597][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.286620][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.286639][   T43]   node offset 8/960 bset u64s 10095 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.321839][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.321864][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.321883][   T43]   node offset 8/960 bset u64s 6482 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.356550][   T43] bcachefs (loop3): error validating btree node at btree subvolumes level 0/0
[   93.356579][   T43]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[   93.356598][   T43]   node offset 8/960 bset u64s 2869 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[   93.393855][   T43] bcachefs (loop3): btree_node_read_work: rewriting btree node at btree=subvolumes level=0 SPOS_MAX due to error
[   93.412959][ T5834]  done
[   93.426267][ T5834] bcachefs (loop3): accounting_read... done
[   93.465448][ T5834] bcachefs (loop3): alloc_read... done
[pid  5910] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   93.495263][ T5834] bcachefs (loop3): stripes_read... done
[   93.512851][ T5834] bcachefs (loop3): snapshots_read... done
[pid  5908] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   93.544968][ T5834] bcachefs (loop3): check_allocations...
[   93.589315][ T5834] bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[pid  5909] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   93.589362][ T5834] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[pid  5911] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5910] <... write resumed>)        = 16777216
[   93.727909][ T5834] bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[   93.727937][ T5834] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[pid  5910] munmap(0x7f7324000000, 138412032) = 0
[pid  5910] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5910] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5910] close(3)                    = 0
[pid  5910] close(4)                    = 0
[pid  5910] mkdir("./file1", 0777)      = 0
[   93.799432][ T5834] bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[   93.799464][ T5834] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   93.836593][ T5910] loop2: detected capacity change from 0 to 32768
[   93.901053][ T5834] bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[   93.901080][ T5834] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[pid  5910] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5908] <... write resumed>)        = 16777216
[pid  5908] munmap(0x7f7324000000, 138412032) = 0
[pid  5909] <... write resumed>)        = 16777216
[pid  5908] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[   93.977459][ T5910] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   93.977546][ T5910] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5908] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5827] kill(-5834, SIGKILL)        = 0
[pid  5827] kill(5834, SIGKILL)         = 0
[pid  5909] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5908] <... ioctl resumed>)        = 0
[pid  5908] close(3)                    = 0
[pid  5908] close(4)                    = 0
[pid  5909] <... munmap resumed>)       = 0
[pid  5908] mkdir("./file1", 0777)      = 0
[pid  5908] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5909] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5909] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5909] close(3)                    = 0
[pid  5909] close(4)                    = 0
[   94.034701][ T5908] loop0: detected capacity change from 0 to 32768
[   94.063964][ T5834] bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[pid  5909] mkdir("./file1", 0777 <unfinished ...>
[pid  5911] <... write resumed>)        = 16777216
[pid  5909] <... mkdir resumed>)        = 0
[pid  5911] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5909] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5911] <... munmap resumed>)       = 0
[pid  5911] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5911] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5911] close(3)                    = 0
[   94.063994][ T5834] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[pid  5911] close(4)                    = 0
[pid  5911] mkdir("./file1", 0777)      = 0
[   94.091494][ T5909] loop4: detected capacity change from 0 to 32768
[   94.145368][ T5911] loop1: detected capacity change from 0 to 32768
[   94.223129][ T5908] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   94.236238][ T5834] bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[   94.249324][ T5908] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   94.257922][ T5909] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   94.270998][ T5834] bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   94.271284][ T5909] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   94.298261][ T5834] bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[   94.307958][ T5834] bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5911] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5910] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   94.319180][ T5834] bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[   94.319608][ T5910] bcachefs: bch2_fs_get_tree() error: EINVAL
[   94.349452][ T5834] bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5910] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5910] ioctl(3, LOOP_CLR_FD)       = 0
[   94.385654][ T5911] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   94.385742][ T5911] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   94.468723][ T5834] bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[pid  5910] close(3 <unfinished ...>
[pid  5908] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5908] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5908] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5908] close(3 <unfinished ...>
[pid  5909] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5909] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5909] ioctl(3, LOOP_CLR_FD)       = 0
[   94.510172][ T5834] bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   94.527174][ T5908] bcachefs: bch2_fs_get_tree() error: EINVAL
[   94.575524][ T5909] bcachefs: bch2_fs_get_tree() error: EINVAL
[   94.621848][ T5834] bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[   94.625600][ T5911] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5909] close(3 <unfinished ...>
[pid  5911] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5911] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5911] ioctl(3, LOOP_CLR_FD)       = 0
[   94.668337][ T5834] bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5911] close(3 <unfinished ...>
[pid  5827] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5827] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5827] getdents64(3, 0x55558e7837f0 /* 2 entries */, 32768) = 48
[pid  5827] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5827] close(3)                    = 0
[   94.718250][ T5834] bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[   94.762343][ T5834] bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5910] <... close resumed>)        = 0
[pid  5910] exit_group(0)               = ?
[pid  5910] +++ exited with 0 +++
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5910, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=44 /* 0.44 s */} ---
[pid  5826] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5826] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] unlink("./2/binderfs")      = 0
[   94.810924][ T5834] bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[   94.828196][ T5834] bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[   94.848100][ T5834] bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[pid  5826] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5826] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   94.872800][ T5834] bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[   94.891732][ T5834] bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing
[   94.904639][ T5834] bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5826] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5826] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5908] <... close resumed>)        = 0
[pid  5826] close(4)                    = 0
[pid  5908] exit_group(0 <unfinished ...>
[pid  5826] rmdir("./2/file1" <unfinished ...>
[pid  5908] <... exit_group resumed>)   = ?
[pid  5909] <... close resumed>)        = 0
[pid  5908] +++ exited with 0 +++
[pid  5824] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5908, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=51 /* 0.51 s */} ---
[pid  5909] exit_group(0)               = ?
[pid  5824] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5826] <... rmdir resumed>)        = 0
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5824] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5824] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5909] +++ exited with 0 +++
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5909, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=50 /* 0.50 s */} ---
[pid  5824] newfstatat(AT_FDCWD, "./2/binderfs",  <unfinished ...>
[pid  5828] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5824] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] getdents64(3,  <unfinished ...>
[pid  5824] unlink("./2/binderfs" <unfinished ...>
[pid  5826] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5826] close(3 <unfinished ...>
[pid  5824] <... unlink resumed>)       = 0
[pid  5824] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5826] <... close resumed>)        = 0
[pid  5826] rmdir("./2" <unfinished ...>
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] <... restart_syscall resumed>) = 0
[pid  5824] newfstatat(AT_FDCWD, "./2/file1",  <unfinished ...>
[pid  5828] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5824] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5826] <... rmdir resumed>)        = 0
[pid  5824] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5828] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5826] mkdir("./3", 0777 <unfinished ...>
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] <... openat resumed>)       = 3
[pid  5824] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5826] <... mkdir resumed>)        = 0
[pid  5828] newfstatat(3, "",  <unfinished ...>
[pid  5824] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5824] getdents64(4,  <unfinished ...>
[pid  5826] <... openat resumed>)       = 3
[pid  5824] <... getdents64 resumed>0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] getdents64(3,  <unfinished ...>
[pid  5826] ioctl(3, LOOP_CLR_FD <unfinished ...>
[   94.921423][ T5834] bucket 0:10 gen 0 has wrong data_type: got free, should be journal, fixing
[   94.942692][ T5834] bucket 0:10 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5824] getdents64(4,  <unfinished ...>
[pid  5828] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5824] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5828] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5826] close(3 <unfinished ...>
[pid  5824] close(4 <unfinished ...>
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./2/binderfs",  <unfinished ...>
[pid  5826] <... close resumed>)        = 0
[pid  5824] <... close resumed>)        = 0
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5824] rmdir("./2/file1"./strace-static-x86_64: Process 5940 attached
 <unfinished ...>
[pid  5828] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] <... rmdir resumed>)        = 0
[pid  5828] unlink("./2/binderfs" <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55558e782750) = 5940
[pid  5824] getdents64(3,  <unfinished ...>
[pid  5940] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5911] <... close resumed>)        = 0
[pid  5828] <... unlink resumed>)       = 0
[pid  5824] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5940] <... set_robust_list resumed>) = 0
[pid  5824] close(3 <unfinished ...>
[pid  5828] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5940] chdir("./3" <unfinished ...>
[pid  5911] exit_group(0 <unfinished ...>
[pid  5824] <... close resumed>)        = 0
[pid  5824] rmdir("./2" <unfinished ...>
[pid  5940] <... chdir resumed>)        = 0
[pid  5911] <... exit_group resumed>)   = ?
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] <... rmdir resumed>)        = 0
[   94.988637][ T5834] bucket 0:11 gen 0 has wrong data_type: got free, should be journal, fixing
[   95.020670][ T5834] bucket 0:11 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5940] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5911] +++ exited with 0 +++
[pid  5828] newfstatat(AT_FDCWD, "./2/file1",  <unfinished ...>
[pid  5824] mkdir("./3", 0777 <unfinished ...>
[pid  5940] <... prctl resumed>)        = 0
[pid  5940] setpgid(0, 0 <unfinished ...>
[pid  5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5911, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=45 /* 0.45 s */} ---
[pid  5824] <... mkdir resumed>)        = 0
[pid  5940] <... setpgid resumed>)      = 0
[pid  5940] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5828] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[   95.041801][ T5834] bucket 0:12 gen 0 has wrong data_type: got free, should be journal, fixing
[   95.055984][ T5834] bucket 0:12 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   95.068130][ T5834] bucket 0:13 gen 0 has wrong data_type: got free, should be journal, fixing
[   95.079303][ T5834] bucket 0:13 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5940] <... openat resumed>)       = 3
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] <... openat resumed>)       = 3
[pid  5825] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5828] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5940] write(3, "1000", 4 <unfinished ...>
[pid  5828] <... openat resumed>)       = 4
[pid  5825] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5824] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5940] <... write resumed>)        = 4
[pid  5828] newfstatat(4, "",  <unfinished ...>
[pid  5825] <... openat resumed>)       = 3
[pid  5824] close(3 <unfinished ...>
[pid  5940] close(3 <unfinished ...>
[pid  5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] <... close resumed>)        = 0
[pid  5940] <... close resumed>)        = 0
[pid  5825] newfstatat(3, "",  <unfinished ...>
[pid  5940] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5828] getdents64(4,  <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5940] <... symlink resumed>)      = 0
[pid  5828] <... getdents64 resumed>0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5825] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
executing program
[pid  5940] write(1, "executing program\n", 18 <unfinished ...>
[pid  5828] getdents64(4,  <unfinished ...>
[pid  5825] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5940] <... write resumed>)        = 18
[pid  5825] newfstatat(AT_FDCWD, "./2/binderfs",  <unfinished ...>
[pid  5940] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5828] close(4 <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5940] <... memfd_create resumed>) = 3
[pid  5828] <... close resumed>)        = 0
[pid  5825] unlink("./2/binderfs" <unfinished ...>
[pid  5940] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5828] rmdir("./2/file1" <unfinished ...>
[pid  5825] <... unlink resumed>)       = 0
[pid  5824] <... clone resumed>, child_tidptr=0x55558e782750) = 5941
[pid  5940] <... mmap resumed>)         = 0x7f7324000000
[pid  5828] <... rmdir resumed>)        = 0
./strace-static-x86_64: Process 5941 attached
[pid  5941] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5825] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5828] getdents64(3,  <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] close(3 <unfinished ...>
[pid  5825] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5828] <... close resumed>)        = 0
[pid  5825] <... openat resumed>)       = 4
[pid  5828] rmdir("./2" <unfinished ...>
[   95.094684][ T5834] bucket 0:14 gen 0 has wrong data_type: got free, should be journal, fixing
[   95.105564][ T5834] bucket 0:14 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   95.127709][ T5834] bucket 0:15 gen 0 has wrong data_type: got free, should be journal, fixing
[pid  5825] newfstatat(4, "",  <unfinished ...>
[pid  5828] <... rmdir resumed>)        = 0
[pid  5941] <... set_robust_list resumed>) = 0
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5825] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5825] getdents64(4,  <unfinished ...>
[pid  5941] chdir("./3" <unfinished ...>
[pid  5825] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5941] <... chdir resumed>)        = 0
[pid  5828] mkdir("./3", 0777 <unfinished ...>
[pid  5941] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5825] close(4 <unfinished ...>
[pid  5941] <... prctl resumed>)        = 0
[pid  5828] <... mkdir resumed>)        = 0
[pid  5825] <... close resumed>)        = 0
[pid  5941] setpgid(0, 0 <unfinished ...>
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5825] rmdir("./2/file1")          = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] close(3)                    = 0
[pid  5825] rmdir("./2")                = 0
[pid  5825] mkdir("./3", 0777)          = 0
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5941] <... setpgid resumed>)      = 0
[pid  5828] <... openat resumed>)       = 3
[pid  5825] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5825] close(3)                    = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5942 attached
 <unfinished ...>
[pid  5941] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5828] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5825] <... clone resumed>, child_tidptr=0x55558e782750) = 5942
[pid  5942] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5941] <... openat resumed>)       = 3
[pid  5828] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5828] close(3)                    = 0
[pid  5941] write(3, "1000", 4 <unfinished ...>
[pid  5942] <... set_robust_list resumed>) = 0
[pid  5942] chdir("./3")                = 0
[pid  5942] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5942] setpgid(0, 0)               = 0
[pid  5941] <... write resumed>)        = 4
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5942] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5942] write(3, "1000", 4)         = 4
[pid  5942] close(3)                    = 0
[pid  5942] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  5942] write(1, "executing program\n", 18) = 18
[pid  5941] close(3./strace-static-x86_64: Process 5943 attached
)                    = 0
[pid  5828] <... clone resumed>, child_tidptr=0x55558e782750) = 5943
[pid  5943] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5942] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5941] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5943] <... set_robust_list resumed>) = 0
[pid  5942] <... memfd_create resumed>) = 3
[pid  5941] <... symlink resumed>)      = 0
[pid  5943] chdir("./3" <unfinished ...>
[   95.146807][ T5834] bucket 0:15 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[   95.161145][ T5834] bucket 0:24 gen 0 has wrong data_type: got free, should be journal, fixing
[   95.172008][ T5834] bucket 0:24 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing
[pid  5942] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5941] write(1, "executing program\n", 18 <unfinished ...>
[pid  5943] <... chdir resumed>)        = 0
[pid  5942] <... mmap resumed>)         = 0x7f7324000000
executing program
[pid  5943] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5941] <... write resumed>)        = 18
[pid  5943] <... prctl resumed>)        = 0
[pid  5943] setpgid(0, 0 <unfinished ...>
[pid  5941] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5943] <... setpgid resumed>)      = 0
[pid  5943] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5941] <... memfd_create resumed>) = 3
[pid  5941] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5943] <... openat resumed>)       = 3
[pid  5941] <... mmap resumed>)         = 0x7f7324000000
[   95.219107][ T5834] bucket 0:26 gen 0 has wrong data_type: got free, should be btree, fixing
[   95.242050][ T5834] bucket 0:26 gen 0 data type btree has wrong dirty_sectors: got 0, should be 32, fixing
[   95.254964][ T5834] bucket 0:27 gen 0 data type btree has wrong dirty_sectors: got 256, should be 32, fixing
[pid  5943] write(3, "1000", 4)         = 4
[pid  5943] close(3)                    = 0
[pid  5943] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5943] write(1, "executing program\n", 18executing program
) = 18
[pid  5943] memfd_create("syzkaller", 0) = 3
[pid  5943] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   95.296431][ T5834] bucket 0:28 gen 0 data type btree has wrong dirty_sectors: got 256, should be 32, fixing
[   95.340943][ T5834] bucket 0:29 gen 0 has wrong data_type: got free, should be btree, fixing
[   95.375153][ T5834] bucket 0:29 gen 0 data type btree has wrong dirty_sectors: got 0, should be 32, fixing
[   95.405277][ T5834] bucket 0:31 gen 0 data type btree has wrong dirty_sectors: got 256, should be 32, fixing
[   95.431795][ T5834] bucket 0:32 gen 0 has wrong data_type: got sb, should be btree, fixing
[pid  5940] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   95.465166][ T5834] bucket 0:32 gen 0 data type btree has wrong dirty_sectors: got 256, should be 32, fixing
[   95.505453][ T5834] bucket 0:34 gen 0 has wrong data_type: got user, should be need_discard, fixing
[pid  5942] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   95.535052][ T5834] bucket 0:34 gen 0 data type need_discard has wrong dirty_sectors: got 16, should be 0, fixing
[pid  5941] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   95.575731][ T5834] bucket 0:35 gen 0 has wrong data_type: got free, should be btree, fixing
[   95.605035][ T5834] bucket 0:35 gen 0 data type btree has wrong dirty_sectors: got 0, should be 32, fixing
[   95.636222][ T5834] bucket 0:37 gen 0 data type btree has wrong dirty_sectors: got 256, should be 32, fixing
[   95.675211][ T5834] bucket 0:38 gen 0 has wrong data_type: got free, should be btree, fixing
[   95.708057][ T5834] bucket 0:38 gen 0 data type btree has wrong dirty_sectors: got 0, should be 32, fixing
[   95.735734][ T5834] bucket 0:41 gen 0 has wrong data_type: got free, should be btree, fixing
[   95.775087][ T5834] bucket 0:41 gen 0 data type btree has wrong dirty_sectors: got 0, should be 32, fixing
[   95.805255][ T5834] bucket 0:42 gen 0 data type btree has wrong dirty_sectors: got 256, should be 32, fixing
[pid  5943] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5940] <... write resumed>)        = 16777216
[   95.836758][ T5834]  done
[   95.855147][ T5834] bcachefs (loop3): going read-write
[pid  5940] munmap(0x7f7324000000, 138412032) = 0
[pid  5940] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5940] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5940] close(3)                    = 0
[pid  5940] close(4)                    = 0
[pid  5940] mkdir("./file1", 0777)      = 0
[   95.897157][ T5940] loop2: detected capacity change from 0 to 32768
[   95.906523][ T5834] bcachefs (loop3): journal_replay...
[pid  5940] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5941] <... write resumed>)        = 16777216
[pid  5942] <... write resumed>)        = 16777216
[pid  5942] munmap(0x7f7324000000, 138412032 <unfinished ...>
[   95.935682][   T11] bcachefs (loop3): async_btree_node_rewrite_trans: node to rewrite not found:, searching for seq 12421512847996478049, got
[   95.935682][   T11] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq d33e8037f6a08c1f written 8 min_key POS_MIN durability: 1 ptr: 0:25:32 gen 0
[pid  5941] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5942] <... munmap resumed>)       = 0
[pid  5941] <... munmap resumed>)       = 0
[pid  5941] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5941] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5943] <... write resumed>)        = 16777216
[pid  5942] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5943] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5942] <... openat resumed>)       = 4
[pid  5942] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5941] <... ioctl resumed>)        = 0
[pid  5943] <... munmap resumed>)       = 0
[pid  5942] <... ioctl resumed>)        = 0
[pid  5943] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5942] close(3 <unfinished ...>
[pid  5943] <... openat resumed>)       = 4
[pid  5942] <... close resumed>)        = 0
[pid  5941] close(3 <unfinished ...>
[pid  5943] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5942] close(4 <unfinished ...>
[pid  5941] <... close resumed>)        = 0
[pid  5942] <... close resumed>)        = 0
[pid  5941] close(4)                    = 0
[pid  5942] mkdir("./file1", 0777 <unfinished ...>
[   96.050907][ T5941] loop0: detected capacity change from 0 to 32768
[   96.060399][ T5942] loop1: detected capacity change from 0 to 32768
[   96.072772][ T5940] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   96.092263][ T5943] loop4: detected capacity change from 0 to 32768
[pid  5941] mkdir("./file1", 0777 <unfinished ...>
[pid  5943] <... ioctl resumed>)        = 0
[pid  5942] <... mkdir resumed>)        = 0
[pid  5941] <... mkdir resumed>)        = 0
[pid  5943] close(3 <unfinished ...>
[pid  5942] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5943] <... close resumed>)        = 0
[pid  5943] close(4)                    = 0
[pid  5943] mkdir("./file1", 0777)      = 0
[pid  5943] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[   96.110512][ T5940] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   96.237786][ T5834]  done
[   96.257589][ T5834] bcachefs (loop3): check_alloc_info...
[   96.260317][ T5834] hole in alloc btree missing in freespace btree
[   96.260358][ T5834]   device 0 buckets 16-24, fixing
[   96.260548][ T5942] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   96.292152][ T5943] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   96.302550][ T5943] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   96.317816][ T5942] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   96.338950][ T5834] hole in alloc btree missing in freespace btree
[   96.339001][ T5834]   device 0 buckets 16-24, fixing
[   96.347907][ T5941] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   96.347989][ T5941] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5941] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5940] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5940] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5940] ioctl(3, LOOP_CLR_FD)       = 0
[   96.441523][ T5834] incorrect key in need_discard btree (got deleted should be set)
[   96.441548][ T5834]   u64s 13 type alloc_v4 0:34:0 len 0 ver 0: 
[pid  5940] close(3 <unfinished ...>
[pid  5942] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5942] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5942] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5942] close(3 <unfinished ...>
[pid  5941] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5941] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[   96.441563][ T5834]   gen 0 oldest_gen 0 data_type need_discard
[   96.441576][ T5834]   journal_seq       5
[   96.441588][ T5834]   need_discard      1
[pid  5941] ioctl(3, LOOP_CLR_FD)       = 0
[   96.441600][ T5834]   need_inc_gen      1
[pid  5941] close(3 <unfinished ...>
[pid  5943] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   96.441612][ T5834]   dirty_sectors     0
[   96.441624][ T5834]   stripe_sectors    0
[   96.441636][ T5834]   cached_sectors    0
[pid  5943] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5943] ioctl(3, LOOP_CLR_FD)       = 0
[   96.441649][ T5834]   stripe            0
[   96.441661][ T5834]   stripe_redundancy 0
[   96.441673][ T5834]   io_time[READ]     1
[   96.441685][ T5834]   io_time[WRITE]    512
[   96.441705][ T5834]   fragmentation     0
[   96.441718][ T5834]   bp_start          8
[   96.441730][ T5834] , fixing
[pid  5943] close(3 <unfinished ...>
[pid  5940] <... close resumed>)        = 0
[pid  5940] exit_group(0)               = ?
[pid  5940] +++ exited with 0 +++
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5940, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=49 /* 0.49 s */} ---
[pid  5826] restart_syscall(<... resuming interrupted clone ...>) = 0
[   96.458937][ T5940] bcachefs: bch2_fs_get_tree() error: EINVAL
[   96.497963][ T5942] bcachefs: bch2_fs_get_tree() error: EINVAL
[   96.543499][ T5941] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5826] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] unlink("./3/binderfs")      = 0
[pid  5826] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./3/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   96.630196][ T5943] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5826] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5826] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5826] close(4)                    = 0
[pid  5826] rmdir("./3/file1" <unfinished ...>
[pid  5942] <... close resumed>)        = 0
[pid  5826] <... rmdir resumed>)        = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5826] close(3)                    = 0
[pid  5826] rmdir("./3" <unfinished ...>
[pid  5942] exit_group(0 <unfinished ...>
[pid  5826] <... rmdir resumed>)        = 0
[pid  5826] mkdir("./4", 0777)          = 0
[pid  5942] <... exit_group resumed>)   = ?
[pid  5942] +++ exited with 0 +++
[pid  5941] <... close resumed>)        = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5941] exit_group(0 <unfinished ...>
[pid  5826] <... openat resumed>)       = 3
[pid  5826] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5942, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=47 /* 0.47 s */} ---
[pid  5826] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5825] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5826] close(3 <unfinished ...>
[pid  5825] <... restart_syscall resumed>) = 0
[pid  5941] <... exit_group resumed>)   = ?
[pid  5826] <... close resumed>)        = 0
[pid  5825] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5941] +++ exited with 0 +++
[pid  5825] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 5975 attached
) = 3
[pid  5824] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5941, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=50 /* 0.50 s */} ---
[pid  5825] newfstatat(3, "",  <unfinished ...>
[pid  5824] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5975] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55558e782750) = 5975
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5975] <... set_robust_list resumed>) = 0
[pid  5825] getdents64(3,  <unfinished ...>
[pid  5975] chdir("./4" <unfinished ...>
[pid  5825] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5824] <... restart_syscall resumed>) = 0
[pid  5975] <... chdir resumed>)        = 0
[pid  5825] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./3/binderfs",  <unfinished ...>
[pid  5824] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5825] unlink("./3/binderfs" <unfinished ...>
[pid  5824] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5825] <... unlink resumed>)       = 0
[pid  5824] <... openat resumed>)       = 3
[pid  5825] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5824] newfstatat(3, "",  <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[   96.905252][ T5834] hole in alloc btree missing in freespace btree
[   96.905275][ T5834]   device 0 buckets 120-128, fixing
[   96.930801][ T5834] hole in alloc btree missing in freespace btree
[pid  5824] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5975] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5825] newfstatat(AT_FDCWD, "./3/file1",  <unfinished ...>
[pid  5975] <... prctl resumed>)        = 0
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] getdents64(3,  <unfinished ...>
[pid  5975] setpgid(0, 0 <unfinished ...>
[pid  5825] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5824] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5975] <... setpgid resumed>)      = 0
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5975] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5825] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5975] <... openat resumed>)       = 3
[pid  5825] <... openat resumed>)       = 4
[   96.930826][ T5834]   device 0 buckets 120-128, fixing
[pid  5824] newfstatat(AT_FDCWD, "./3/binderfs",  <unfinished ...>
[pid  5975] write(3, "1000", 4 <unfinished ...>
[pid  5825] newfstatat(4, "",  <unfinished ...>
[pid  5824] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5975] <... write resumed>)        = 4
[pid  5943] <... close resumed>)        = 0
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5943] exit_group(0)               = ?
[pid  5825] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5824] unlink("./3/binderfs" <unfinished ...>
[pid  5975] close(3 <unfinished ...>
[pid  5943] +++ exited with 0 +++
[pid  5825] getdents64(4,  <unfinished ...>
[pid  5824] <... unlink resumed>)       = 0
[pid  5975] <... close resumed>)        = 0
[pid  5825] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5824] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5943, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=48 /* 0.48 s */} ---
[pid  5825] close(4 <unfinished ...>
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5825] <... close resumed>)        = 0
[pid  5824] newfstatat(AT_FDCWD, "./3/file1",  <unfinished ...>
[pid  5825] rmdir("./3/file1")          = 0
[pid  5824] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5975] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5824] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5975] <... symlink resumed>)      = 0
[pid  5828] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5825] getdents64(3,  <unfinished ...>
[pid  5824] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] <... restart_syscall resumed>) = 0
[pid  5825] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5824] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5975] write(1, "executing program\n", 18executing program
 <unfinished ...>
[pid  5825] close(3 <unfinished ...>
[pid  5824] <... openat resumed>)       = 4
[pid  5975] <... write resumed>)        = 18
[pid  5825] <... close resumed>)        = 0
[pid  5975] memfd_create("syzkaller", 0 <unfinished ...>
[   96.989481][ T5834]  done
[pid  5828] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5825] rmdir("./3" <unfinished ...>
[pid  5824] newfstatat(4, "",  <unfinished ...>
[pid  5975] <... memfd_create resumed>) = 3
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5825] <... rmdir resumed>)        = 0
[pid  5824] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5975] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5828] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5825] mkdir("./4", 0777 <unfinished ...>
[pid  5824] getdents64(4,  <unfinished ...>
[pid  5828] <... openat resumed>)       = 3
[pid  5825] <... mkdir resumed>)        = 0
[pid  5824] <... getdents64 resumed>0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] newfstatat(3, "",  <unfinished ...>
[pid  5824] getdents64(4,  <unfinished ...>
[pid  5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5828] getdents64(3,  <unfinished ...>
[pid  5824] close(4 <unfinished ...>
[pid  5975] <... mmap resumed>)         = 0x7f7324000000
[pid  5828] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5824] <... close resumed>)        = 0
[pid  5828] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5824] rmdir("./3/file1" <unfinished ...>
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] unlink("./3/binderfs")      = 0
[pid  5825] <... openat resumed>)       = 3
[pid  5824] <... rmdir resumed>)        = 0
[pid  5825] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5825] close(3)                    = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5828] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] getdents64(3,  <unfinished ...>
[pid  5828] newfstatat(AT_FDCWD, "./3/file1",  <unfinished ...>
[pid  5824] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] close(3)                    = 0
[pid  5828] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5825] <... clone resumed>, child_tidptr=0x55558e782750) = 5976
[pid  5824] rmdir("./3" <unfinished ...>
[pid  5828] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5824] <... rmdir resumed>)        = 0
[   97.000700][ T5834] bcachefs (loop3): check_lrus...
[   97.021814][ T5834] incorrect lru entry: lru fragmentation time 134217728
[   97.021840][ T5834]   u64s 5 type set 18446462598867058688:34:0 len 0 ver 0
[   97.021854][ T5834]   for u64s 13 type alloc_v4 0:34:0 len 0 ver 0: 
[   97.021868][ T5834]   gen 1 oldest_gen 0 data_type free
[   97.021880][ T5834]   journal_seq       5
[   97.021892][ T5834]   need_discard      0
./strace-static-x86_64: Process 5976 attached
[pid  5828] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5824] mkdir("./4", 0777 <unfinished ...>
[pid  5828] <... openat resumed>)       = 4
[pid  5824] <... mkdir resumed>)        = 0
[pid  5828] newfstatat(4, "",  <unfinished ...>
[pid  5976] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] <... openat resumed>)       = 3
[pid  5828] getdents64(4,  <unfinished ...>
[pid  5824] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5828] <... getdents64 resumed>0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5824] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5828] getdents64(4,  <unfinished ...>
[pid  5824] close(3)                    = 0
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5977 attached
 <unfinished ...>
[pid  5976] <... set_robust_list resumed>) = 0
[pid  5977] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5976] chdir("./4" <unfinished ...>
[pid  5828] <... getdents64 resumed>0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5824] <... clone resumed>, child_tidptr=0x55558e782750) = 5977
[pid  5828] close(4)                    = 0
[pid  5828] rmdir("./3/file1" <unfinished ...>
[pid  5977] <... set_robust_list resumed>) = 0
[pid  5976] <... chdir resumed>)        = 0
[pid  5828] <... rmdir resumed>)        = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] close(3)                    = 0
[pid  5828] rmdir("./3" <unfinished ...>
[pid  5977] chdir("./4" <unfinished ...>
[pid  5976] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5828] <... rmdir resumed>)        = 0
[pid  5828] mkdir("./4", 0777)          = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5977] <... chdir resumed>)        = 0
[pid  5828] <... openat resumed>)       = 3
[   97.021904][ T5834]   need_inc_gen      0
[   97.021916][ T5834]   dirty_sectors     0
[   97.021927][ T5834]   stripe_sectors    0
[   97.021939][ T5834]   cached_sectors    0
[   97.021951][ T5834]   stripe            0
[   97.021962][ T5834]   stripe_redundancy 0
[   97.021974][ T5834]   io_time[READ]     1
[   97.021986][ T5834]   io_time[WRITE]    512
[   97.021998][ T5834]   fragmentation     0
[pid  5977] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5976] <... prctl resumed>)        = 0
[pid  5828] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5828] close(3)                    = 0
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5977] <... prctl resumed>)        = 0
[pid  5976] setpgid(0, 0./strace-static-x86_64: Process 5978 attached
 <unfinished ...>
[pid  5977] setpgid(0, 0 <unfinished ...>
[pid  5976] <... setpgid resumed>)      = 0
[pid  5828] <... clone resumed>, child_tidptr=0x55558e782750) = 5978
[pid  5977] <... setpgid resumed>)      = 0
[pid  5976] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5977] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5978] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5977] <... openat resumed>)       = 3
[pid  5976] <... openat resumed>)       = 3
[pid  5978] <... set_robust_list resumed>) = 0
[pid  5977] write(3, "1000", 4 <unfinished ...>
[pid  5976] write(3, "1000", 4 <unfinished ...>
[pid  5977] <... write resumed>)        = 4
[pid  5978] chdir("./4" <unfinished ...>
[pid  5976] <... write resumed>)        = 4
executing program
executing program
[pid  5978] <... chdir resumed>)        = 0
[pid  5977] close(3 <unfinished ...>
[pid  5976] close(3)                    = 0
[pid  5978] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5977] <... close resumed>)        = 0
[pid  5976] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5978] <... prctl resumed>)        = 0
[pid  5978] setpgid(0, 0 <unfinished ...>
[pid  5976] <... symlink resumed>)      = 0
[pid  5978] <... setpgid resumed>)      = 0
[pid  5977] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5978] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5977] <... symlink resumed>)      = 0
[pid  5978] <... openat resumed>)       = 3
[pid  5977] write(1, "executing program\n", 18 <unfinished ...>
[pid  5976] write(1, "executing program\n", 18 <unfinished ...>
[pid  5978] write(3, "1000", 4)         = 4
[pid  5977] <... write resumed>)        = 18
[pid  5976] <... write resumed>)        = 18
[   97.022010][ T5834]   bp_start          8
[   97.022022][ T5834] , fixing
[   97.130878][ T5834]  done
[   97.139683][ T5834] bcachefs (loop3): check_btree_backpointers... done
[   97.151790][ T5834] bcachefs (loop3): check_backpointers_to_extents...
[pid  5978] close(3 <unfinished ...>
[pid  5977] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5976] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5977] <... memfd_create resumed>) = 3
[pid  5976] <... memfd_create resumed>) = 3
[pid  5978] <... close resumed>)        = 0
executing program
[pid  5978] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5977] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5976] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  5977] <... mmap resumed>)         = 0x7f7324000000
[pid  5978] <... symlink resumed>)      = 0
[pid  5978] write(1, "executing program\n", 18) = 18
[   97.153158][ T5834] backpointer for missing btree node
[   97.153181][ T5834]   u64s 9 type backpointer 0:8126464:0 len 0 ver 0: bucket=0:31:0 btree=xattrs l=1 offset=0:0 len=256 pos=SPOS_MAX, fixing
[pid  5978] memfd_create("syzkaller", 0) = 3
[pid  5978] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   97.285824][ T5834] backpointer for missing extent
[   97.285847][ T5834]   u64s 9 type backpointer 0:8912896:0 len 0 ver 0: bucket=0:34:0 btree=extents l=0 offset=0:0 len=8 pos=4099:8:U32_MAX, fixing
[   97.355427][ T5834] backpointer for missing extent
[   97.355450][ T5834]   u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:0 btree=extents l=0 offset=8:0 len=8 pos=536870913:24:U32_MAX, fixing
[pid  5975] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   97.415668][ T5834] backpointer for missing btree node
[   97.415692][ T5834]   u64s 9 type backpointer 0:11010048:0 len 0 ver 0: bucket=0:42:0 btree=deleted_inodes l=1 offset=0:0 len=256 pos=SPOS_MAX, fixing
[   97.495290][ T5834]  done
[   97.499541][ T5834] bcachefs (loop3): check_extents_to_backpointers...
[   97.500453][ T5834] missing backpointer for btree=inodes l=1 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0
[pid  5976] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5977] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   97.500479][ T5834]   got:   u64s 5 type deleted 0:9961472:0 len 0 ver 0
[   97.500493][ T5834]   want:  u64s 9 type backpointer 0:9961472:0 len 0 ver 0: bucket=0:38:0 btree=inodes l=1 offset=0:0 len=32 pos=SPOS_MAX, fixing
[   97.649417][ T5834] missing backpointer for btree=xattrs l=1 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0
[   97.649447][ T5834]   got:   u64s 5 type deleted 0:8126464:0 len 0 ver 0
[   97.649463][ T5834]   want:  u64s 9 type backpointer 0:8126464:0 len 0 ver 0: bucket=0:31:0 btree=xattrs l=1 offset=0:0 len=32 pos=SPOS_MAX, fixing
[pid  5978] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5976] <... write resumed>)        = 16777216
[   97.736430][ T5834] missing backpointer for btree=snapshots l=1 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0
[   97.736461][ T5834]   got:   u64s 5 type deleted 0:8388608:0 len 0 ver 0
[   97.736477][ T5834]   want:  u64s 9 type backpointer 0:8388608:0 len 0 ver 0: bucket=0:32:0 btree=snapshots l=1 offset=0:0 len=32 pos=SPOS_MAX, fixing
[pid  5976] munmap(0x7f7324000000, 138412032) = 0
[pid  5975] <... write resumed>)        = 16777216
[pid  5975] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5976] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5976] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5975] <... munmap resumed>)       = 0
[   97.795596][ T5834] missing backpointer for btree=deleted_inodes l=1 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1db8f60c84bb244c written 8 min_key POS_MIN durability: 1 ptr: 0:42:0 gen 0
[   97.795627][ T5834]   got:   u64s 5 type deleted 0:11010048:0 len 0 ver 0
[   97.795643][ T5834]   want:  u64s 9 type backpointer 0:11010048:0 len 0 ver 0: bucket=0:42:0 btree=deleted_inodes l=1 offset=0:0 len=32 pos=SPOS_MAX, fixing
[pid  5976] <... ioctl resumed>)        = 0
[pid  5975] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5976] close(3)                    = 0
[pid  5976] close(4)                    = 0
[pid  5975] <... openat resumed>)       = 4
[pid  5976] mkdir("./file1", 0777 <unfinished ...>
[pid  5975] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5976] <... mkdir resumed>)        = 0
[pid  5975] <... ioctl resumed>)        = 0
[pid  5976] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5975] close(3)                    = 0
[pid  5975] close(4)                    = 0
[pid  5975] mkdir("./file1", 0777)      = 0
[   97.841443][ T5976] loop1: detected capacity change from 0 to 32768
[   97.849744][ T5834]  done
[   97.854662][ T5834] bcachefs (loop3): check_alloc_to_lru_refs...
[   97.857156][ T5834] missing fragmentation lru entry
[   97.857180][ T5834]   u64s 13 type alloc_v4 0:31:0 len 0 ver 0: 
[   97.857195][ T5834]   gen 0 oldest_gen 0 data_type btree
[   97.857209][ T5834]   journal_seq       4
[   97.857222][ T5834]   need_discard      1
[   97.857234][ T5834]   need_inc_gen      1
[pid  5975] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5977] <... write resumed>)        = 16777216
[   97.857247][ T5834]   dirty_sectors     32
[   97.857259][ T5834]   stripe_sectors    0
[   97.857273][ T5834]   cached_sectors    0
[pid  5977] munmap(0x7f7324000000, 138412032) = 0
[pid  5977] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5977] ioctl(4, LOOP_SET_FD, 3)    = 0
[   97.857286][ T5834]   stripe            0
[   97.857299][ T5834]   stripe_redundancy 0
[   97.866231][ T5975] loop2: detected capacity change from 0 to 32768
[pid  5977] close(3)                    = 0
[pid  5977] close(4)                    = 0
[pid  5976] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   97.874993][ T5834]   io_time[READ]     1
[pid  5977] mkdir("./file1", 0777 <unfinished ...>
[pid  5976] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5976] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5977] <... mkdir resumed>)        = 0
[   97.875015][ T5834]   io_time[WRITE]    512
[pid  5976] close(3 <unfinished ...>
[pid  5977] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5978] <... write resumed>)        = 16777216
[pid  5978] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5975] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   97.875028][ T5834]   fragmentation     268435456
[   97.875041][ T5834]   bp_start          8
[pid  5978] <... munmap resumed>)       = 0
[pid  5975] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5975] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5978] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5975] <... ioctl resumed>)        = 0
[pid  5978] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5975] close(3 <unfinished ...>
[pid  5978] <... ioctl resumed>)        = 0
[   97.875053][ T5834] , fixing
[   97.954691][ T5976] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[pid  5978] close(3)                    = 0
[pid  5978] close(4)                    = 0
[pid  5978] mkdir("./file1", 0777)      = 0
[pid  5978] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5976] <... close resumed>)        = 0
[pid  5976] exit_group(0)               = ?
[pid  5976] +++ exited with 0 +++
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5976, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=43 /* 0.43 s */} ---
[pid  5825] restart_syscall(<... resuming interrupted clone ...>) = 0
[   97.954796][ T5976] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   98.002560][ T5975] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[pid  5825] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5825] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5977] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5825] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] unlink("./4/binderfs")      = 0
[pid  5825] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5977] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5977] <... openat resumed>)       = 3
[pid  5825] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5977] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5825] <... openat resumed>)       = 4
[pid  5825] newfstatat(4, "",  <unfinished ...>
[pid  5977] <... ioctl resumed>)        = 0
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5977] close(3 <unfinished ...>
[pid  5825] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[   98.002812][ T5975] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   98.145265][ T5977] loop0: detected capacity change from 0 to 32768
[pid  5825] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5825] close(4)                    = 0
[pid  5825] rmdir("./4/file1")          = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] close(3)                    = 0
[pid  5825] rmdir("./4")                = 0
[pid  5825] mkdir("./5", 0777)          = 0
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[   98.167047][ T5976] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5825] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5825] close(3)                    = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6007 attached
 <unfinished ...>
[pid  6007] set_robust_list(0x55558e782760, 24) = 0
[pid  6007] chdir("./5")                = 0
[pid  6007] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5825] <... clone resumed>, child_tidptr=0x55558e782750) = 6007
[pid  6007] <... prctl resumed>)        = 0
[pid  6007] setpgid(0, 0)               = 0
[pid  6007] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6007] write(3, "1000", 4)         = 4
[pid  6007] close(3)                    = 0
[pid  6007] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  6007] write(1, "executing program\n", 18) = 18
[pid  6007] memfd_create("syzkaller", 0) = 3
[pid  6007] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   98.237177][ T5975] bcachefs: bch2_fs_get_tree() error: EINVAL
[   98.285746][ T5978] loop4: detected capacity change from 0 to 32768
[pid  5975] <... close resumed>)        = 0
[pid  5975] exit_group(0)               = ?
[pid  5975] +++ exited with 0 +++
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5975, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=41 /* 0.41 s */} ---
[pid  5826] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   98.289724][ T5977] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[pid  5826] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] unlink("./4/binderfs")      = 0
[   98.289810][ T5977] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5826] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5826] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5978] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5826] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5826] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5826] close(4)                    = 0
[pid  5826] rmdir("./4/file1" <unfinished ...>
[pid  5978] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5826] <... rmdir resumed>)        = 0
[pid  5826] getdents64(3,  <unfinished ...>
[pid  5978] <... openat resumed>)       = 3
[pid  5826] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5826] close(3)                    = 0
[   98.448967][ T5977] bcachefs: bch2_fs_get_tree() error: EINVAL
[   98.485366][ T5978] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[   98.485458][ T5978] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5826] rmdir("./4" <unfinished ...>
[pid  5978] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5826] <... rmdir resumed>)        = 0
[pid  5978] <... ioctl resumed>)        = 0
[pid  5826] mkdir("./5", 0777 <unfinished ...>
[pid  5978] close(3 <unfinished ...>
[pid  5826] <... mkdir resumed>)        = 0
[   98.766467][ T5978] bcachefs: bch2_fs_get_tree() error: EINVAL
[   98.837747][ T5834] missing fragmentation lru entry
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5826] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5826] close(3)                    = 0
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6008 attached
, child_tidptr=0x55558e782750) = 6008
[pid  6008] set_robust_list(0x55558e782760, 24) = 0
[pid  6008] chdir("./5")                = 0
[pid  6008] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6008] setpgid(0, 0)               = 0
[pid  6008] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6008] write(3, "1000", 4)         = 4
[pid  6008] close(3)                    = 0
[pid  6008] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  6008] write(1, "executing program\n", 18) = 18
[   98.837776][ T5834]   u64s 13 type alloc_v4 0:32:0 len 0 ver 0: 
[   98.837790][ T5834]   gen 0 oldest_gen 0 data_type btree
[   98.837803][ T5834]   journal_seq       1
[pid  6008] memfd_create("syzkaller", 0) = 3
[pid  6008] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5977] <... close resumed>)        = 0
[pid  6008] <... mmap resumed>)         = 0x7f7324000000
[pid  5977] exit_group(0 <unfinished ...>
[pid  6007] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  5977] <... exit_group resumed>)   = ?
[   98.837815][ T5834]   need_discard      1
[pid  5977] +++ exited with 0 +++
[pid  5824] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5977, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=42 /* 0.42 s */} ---
[pid  5824] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5824] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5824] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] unlink("./4/binderfs")      = 0
[pid  5824] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5824] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5824] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5824] close(4)                    = 0
[pid  5824] rmdir("./4/file1")          = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5824] close(3)                    = 0
[pid  5824] rmdir("./4")                = 0
[pid  5824] mkdir("./5", 0777)          = 0
[   98.837836][ T5834]   need_inc_gen      1
[   98.837849][ T5834]   dirty_sectors     32
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5824] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5824] close(3)                    = 0
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e782750) = 6009
./strace-static-x86_64: Process 6009 attached
[pid  6009] set_robust_list(0x55558e782760, 24) = 0
[pid  6009] chdir("./5")                = 0
[pid  6009] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6009] setpgid(0, 0)               = 0
[pid  6009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6009] write(3, "1000", 4)         = 4
[pid  6009] close(3)                    = 0
[pid  6009] symlink("/dev/binderfs", "./binderfs") = 0
[   98.837861][ T5834]   stripe_sectors    0
[   98.837873][ T5834]   cached_sectors    0
[   98.837885][ T5834]   stripe            0
executing program
[pid  6009] write(1, "executing program\n", 18) = 18
[pid  6009] memfd_create("syzkaller", 0) = 3
[pid  6009] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   98.837897][ T5834]   stripe_redundancy 0
[pid  5978] <... close resumed>)        = 0
[pid  5978] exit_group(0)               = ?
[pid  5978] +++ exited with 0 +++
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5978, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=48 /* 0.48 s */} ---
[pid  5828] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5828] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5828] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5828] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] unlink("./4/binderfs")      = 0
[pid  5828] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5828] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5828] close(4)                    = 0
[pid  5828] rmdir("./4/file1")          = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] close(3)                    = 0
[pid  5828] rmdir("./4")                = 0
[   98.837909][ T5834]   io_time[READ]     1
[   98.837921][ T5834]   io_time[WRITE]    1
[   98.837934][ T5834]   fragmentation     268435456
[   98.837945][ T5834]   bp_start          8
[pid  5828] mkdir("./5", 0777)          = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5828] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5828] close(3)                    = 0
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558e782750) = 6010
./strace-static-x86_64: Process 6010 attached
[pid  6010] set_robust_list(0x55558e782760, 24) = 0
[pid  6010] chdir("./5")                = 0
[pid  6010] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6010] setpgid(0, 0)               = 0
[pid  6010] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6010] write(3, "1000", 4)         = 4
[pid  6010] close(3)                    = 0
[pid  6010] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6010] write(1, "executing program\n", 18executing program
) = 18
[pid  6010] memfd_create("syzkaller", 0) = 3
[pid  6010] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[   98.837957][ T5834] , fixing
[   99.177003][ T5834] missing fragmentation lru entry
[   99.177124][ T5834]   u64s 13 type alloc_v4 0:38:0 len 0 ver 0: 
[   99.177140][ T5834]   gen 0 oldest_gen 0 data_type btree
[   99.177152][ T5834]   journal_seq       0
[   99.177164][ T5834]   need_discard      0
[   99.177175][ T5834]   need_inc_gen      0
[   99.177186][ T5834]   dirty_sectors     32
[   99.177198][ T5834]   stripe_sectors    0
[   99.177209][ T5834]   cached_sectors    0
[   99.177220][ T5834]   stripe            0
[   99.177232][ T5834]   stripe_redundancy 0
[pid  6007] <... write resumed>)        = 16777216
[pid  6007] munmap(0x7f7324000000, 138412032) = 0
[pid  6007] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6008] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6007] <... openat resumed>)       = 4
[   99.177244][ T5834]   io_time[READ]     0
[   99.177256][ T5834]   io_time[WRITE]    0
[   99.177268][ T5834]   fragmentation     268435456
[   99.177281][ T5834]   bp_start          8
[   99.177293][ T5834] , fixing
[   99.369998][ T6007] loop1: detected capacity change from 0 to 32768
[pid  6007] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6007] close(3 <unfinished ...>
[pid  6009] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6007] <... close resumed>)        = 0
[   99.385861][ T5834] missing fragmentation lru entry
[   99.385883][ T5834]   u64s 13 type alloc_v4 0:42:0 len 0 ver 0: 
[   99.385897][ T5834]   gen 0 oldest_gen 0 data_type btree
[pid  6007] close(4)                    = 0
[pid  6007] mkdir("./file1", 0777)      = 0
[   99.385910][ T5834]   journal_seq       7
[   99.385922][ T5834]   need_discard      1
[   99.385951][ T5834]   need_inc_gen      1
[   99.385963][ T5834]   dirty_sectors     32
[   99.385975][ T5834]   stripe_sectors    0
[   99.385988][ T5834]   cached_sectors    0
[   99.385999][ T5834]   stripe            0
[   99.386011][ T5834]   stripe_redundancy 0
[   99.386023][ T5834]   io_time[READ]     1
[   99.386034][ T5834]   io_time[WRITE]    1280
[   99.386046][ T5834]   fragmentation     268435456
[pid  6007] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6009] <... write resumed>)        = 16777216
[pid  6010] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[   99.386058][ T5834]   bp_start          8
[   99.386070][ T5834] , fixing
[   99.564442][ T6007] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[pid  6009] munmap(0x7f7324000000, 138412032) = 0
[pid  6008] <... write resumed>)        = 16777216
[pid  6009] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6009] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   99.564539][ T6007] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   99.719657][ T6009] loop0: detected capacity change from 0 to 32768
[   99.720638][ T5834]  done
[pid  6008] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  6009] <... ioctl resumed>)        = 0
[pid  6009] close(3)                    = 0
[pid  6009] close(4)                    = 0
[pid  6009] mkdir("./file1", 0777)      = 0
[pid  6009] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6008] <... munmap resumed>)       = 0
[pid  6008] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6008] ioctl(4, LOOP_SET_FD, 3)    = 0
[   99.751124][ T5834] bcachefs (loop3): bucket_gens_init... done
[   99.785827][ T6008] loop2: detected capacity change from 0 to 32768
[pid  6008] close(3)                    = 0
[pid  6008] close(4)                    = 0
[pid  6008] mkdir("./file1", 0777)      = 0
[   99.800448][ T5834] bcachefs (loop3): check_snapshot_trees... done
[   99.809841][ T6007] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  6008] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6007] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[   99.848059][ T5834] bcachefs (loop3): check_snapshots...
[   99.848418][ T5834] bcachefs (loop3): snapshot points to nonexistent subvolume:
[   99.848418][ T5834]   u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: is_subvol 1 deleted 0 parent          0 children          0          0 subvol 1 tree 0
[   99.887066][ T6009] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[pid  6007] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  6007] ioctl(3, LOOP_CLR_FD)       = 0
[   99.899147][ T6009] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[   99.966824][ T5834] bcachefs (loop3): bch2_check_snapshots(): error ENOENT_bkey_type_mismatch
[pid  6007] close(3 <unfinished ...>
[pid  6010] <... write resumed>)        = 16777216
[pid  6010] munmap(0x7f7324000000, 138412032) = 0
[pid  6010] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[  100.009297][ T6008] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  100.026236][ T5834] bcachefs (loop3): bch2_fs_recovery(): error ENOENT_bkey_type_mismatch
[  100.062988][ T6010] loop4: detected capacity change from 0 to 32768
[  100.063351][ T6008] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  100.070593][ T5834] bcachefs (loop3): bch2_fs_start(): error starting filesystem ENOENT_bkey_type_mismatch
[  100.102875][ T5834] bcachefs (loop3): shutting down
[  100.102948][ T1210] bcachefs (loop3): going read-only
[pid  6010] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6007] <... close resumed>)        = 0
[pid  6010] close(3)                    = 0
[pid  6010] close(4)                    = 0
[pid  6007] exit_group(0)               = ?
[pid  6010] mkdir("./file1", 0777)      = 0
[pid  6007] +++ exited with 0 +++
[  100.125294][ T1210] bcachefs (loop3): finished waiting for writes to stop
[  100.160516][ T1210] bcachefs (loop3): flushing journal and stopping allocators, journal seq 48
[pid  6010] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6007, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=47 /* 0.47 s */} ---
[pid  5825] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6009] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  5825] <... openat resumed>)       = 3
[pid  6009] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[  100.171873][ T6009] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  5825] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6009] <... openat resumed>)       = 3
[pid  5825] getdents64(3,  <unfinished ...>
[pid  6009] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5825] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  6009] <... ioctl resumed>)        = 0
[pid  5825] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  100.215503][ T1210] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 48
[  100.247309][ T1210] bcachefs (loop3): unshutdown complete, journal seq 48
[pid  6009] close(3 <unfinished ...>
[pid  5825] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] unlink("./5/binderfs")      = 0
[pid  5825] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5825] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5825] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5825] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5825] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5825] close(4)                    = 0
[pid  5825] rmdir("./5/file1")          = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] close(3)                    = 0
[pid  5825] rmdir("./5")                = 0
[pid  5825] mkdir("./6", 0777)          = 0
[  100.257893][ T6010] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  100.281695][ T1210] bcachefs (loop3): done going read-only, filesystem not clean
[  100.290444][ T6010] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5825] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5825] close(3)                    = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6039 attached
 <unfinished ...>
[pid  6039] set_robust_list(0x55558e782760, 24) = 0
[pid  5825] <... clone resumed>, child_tidptr=0x55558e782750) = 6039
[pid  6039] chdir("./6")                = 0
[pid  6039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6039] setpgid(0, 0)               = 0
[  100.313591][ T6008] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  6039] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6039] write(3, "1000", 4)         = 4
[pid  6039] close(3 <unfinished ...>
[pid  6008] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  6039] <... close resumed>)        = 0
[pid  6039] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6008] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6039] <... symlink resumed>)      = 0
[pid  6008] <... openat resumed>)       = 3
[pid  6008] ioctl(3, LOOP_CLR_FD)       = 0
[pid  6008] close(3executing program
 <unfinished ...>
[pid  6039] write(1, "executing program\n", 18) = 18
[pid  6039] memfd_create("syzkaller", 0) = 3
[pid  6039] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  6009] <... close resumed>)        = 0
[  100.428900][ T5834] bcachefs (loop3): shutdown complete
[pid  6009] exit_group(0)               = ?
[pid  6009] +++ exited with 0 +++
[pid  5824] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6009, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=47 /* 0.47 s */} ---
[pid  5824] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5824] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5824] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5824] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] unlink("./5/binderfs")      = 0
[pid  5824] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5824] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5824] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5824] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5824] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5824] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5824] close(4)                    = 0
[pid  5824] rmdir("./5/file1")          = 0
[pid  5824] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5824] close(3)                    = 0
[pid  5824] rmdir("./5")                = 0
[pid  5824] mkdir("./6", 0777)          = 0
[pid  5824] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5824] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5824] close(3)                    = 0
[pid  5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6040 attached
 <unfinished ...>
[pid  6040] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5824] <... clone resumed>, child_tidptr=0x55558e782750) = 6040
[pid  6040] <... set_robust_list resumed>) = 0
[pid  6040] chdir("./6")                = 0
[pid  6040] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6040] setpgid(0, 0)               = 0
[pid  6040] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6040] write(3, "1000", 4)         = 4
[pid  6040] close(3)                    = 0
[pid  6040] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6040] write(1, "executing program\n", 18executing program
) = 18
[pid  6040] memfd_create("syzkaller", 0) = 3
[pid  6040] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  6008] <... close resumed>)        = 0
[pid  6039] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6008] exit_group(0)               = ?
[pid  6008] +++ exited with 0 +++
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6008, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=47 /* 0.47 s */} ---
[pid  5826] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5826] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] unlink("./5/binderfs")      = 0
[pid  5826] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5826] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5826] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5826] close(4)                    = 0
[pid  5826] rmdir("./5/file1")          = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5826] close(3)                    = 0
[pid  5826] rmdir("./5")                = 0
[pid  5826] mkdir("./6", 0777)          = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5826] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5826] close(3)                    = 0
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6041 attached
, child_tidptr=0x55558e782750) = 6041
[pid  6041] set_robust_list(0x55558e782760, 24) = 0
[pid  6041] chdir("./6")                = 0
[pid  6041] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6041] setpgid(0, 0)               = 0
[pid  6041] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6041] write(3, "1000", 4)         = 4
[pid  6041] close(3)                    = 0
[pid  6041] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  6041] write(1, "executing program\n", 18) = 18
[pid  6041] memfd_create("syzkaller", 0) = 3
[pid  6041] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  6040] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6039] <... write resumed>)        = 16777216
[pid  6039] munmap(0x7f7324000000, 138412032) = 0
[pid  6039] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  6039] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6039] close(3)                    = 0
[pid  6039] close(4)                    = 0
[pid  6039] mkdir("./file1", 0777)      = 0
[pid  6039] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6010] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  6010] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  6010] ioctl(3, LOOP_CLR_FD)       = 0
[  100.927063][ T6039] loop1: detected capacity change from 0 to 32768
[  100.947916][ T6010] bcachefs: bch2_fs_get_tree() error: EINVAL
[pid  6010] close(3 <unfinished ...>
[pid  6041] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6040] <... write resumed>)        = 16777216
[pid  6040] munmap(0x7f7324000000, 138412032) = 0
[pid  6040] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6040] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6040] close(3)                    = 0
[pid  6040] close(4)                    = 0
[pid  6040] mkdir("./file1", 0777)      = 0
[  101.146598][ T6040] loop0: detected capacity change from 0 to 32768
[pid  6040] mount("/dev/loop0", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6010] <... close resumed>)        = 0
[pid  6010] exit_group(0)               = ?
[pid  6010] +++ exited with 0 +++
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6010, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=51 /* 0.51 s */} ---
[pid  5828] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5828] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5828] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5828] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] unlink("./5/binderfs")      = 0
[pid  5828] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5828] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5828] close(4)                    = 0
[pid  5828] rmdir("./5/file1")          = 0
[pid  5828] getdents64(3,  <unfinished ...>
[pid  6041] <... write resumed>)        = 16777216
[pid  5828] <... getdents64 resumed>0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] close(3)                    = 0
[pid  5828] rmdir("./5")                = 0
[pid  5828] mkdir("./6", 0777)          = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6041] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5828] <... openat resumed>)       = 3
[pid  5828] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5828] close(3)                    = 0
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6052 attached
 <unfinished ...>
[pid  6041] <... munmap resumed>)       = 0
[pid  5828] <... clone resumed>, child_tidptr=0x55558e782750) = 6052
[pid  6052] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  6041] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6052] <... set_robust_list resumed>) = 0
[pid  6052] chdir("./6" <unfinished ...>
[pid  6041] <... openat resumed>)       = 4
[pid  6041] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6052] <... chdir resumed>)        = 0
[pid  6052] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6052] setpgid(0, 0)               = 0
[pid  6052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6052] write(3, "1000", 4)         = 4
[pid  6052] close(3)                    = 0
[pid  6052] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6052] write(1, "executing program\n", 18 <unfinished ...>
[pid  6041] <... ioctl resumed>)        = 0
executing program
[pid  6052] <... write resumed>)        = 18
[pid  6052] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6041] close(3)                    = 0
[pid  6041] close(4)                    = 0
[pid  6041] mkdir("./file1", 0777)      = 0
[pid  6041] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6052] <... memfd_create resumed>) = 3
[pid  6052] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[  101.337955][ T6041] loop2: detected capacity change from 0 to 32768
[pid  6052] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  6052] munmap(0x7f7324000000, 138412032) = 0
[pid  6052] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6052] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6052] close(3)                    = 0
[pid  6052] close(4)                    = 0
[pid  6052] mkdir("./file1", 0777)      = 0
[  101.631577][ T6052] loop4: detected capacity change from 0 to 32768
[  101.694700][ T6039] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  101.705178][ T6040] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,background_target=invalid device 79,nojournal_transaction_names
[  101.732140][ T6039] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  101.746851][ T6041] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  101.751698][ T6040] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  101.758242][ T6041] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  101.789111][ T5834] bcachefs: bch2_fs_get_tree() error: ENOENT_bkey_type_mismatch
[pid  6052] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  5834] <... mount resumed>)        = ?
[  101.805423][ T6040] bcachefs (loop0): Version upgrade required:
[  101.805423][ T6040] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  101.805423][ T6040] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[pid  5834] +++ killed by SIGKILL +++
[pid  5827] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5834, si_uid=0, si_status=SIGKILL, si_utime=2 /* 0.02 s */, si_stime=261 /* 2.61 s */} ---
[pid  5827] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  101.805423][ T6040]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  101.828365][ T5834] syz-executor238 (5834) used greatest stack depth: 10992 bytes left
[pid  5827] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5827] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5827] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5827] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5827] unlink("./0/binderfs")      = 0
[pid  5827] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5827] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5827] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5827] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5827] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5827] close(4)                    = 0
[  101.902545][ T6040] bcachefs (loop0): error validating btree node on loop0 at btree extents level 0/0
[  101.902566][ T6040]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0  
[pid  5827] rmdir("./0/file1")          = 0
[pid  5827] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5827] close(3)                    = 0
[pid  5827] rmdir("./0")                = 0
[pid  5827] mkdir("./1", 0777)          = 0
[pid  5827] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5827] ioctl(3, LOOP_CLR_FD)       = 0
[  101.902579][ T6040]   node offset 8/16: btree node data missing: expected 16 sectors, found 8, fixing
[  102.010405][ T6040] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=extents level=0 SPOS_MAX due to error
[  102.016145][ T6041] bcachefs: bch2_fs_get_tree() error: EINVAL
[  102.031712][ T6052] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  102.042041][ T6040] bcachefs (loop0): error validating btree node on loop0 at btree dirents level 0/0
[pid  5827] close(3 <unfinished ...>
[pid  6041] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  6041] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  6039] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  6041] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6039] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6041] <... ioctl resumed>)        = 0
[pid  6039] <... openat resumed>)       = 3
[pid  6041] close(3 <unfinished ...>
[  102.042066][ T6040]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0  
[  102.042085][ T6040]   node offset 16/24: btree node data missing: expected 24 sectors, found 16, fixing
[pid  6039] ioctl(3, LOOP_CLR_FD)       = 0
[pid  6039] close(3 <unfinished ...>
[pid  5827] <... close resumed>)        = 0
[pid  5827] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6072 attached
, child_tidptr=0x55558e782750) = 6072
[pid  6072] set_robust_list(0x55558e782760, 24) = 0
[  102.086726][ T6052] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  102.106360][ T6039] bcachefs: bch2_fs_get_tree() error: EINVAL
[  102.163855][ T6040] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=dirents level=0 SPOS_MAX due to error
[pid  6072] chdir("./1")                = 0
[pid  6072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6072] setpgid(0, 0)               = 0
[pid  6072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6072] write(3, "1000", 4)         = 4
[pid  6072] close(3)                    = 0
[pid  6072] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  6072] write(1, "executing program\n", 18) = 18
[pid  6072] memfd_create("syzkaller", 0) = 3
[pid  6072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[  102.202594][ T6040] bcachefs (loop0): error validating btree node at btree alloc level 0/0
[  102.202619][ T6040]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0  
[  102.202639][ T6040]   node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing
[  102.333441][ T6040] bcachefs (loop0): btree_node_read_work: rewriting btree node at btree=alloc level=0 SPOS_MAX due to error
[pid  6052] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  6052] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  6052] ioctl(3, LOOP_CLR_FD)       = 0
[  102.387706][ T6052] bcachefs: bch2_fs_get_tree() error: EINVAL
[  102.394988][ T6040] bcachefs (loop0): error validating btree node on loop0 at btree subvolumes level 0/0
[  102.395012][ T6040]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:32:96 gen 0  
[pid  6052] close(3 <unfinished ...>
[pid  6041] <... close resumed>)        = 0
[pid  6041] exit_group(0)               = ?
[pid  6041] +++ exited with 0 +++
[pid  5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6041, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=42 /* 0.42 s */} ---
[pid  5826] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5826] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5826] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5826] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] unlink("./6/binderfs")      = 0
[pid  5826] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5826] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5826] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5826] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  102.395032][ T6040]   node offset 0/16: bad magic: want 59513f585d347cd2, got 0
[  102.485282][ T6040] bcachefs (loop0): flagging btree subvolumes lost data
[pid  5826] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5826] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5826] close(4)                    = 0
[pid  5826] rmdir("./6/file1")          = 0
[pid  5826] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5826] close(3)                    = 0
[pid  5826] rmdir("./6")                = 0
[pid  5826] mkdir("./7", 0777)          = 0
[pid  5826] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6039] <... close resumed>)        = 0
[pid  5826] <... openat resumed>)       = 3
[pid  6039] exit_group(0 <unfinished ...>
[pid  5826] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5826] close(3)                    = 0
[pid  6039] <... exit_group resumed>)   = ?
[pid  5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6073 attached
 <unfinished ...>
[pid  6072] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6039] +++ exited with 0 +++
[pid  6073] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55558e782750) = 6073
[pid  5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6039, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=41 /* 0.41 s */} ---
[pid  6073] <... set_robust_list resumed>) = 0
[pid  6073] chdir("./7")                = 0
[pid  5825] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6073] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6073] <... prctl resumed>)        = 0
[pid  5825] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6073] setpgid(0, 0 <unfinished ...>
[pid  5825] <... openat resumed>)       = 3
[pid  6073] <... setpgid resumed>)      = 0
[pid  5825] newfstatat(3, "",  <unfinished ...>
[pid  6073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6073] <... openat resumed>)       = 3
[pid  5825] getdents64(3,  <unfinished ...>
[pid  6073] write(3, "1000", 4 <unfinished ...>
[pid  5825] <... getdents64 resumed>0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  6073] <... write resumed>)        = 4
[  102.545444][ T6040] error reading btree root subvolumes l=0: btree_node_read_error, fixing
[  102.572757][ T6040] bcachefs (loop0): will run btree node scan
[pid  5825] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5825] newfstatat(AT_FDCWD, "./6/binderfs",  <unfinished ...>
[pid  6073] close(3 <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6073] <... close resumed>)        = 0
[pid  5825] unlink("./6/binderfs" <unfinished ...>
[pid  6073] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5825] <... unlink resumed>)       = 0
[pid  6073] <... symlink resumed>)      = 0
[pid  5825] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program
 <unfinished ...>
[pid  6073] write(1, "executing program\n", 18 <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6073] <... write resumed>)        = 18
[pid  5825] newfstatat(AT_FDCWD, "./6/file1",  <unfinished ...>
[pid  6073] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6073] <... memfd_create resumed>) = 3
[pid  5825] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5825] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6073] <... mmap resumed>)         = 0x7f7324000000
[pid  5825] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5825] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5825] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5825] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5825] close(4)                    = 0
[pid  5825] rmdir("./6/file1")          = 0
[pid  5825] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5825] close(3)                    = 0
[pid  5825] rmdir("./6")                = 0
[pid  5825] mkdir("./7", 0777)          = 0
[pid  5825] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5825] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5825] close(3)                    = 0
[pid  5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6075 attached
, child_tidptr=0x55558e782750) = 6075
[pid  6075] set_robust_list(0x55558e782760, 24) = 0
[pid  6075] chdir("./7")                = 0
[pid  6075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6075] setpgid(0, 0)               = 0
[pid  6075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6075] write(3, "1000", 4)         = 4
[pid  6075] close(3)                    = 0
[pid  6075] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  6075] write(1, "executing program\n", 18) = 18
[pid  6075] memfd_create("syzkaller", 0) = 3
[pid  6075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  6052] <... close resumed>)        = 0
[pid  6052] exit_group(0)               = ?
[pid  6052] +++ exited with 0 +++
[pid  5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6052, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=42 /* 0.42 s */} ---
[pid  5828] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5828] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5828] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5828] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] unlink("./6/binderfs")      = 0
[pid  5828] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5828] umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5828] openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5828] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5828] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5828] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5828] close(4)                    = 0
[pid  5828] rmdir("./6/file1")          = 0
[pid  5828] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5828] close(3)                    = 0
[pid  5828] rmdir("./6")                = 0
[pid  5828] mkdir("./7", 0777)          = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5828] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5828] close(3)                    = 0
[pid  5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6076 attached
, child_tidptr=0x55558e782750) = 6076
[pid  6076] set_robust_list(0x55558e782760, 24) = 0
[pid  6076] chdir("./7")                = 0
[pid  6076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6076] setpgid(0, 0)               = 0
[pid  6076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6076] write(3, "1000", 4)         = 4
[pid  6076] close(3)                    = 0
[pid  6076] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6076] write(1, "executing program\n", 18executing program
) = 18
[pid  6076] memfd_create("syzkaller", 0) = 3
[pid  6076] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[pid  6073] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6075] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6072] <... write resumed>)        = 16777216
[pid  6072] munmap(0x7f7324000000, 138412032) = 0
[pid  6072] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6072] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6072] close(3)                    = 0
[pid  6072] close(4)                    = 0
[pid  6072] mkdir("./file1", 0777)      = 0
[  102.590595][ T6040] bcachefs (loop0): scan_for_btree_nodes...
[  103.126755][ T6072] loop3: detected capacity change from 0 to 32768
[pid  6072] mount("/dev/loop3", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[  103.250987][ T6072] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  103.267392][ T6072] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  6076] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 <unfinished ...>
[pid  6075] <... write resumed>)        = 16777216
[pid  6075] munmap(0x7f7324000000, 138412032) = 0
[  103.400620][ T6072] bcachefs: bch2_fs_get_tree() error: EINVAL
[  103.407126][ T6040] bch2_scan_for_btree_nodes: nodes found after overwrites:
[  103.407151][ T6040]   extents l=0 seq=1 journal_seq=0 cookie=c6c25c03258c59c5 POS_MIN-SPOS_MAX ptr: 0:27:0 gen 0
[pid  6072] <... mount resumed>)        = -1 EINVAL (Invalid argument)
[pid  6072] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  6072] ioctl(3, LOOP_CLR_FD)       = 0
[pid  6072] close(3 <unfinished ...>
[pid  6073] <... write resumed>)        = 16777216
[pid  6075] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  6075] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6075] close(3)                    = 0
[pid  6075] close(4)                    = 0
[pid  6075] mkdir("./file1", 0777)      = 0
[  103.407166][ T6040]   inodes l=0 seq=1 journal_seq=5 cookie=7589ab5e0c11cc7a POS_MIN-SPOS_MAX ptr: 0:38:0 gen 0
[pid  6073] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  6075] mount("/dev/loop1", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6073] <... munmap resumed>)       = 0
[  103.407190][ T6040]   dirents l=0 seq=1 journal_seq=1 cookie=9aa2895aefce4bdf POS_MIN-SPOS_MAX ptr: 0:41:0 gen 0
[pid  6073] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6073] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6073] close(3)                    = 0
[pid  6073] close(4)                    = 0
[pid  6073] mkdir("./file1", 0777)      = 0
[  103.407205][ T6040]   xattrs l=0 seq=1 journal_seq=4 cookie=2285c34bed0abe32 POS_MIN-SPOS_MAX ptr: 0:31:0 gen 0
[  103.407220][ T6040]   subvolumes l=0 seq=1 journal_seq=1 cookie=c0bef60d07ceb940 POS_MIN-SPOS_MAX ptr: 0:35:0 gen 0
[  103.407235][ T6040]   snapshots l=0 seq=1 journal_seq=1 cookie=ebb8d5a9e3463bdb POS_MIN-SPOS_MAX ptr: 0:32:0 gen 0
[  103.407250][ T6040]   lru l=0 seq=1 journal_seq=5 cookie=28f61e078e70b95c POS_MIN-SPOS_MAX ptr: 0:28:0 gen 0
[pid  6073] mount("/dev/loop2", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6072] <... close resumed>)        = 0
[pid  6072] exit_group(0)               = ?
[  103.407265][ T6040]   deleted_inodes l=0 seq=1 journal_seq=0 cookie=1db8f60c84bb244c POS_MIN-SPOS_MAX ptr: 0:42:0 gen 0
[pid  6072] +++ exited with 0 +++
[pid  5827] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6072, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=47 /* 0.47 s */} ---
[pid  6076] <... write resumed>)        = 16777216
[pid  5827] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5827] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5827] getdents64(3, 0x55558e7837f0 /* 4 entries */, 32768) = 112
[pid  5827] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5827] unlink("./1/binderfs")      = 0
[pid  5827] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5827] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5827] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5827] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5827] getdents64(4, 0x55558e78b830 /* 2 entries */, 32768) = 48
[pid  5827] getdents64(4, 0x55558e78b830 /* 0 entries */, 32768) = 0
[pid  5827] close(4)                    = 0
[pid  5827] rmdir("./1/file1" <unfinished ...>
[pid  6076] munmap(0x7f7324000000, 138412032 <unfinished ...>
[pid  5827] <... rmdir resumed>)        = 0
[pid  5827] getdents64(3, 0x55558e7837f0 /* 0 entries */, 32768) = 0
[pid  5827] close(3)                    = 0
[pid  5827] rmdir("./1")                = 0
[pid  5827] mkdir("./2", 0777)          = 0
[pid  5827] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[  103.407280][ T6040] 
[  103.473684][ T6075] loop1: detected capacity change from 0 to 32768
[  103.559234][ T6073] loop2: detected capacity change from 0 to 32768
[  103.700237][ T6075] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  103.700323][ T6075] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[pid  5827] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6076] <... munmap resumed>)       = 0
[pid  5827] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5827] close(3 <unfinished ...>
[pid  6076] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5827] <... close resumed>)        = 0
[pid  5827] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6098 attached
 <unfinished ...>
[pid  6076] <... openat resumed>)       = 4
[pid  6098] set_robust_list(0x55558e782760, 24 <unfinished ...>
[pid  6076] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5827] <... clone resumed>, child_tidptr=0x55558e782750) = 6098
[  103.730742][ T6073] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): filesystem UUID already open
[  103.730830][ T6073] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  103.832613][ T6040]  done
[  103.837598][ T6040] bcachefs (loop0): check_topology...
[  103.837645][ T6040] bcachefs (loop0): btree root subvolumes unreadable, must recover from scan
[pid  6076] <... ioctl resumed>)        = 0
[pid  6076] close(3)                    = 0
[pid  6076] close(4)                    = 0
[pid  6098] <... set_robust_list resumed>) = 0
[pid  6098] chdir("./2" <unfinished ...>
[  103.865306][ T6076] loop4: detected capacity change from 0 to 32768
[  103.875981][ T6040] bcachefs (loop0): bch2_get_scanned_nodes(): recovering subvolumes l=0 POS_MIN - SPOS_MAX
[pid  6076] mkdir("./file1", 0777 <unfinished ...>
[pid  6098] <... chdir resumed>)        = 0
[pid  6076] <... mkdir resumed>)        = 0
[pid  6098] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6076] mount("/dev/loop4", "./file1", "bcachefs", MS_SYNCHRONOUS, "" <unfinished ...>
[pid  6098] <... prctl resumed>)        = 0
[pid  6098] setpgid(0, 0)               = 0
[pid  6098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6098] write(3, "1000", 4)         = 4
[pid  6098] close(3)                    = 0
[  103.904468][ T6040] bcachefs (loop0): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0
[  103.932248][ T5961] bcachefs (loop0): error validating btree node at btree subvolumes level 0/0
[  103.932288][ T5961]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 960 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0  
[  103.932307][ T5961]   node offset 8/960 bset u64s 60677 bset byte offset 40: bad k->u64s 0 (min 3 max 253), fixing
[  103.937413][ T6073] bcachefs: bch2_fs_get_tree() error: EINVAL
[  103.942973][ T5961] ==================================================================
[  103.983014][ T5961] BUG: KASAN: slab-use-after-free in bkey_packed_valid+0x3a8/0x4b0
[  103.991996][ T5961] Read of size 1 at addr ffff888078f20000 by task kworker/0:2H/5961
[  104.000191][ T5961] 
[  104.002630][ T5961] CPU: 0 UID: 0 PID: 5961 Comm: kworker/0:2H Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  104.014217][ T5961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  104.024852][ T5961] Workqueue: bcachefs_btree_read_complete btree_node_read_work
[  104.032829][ T5961] Call Trace:
[  104.036238][ T5961]  <TASK>
[  104.039376][ T5961]  dump_stack_lvl+0x241/0x360
[  104.044388][ T5961]  ? __pfx_dump_stack_lvl+0x10/0x10
[  104.049804][ T5961]  ? __pfx__printk+0x10/0x10
[  104.054655][ T5961]  ? _printk+0xd5/0x120
[  104.059126][ T5961]  ? __virt_addr_valid+0x183/0x530
[  104.065632][ T5961]  ? __virt_addr_valid+0x183/0x530
[  104.071054][ T5961]  print_report+0x169/0x550
[  104.075849][ T5961]  ? __virt_addr_valid+0x183/0x530
[  104.081595][ T5961]  ? __virt_addr_valid+0x183/0x530
[  104.087206][ T5961]  ? __virt_addr_valid+0x45f/0x530
[  104.092716][ T5961]  ? __phys_addr+0xba/0x170
[  104.097451][ T5961]  ? bkey_packed_valid+0x3a8/0x4b0
[  104.103498][ T5961]  kasan_report+0x143/0x180
[  104.108471][ T5961]  ? __btree_err+0x3ce/0x760
[  104.113979][ T5961]  ? bkey_packed_valid+0x3a8/0x4b0
[  104.119704][ T5961]  bkey_packed_valid+0x3a8/0x4b0
[  104.124976][ T5961]  ? __pfx_bkey_packed_valid+0x10/0x10
[  104.131434][ T5961]  ? rcu_is_watching+0x15/0xb0
[  104.136241][ T5961]  ? bch2_printbuf_exit+0x6d/0xa0
[  104.143689][ T5961]  ? validate_bset_keys+0x554/0x1610
[  104.151720][ T5961]  validate_bset_keys+0x98d/0x1610
[  104.157398][ T5961]  ? __pfx_validate_bset_keys+0x10/0x10
[  104.163523][ T5961]  ? kfree+0x196/0x430
[  104.169699][ T5961]  ? krealloc_noprof+0x1a4/0x2f0
[  104.176088][ T5961]  ? bch2_bpos_to_text+0x295/0x3a0
[  104.182650][ T5961]  ? __pfx_bch2_bpos_to_text+0x10/0x10
[  104.189383][ T5961]  ? prt_str+0x4af/0x7d0
[  104.194470][ T5961]  ? bch2_btree_node_read_done+0x22d4/0x5e90
[  104.202170][ T5961]  bch2_btree_node_read_done+0x2402/0x5e90
[  104.208659][ T5961]  ? bch2_bkey_pick_read_device+0x221/0x1670
[  104.214875][ T5961]  ? __pfx_bch2_btree_node_read_done+0x10/0x10
[  104.221488][ T5961]  ? bch2_bkey_pick_read_device+0x137d/0x1670
[  104.228234][ T5961]  ? bch2_bkey_pick_read_device+0x221/0x1670
[  104.234340][ T5961]  ? __pfx_bch2_bkey_pick_read_device+0x10/0x10
[  104.240989][ T5961]  ? bch2_btree_ptr_v2_to_text+0x209/0x2f0
[  104.247133][ T5961]  ? __pfx_bch2_btree_ptr_v2_to_text+0x10/0x10
[  104.253770][ T5961]  btree_node_read_work+0x68b/0x1260
[  104.259661][ T5961]  ? __pfx_btree_node_read_work+0x10/0x10
[  104.265785][ T5961]  ? __pfx_lock_acquire+0x10/0x10
[  104.271144][ T5961]  ? print_irqtrace_events+0x201/0x230
[  104.276689][ T5961]  ? process_scheduled_works+0x976/0x1840
[  104.282802][ T5961]  process_scheduled_works+0xa66/0x1840
[  104.288700][ T5961]  ? __pfx_process_scheduled_works+0x10/0x10
[  104.295888][ T5961]  ? assign_work+0x364/0x3d0
[  104.300786][ T5961]  worker_thread+0x870/0xd30
[  104.305430][ T5961]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  104.311369][ T5961]  ? __kthread_parkme+0x169/0x1d0
[  104.316957][ T5961]  ? __pfx_worker_thread+0x10/0x10
[  104.322248][ T5961]  kthread+0x2f0/0x390
[  104.326604][ T5961]  ? __pfx_worker_thread+0x10/0x10
[  104.331941][ T5961]  ? __pfx_kthread+0x10/0x10
[  104.336573][ T5961]  ret_from_fork+0x4b/0x80
[  104.341043][ T5961]  ? __pfx_kthread+0x10/0x10
[  104.345749][ T5961]  ret_from_fork_asm+0x1a/0x30
[  104.350847][ T5961]  </TASK>
[  104.353903][ T5961] 
[  104.356420][ T5961] Allocated by task 5909:
[  104.361061][ T5961]  kasan_save_track+0x3f/0x80
[  104.365845][ T5961]  __kasan_kmalloc+0x98/0xb0
[  104.371169][ T5961]  __kmalloc_node_noprof+0x290/0x4d0
[  104.376619][ T5961]  __kvmalloc_node_noprof+0x72/0x190
[  104.382057][ T5961]  btree_node_data_alloc+0x15a/0x260
[  104.387608][ T5961]  __bch2_btree_node_mem_alloc+0x1d8/0x3e0
[  104.394002][ T5961]  bch2_fs_btree_cache_init+0x26f/0x630
[  104.399976][ T5961]  bch2_fs_open+0x2aa4/0x2f80
[  104.405322][ T5961]  bch2_fs_get_tree+0x738/0x1710
[  104.410406][ T5961]  vfs_get_tree+0x90/0x2b0
[  104.414937][ T5961]  do_new_mount+0x2be/0xb40
[  104.420250][ T5961]  __se_sys_mount+0x2d6/0x3c0
[  104.425039][ T5961]  do_syscall_64+0xf3/0x230
[  104.429860][ T5961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.436172][ T5961] 
[  104.438793][ T5961] Freed by task 5909:
[  104.442894][ T5961]  kasan_save_track+0x3f/0x80
[  104.447745][ T5961]  kasan_save_free_info+0x40/0x50
[  104.453667][ T5961]  __kasan_slab_free+0x59/0x70
[  104.458566][ T5961]  kfree+0x196/0x430
[  104.462490][ T5961]  __btree_node_data_free+0x341/0x550
[  104.467971][ T5961]  bch2_fs_btree_cache_exit+0xb1b/0x1530
[  104.474156][ T5961]  bch2_fs_release+0x20e/0x7d0
[  104.479345][ T5961]  kobject_put+0x22f/0x480
[  104.484343][ T5961]  bch2_fs_open+0x1ebe/0x2f80
[  104.489116][ T5961]  bch2_fs_get_tree+0x738/0x1710
[  104.494353][ T5961]  vfs_get_tree+0x90/0x2b0
[  104.499219][ T5961]  do_new_mount+0x2be/0xb40
[  104.503907][ T5961]  __se_sys_mount+0x2d6/0x3c0
[  104.508643][ T5961]  do_syscall_64+0xf3/0x230
[  104.513274][ T5961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.519428][ T5961] 
[  104.522029][ T5961] The buggy address belongs to the object at ffff888078f20000
[  104.522029][ T5961]  which belongs to the cache kmalloc-rcl-512 of size 512
[  104.537179][ T5961] The buggy address is located 0 bytes inside of
[  104.537179][ T5961]  freed 512-byte region [ffff888078f20000, ffff888078f20200)
[  104.551216][ T5961] 
[  104.554144][ T5961] The buggy address belongs to the physical page:
[  104.561432][ T5961] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78f20
[  104.571458][ T5961] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  104.581931][ T5961] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  104.590141][ T5961] page_type: f5(slab)
[  104.594669][ T5961] raw: 00fff00000000040 ffff88801ac42dc0 dead000000000122 0000000000000000
[  104.604703][ T5961] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  104.614485][ T5961] head: 00fff00000000040 ffff88801ac42dc0 dead000000000122 0000000000000000
[  104.623719][ T5961] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  104.632613][ T5961] head: 00fff00000000002 ffffea0001e3c801 ffffffffffffffff 0000000000000000
[  104.641659][ T5961] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[  104.650688][ T5961] page dumped because: kasan: bad access detected
[  104.657423][ T5961] page_owner tracks the page as allocated
[  104.663698][ T5961] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 5909, tgid 5909 (syz-executor238), ts 94208745569, free_ts 92197228717
[  104.690221][ T5961]  post_alloc_hook+0x1f3/0x230
[  104.695197][ T5961]  get_page_from_freelist+0x3651/0x37a0
[  104.701206][ T5961]  __alloc_pages_noprof+0x292/0x710
[  104.706518][ T5961]  alloc_pages_mpol_noprof+0x3e8/0x680
[  104.712000][ T5961]  alloc_slab_page+0x6a/0x110
[  104.716726][ T5961]  allocate_slab+0x5a/0x2b0
[  104.721287][ T5961]  ___slab_alloc+0xc27/0x14a0
[  104.726199][ T5961]  __slab_alloc+0x58/0xa0
[  104.730734][ T5961]  __kmalloc_node_noprof+0x2ee/0x4d0
[  104.736136][ T5961]  __kvmalloc_node_noprof+0x72/0x190
[  104.741444][ T5961]  btree_node_data_alloc+0x15a/0x260
[  104.746762][ T5961]  __bch2_btree_node_mem_alloc+0x1d8/0x3e0
[  104.752759][ T5961]  bch2_fs_btree_cache_init+0x26f/0x630
[  104.758322][ T5961]  bch2_fs_open+0x2aa4/0x2f80
[  104.763132][ T5961]  bch2_fs_get_tree+0x738/0x1710
[  104.768243][ T5961]  vfs_get_tree+0x90/0x2b0
[  104.772866][ T5961] page last free pid 5877 tgid 5877 stack trace:
[  104.780188][ T5961]  free_unref_page+0xd2c/0x1000
[  104.785433][ T5961]  __folio_put+0x2b3/0x360
[  104.790114][ T5961]  free_large_kmalloc+0xfe/0x180
[  104.796406][ T5961]  kfree+0x212/0x430
[  104.800451][ T5961]  __btree_node_data_free+0x30e/0x550
[  104.806092][ T5961]  bch2_fs_btree_cache_exit+0xb1b/0x1530
[  104.812636][ T5961]  bch2_fs_release+0x20e/0x7d0
[  104.817605][ T5961]  kobject_put+0x22f/0x480
[  104.822254][ T5961]  bch2_fs_open+0x1ebe/0x2f80
[  104.827202][ T5961]  bch2_fs_get_tree+0x738/0x1710
[  104.832429][ T5961]  vfs_get_tree+0x90/0x2b0
[  104.836936][ T5961]  do_new_mount+0x2be/0xb40
[  104.841788][ T5961]  __se_sys_mount+0x2d6/0x3c0
[  104.847144][ T5961]  do_syscall_64+0xf3/0x230
[  104.851698][ T5961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.857950][ T5961] 
[  104.860475][ T5961] Memory state around the buggy address:
[  104.866750][ T5961]  ffff888078f1ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  104.875556][ T5961]  ffff888078f1ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  104.884348][ T5961] >ffff888078f20000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  104.893970][ T5961]                    ^
[  104.898338][ T5961]  ffff888078f20080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  104.907721][ T5961]  ffff888078f20100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
executing program
[pid  6098] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6098] write(1, "executing program\n", 18) = 18
[pid  6098] memfd_create("syzkaller", 0) = 3
[pid  6098] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7324000000
[  104.916520][ T5961] ==================================================================
[  104.946989][ T5961] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  104.956012][ T5961] CPU: 0 UID: 0 PID: 5961 Comm: kworker/0:2H Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  104.969106][ T5961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  104.980107][ T5961] Workqueue: bcachefs_btree_read_complete btree_node_read_work
[  104.988176][ T5961] Call Trace:
[  104.991562][ T5961]  <TASK>
[  104.994532][ T5961]  dump_stack_lvl+0x241/0x360
[  104.999457][ T5961]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.004965][ T5961]  ? __pfx__printk+0x10/0x10
[  105.009690][ T5961]  ? preempt_schedule+0xe1/0xf0
[  105.014607][ T5961]  ? vscnprintf+0x5d/0x90
[  105.019210][ T5961]  panic+0x349/0x880
[  105.023136][ T5961]  ? check_panic_on_warn+0x21/0xb0
[  105.028926][ T5961]  ? __pfx_panic+0x10/0x10
[  105.033814][ T5961]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  105.040371][ T5961]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  105.046912][ T5961]  ? print_report+0x502/0x550
[  105.052282][ T5961]  check_panic_on_warn+0x86/0xb0
[  105.057387][ T5961]  ? bkey_packed_valid+0x3a8/0x4b0
[  105.062601][ T5961]  end_report+0x77/0x160
[  105.067028][ T5961]  kasan_report+0x154/0x180
[  105.071596][ T5961]  ? __btree_err+0x3ce/0x760
[  105.076317][ T5961]  ? bkey_packed_valid+0x3a8/0x4b0
[  105.081758][ T5961]  bkey_packed_valid+0x3a8/0x4b0
[  105.087384][ T5961]  ? __pfx_bkey_packed_valid+0x10/0x10
[  105.093331][ T5961]  ? rcu_is_watching+0x15/0xb0
[  105.098336][ T5961]  ? bch2_printbuf_exit+0x6d/0xa0
[  105.103529][ T5961]  ? validate_bset_keys+0x554/0x1610
[  105.109019][ T5961]  validate_bset_keys+0x98d/0x1610
[  105.114343][ T5961]  ? __pfx_validate_bset_keys+0x10/0x10
[  105.120401][ T5961]  ? kfree+0x196/0x430
[  105.124523][ T5961]  ? krealloc_noprof+0x1a4/0x2f0
[  105.129604][ T5961]  ? bch2_bpos_to_text+0x295/0x3a0
[  105.135125][ T5961]  ? __pfx_bch2_bpos_to_text+0x10/0x10
[  105.140907][ T5961]  ? prt_str+0x4af/0x7d0
[  105.145728][ T5961]  ? bch2_btree_node_read_done+0x22d4/0x5e90
[  105.152026][ T5961]  bch2_btree_node_read_done+0x2402/0x5e90
[  105.158298][ T5961]  ? bch2_bkey_pick_read_device+0x221/0x1670
[  105.164469][ T5961]  ? __pfx_bch2_btree_node_read_done+0x10/0x10
[  105.170942][ T5961]  ? bch2_bkey_pick_read_device+0x137d/0x1670
[  105.177676][ T5961]  ? bch2_bkey_pick_read_device+0x221/0x1670
[  105.184608][ T5961]  ? __pfx_bch2_bkey_pick_read_device+0x10/0x10
[  105.191609][ T5961]  ? bch2_btree_ptr_v2_to_text+0x209/0x2f0
[  105.198107][ T5961]  ? __pfx_bch2_btree_ptr_v2_to_text+0x10/0x10
[  105.204972][ T5961]  btree_node_read_work+0x68b/0x1260
[  105.211197][ T5961]  ? __pfx_btree_node_read_work+0x10/0x10
[  105.217506][ T5961]  ? __pfx_lock_acquire+0x10/0x10
[  105.222793][ T5961]  ? print_irqtrace_events+0x201/0x230
[  105.228831][ T5961]  ? process_scheduled_works+0x976/0x1840
[  105.235434][ T5961]  process_scheduled_works+0xa66/0x1840
[  105.241417][ T5961]  ? __pfx_process_scheduled_works+0x10/0x10
[  105.247907][ T5961]  ? assign_work+0x364/0x3d0
[  105.252893][ T5961]  worker_thread+0x870/0xd30
[  105.257975][ T5961]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  105.264101][ T5961]  ? __kthread_parkme+0x169/0x1d0
[  105.269254][ T5961]  ? __pfx_worker_thread+0x10/0x10
[  105.274588][ T5961]  kthread+0x2f0/0x390
[  105.278835][ T5961]  ? __pfx_worker_thread+0x10/0x10
[  105.284418][ T5961]  ? __pfx_kthread+0x10/0x10
[  105.289260][ T5961]  ret_from_fork+0x4b/0x80
[  105.294180][ T5961]  ? __pfx_kthread+0x10/0x10
[  105.299276][ T5961]  ret_from_fork_asm+0x1a/0x30
[  105.304282][ T5961]  </TASK>
[  105.307746][ T5961] Kernel Offset: disabled
[  105.312211][ T5961] Rebooting in 86400 seconds..