./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3160111076

<...>
-1 EBADF (Bad file descriptor)
[pid  7054] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7054] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7054] exit_group(0 <unfinished ...>
[pid  7056] <... futex resumed>)        = ?
[pid  7055] <... futex resumed>)        = ?
[pid  7054] <... exit_group resumed>)   = ?
[pid  7056] +++ exited with 0 +++
[pid  7055] +++ exited with 0 +++
[pid  7054] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1972, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./657", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./657", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./657/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./657/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./657/binderfs")    = 0
[pid  5067] umount2("./657/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./657/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./657/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./657/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./657/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./657/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./657")              = 0
[pid  5067] mkdir("./658", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1975
./strace-static-x86_64: Process 7057 attached
[pid  7057] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7057] chdir("./658")              = 0
[pid  7057] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7057] setpgid(0, 0)               = 0
[pid  7057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7057] write(3, "1000", 4)         = 4
[pid  7057] close(3)                    = 0
[pid  7057] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7057] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7057] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7057] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7057] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1976], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1976
[pid  7057] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7058 attached
 <unfinished ...>
[pid  7058] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7057] <... futex resumed>)        = 0
[pid  7057] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7058] memfd_create("syzkaller", 0) = 3
[pid  7058] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7058] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7058] munmap(0x7ff042e09000, 2097152) = 0
[pid  7058] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7058] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7058] close(3)                    = 0
[pid  7058] mkdir("./file0", 0777)      = 0
[pid  7058] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7058] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7058] chdir("./file0")            = 0
[pid  7058] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7058] close(4)                    = 0
[pid  7058] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7057] <... futex resumed>)        = 0
[pid  7058] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7057] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7058] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7057] <... futex resumed>)        = 0
[pid  7058] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7057] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7057] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7057] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7057] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1977], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1977
[pid  7057] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7057] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7059 attached
 <unfinished ...>
[pid  7059] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7059] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7058] <... mkdirat resumed>)      = 0
[pid  7058] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7059] <... chdir resumed>)        = 0
[pid  7058] <... futex resumed>)        = 0
[pid  7059] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7058] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7057] <... futex resumed>)        = 0
[pid  7057] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7058] <... futex resumed>)        = 0
[pid  7057] <... futex resumed>)        = 1
[pid  7057] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7058] creat("./file0", 0406 <unfinished ...>
[pid  7059] <... futex resumed>)        = 1
[pid  7059] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7058] <... creat resumed>)        = 4
[pid  7058] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7057] <... futex resumed>)        = 0
[pid  7057] close(3 <unfinished ...>
[pid  7058] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7057] <... close resumed>)        = 0
[pid  7057] close(4)                    = 0
[pid  7057] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7057] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7057] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7057] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7057] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7057] close(10)                   = -1 EBADF (Bad file descriptor)
[  157.773118][ T7058] loop0: detected capacity change from 0 to 4096
[pid  7057] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7057] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7057] exit_group(0 <unfinished ...>
[pid  7059] <... futex resumed>)        = ?
[pid  7057] <... exit_group resumed>)   = ?
[pid  7059] +++ exited with 0 +++
[pid  7058] <... futex resumed>)        = ?
[pid  7058] +++ exited with 0 +++
[pid  7057] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1975, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./658", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./658", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./658/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./658/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./658/binderfs")    = 0
[pid  5067] umount2("./658/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./658/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./658/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./658/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./658/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./658/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./658")              = 0
[pid  5067] mkdir("./659", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1978
./strace-static-x86_64: Process 7060 attached
[pid  7060] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7060] chdir("./659")              = 0
[pid  7060] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7060] setpgid(0, 0)               = 0
[pid  7060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7060] write(3, "1000", 4)         = 4
[pid  7060] close(3)                    = 0
[pid  7060] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7060] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7060] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7060] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7060] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7061 attached
, parent_tid=[1979], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1979
[pid  7060] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7060] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7061] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7061] memfd_create("syzkaller", 0) = 3
[pid  7061] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7061] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7061] munmap(0x7ff042e09000, 2097152) = 0
[pid  7061] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7061] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7061] close(3)                    = 0
[pid  7061] mkdir("./file0", 0777)      = 0
[pid  7061] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7061] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7061] chdir("./file0")            = 0
[pid  7061] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7061] close(4)                    = 0
[pid  7061] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7060] <... futex resumed>)        = 0
[pid  7060] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7060] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7060] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7060] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7060] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1980], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1980
[pid  7060] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7060] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7061] <... futex resumed>)        = 1
[pid  7061] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7062 attached
 <unfinished ...>
[pid  7062] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7062] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7062] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7060] <... futex resumed>)        = 0
[pid  7060] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7060] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7062] creat("./file0", 0406 <unfinished ...>
[pid  7061] <... mkdirat resumed>)      = 0
[pid  7062] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7061] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7062] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7061] <... futex resumed>)        = 0
[pid  7062] <... futex resumed>)        = 1
[pid  7061] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7060] <... futex resumed>)        = 0
[pid  7060] close(3)                    = 0
[pid  7060] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7060] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7060] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7060] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7060] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7060] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7060] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(14 <unfinished ...>
[pid  7062] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7060] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7060] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7060] close(29)                   = -1 EBADF (Bad file descriptor)
[  157.920400][ T7061] loop0: detected capacity change from 0 to 4096
[pid  7060] exit_group(0)               = ?
[pid  7062] <... futex resumed>)        = ?
[pid  7061] <... futex resumed>)        = ?
[pid  7062] +++ exited with 0 +++
[pid  7061] +++ exited with 0 +++
[pid  7060] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1978, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./659", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./659", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./659/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./659/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./659/binderfs")    = 0
[pid  5067] umount2("./659/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./659/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./659/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./659/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./659/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./659/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./659")              = 0
[pid  5067] mkdir("./660", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1981
./strace-static-x86_64: Process 7063 attached
[pid  7063] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7063] chdir("./660")              = 0
[pid  7063] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7063] setpgid(0, 0)               = 0
[pid  7063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7063] write(3, "1000", 4)         = 4
[pid  7063] close(3)                    = 0
[pid  7063] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7063] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7063] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7063] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7063] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7064 attached
 <unfinished ...>
[pid  7064] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7064] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7063] <... clone resumed>, parent_tid=[1982], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1982
[pid  7063] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7064] <... futex resumed>)        = 0
[pid  7063] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7064] memfd_create("syzkaller", 0) = 3
[pid  7064] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7064] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7064] munmap(0x7ff042e09000, 2097152) = 0
[pid  7064] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7064] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7064] close(3)                    = 0
[pid  7064] mkdir("./file0", 0777)      = 0
[pid  7064] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7064] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7064] chdir("./file0")            = 0
[pid  7064] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7064] close(4)                    = 0
[pid  7064] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7063] <... futex resumed>)        = 0
[pid  7063] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7063] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7063] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7063] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7063] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7065 attached
, parent_tid=[1983], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1983
[pid  7063] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7065] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7063] <... futex resumed>)        = 0
[pid  7065] <... set_robust_list resumed>) = 0
[pid  7063] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7065] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7065] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7065] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7063] <... futex resumed>)        = 0
[pid  7065] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7063] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7063] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7065] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7065] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7063] <... futex resumed>)        = 0
[pid  7065] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7064] <... futex resumed>)        = 1
[pid  7064] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7064] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7063] close(3)                    = 0
[pid  7063] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7063] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7063] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7063] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7063] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7063] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7063] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(19 <unfinished ...>
[pid  7064] <... futex resumed>)        = 0
[pid  7063] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[  158.073918][ T7064] loop0: detected capacity change from 0 to 4096
[pid  7064] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7063] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7063] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7063] exit_group(0 <unfinished ...>
[pid  7065] <... futex resumed>)        = ?
[pid  7064] <... futex resumed>)        = ?
[pid  7063] <... exit_group resumed>)   = ?
[pid  7065] +++ exited with 0 +++
[pid  7064] +++ exited with 0 +++
[pid  7063] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1981, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./660", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./660", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./660/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./660/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./660/binderfs")    = 0
[pid  5067] umount2("./660/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./660/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./660/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./660/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./660/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./660/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./660")              = 0
[pid  5067] mkdir("./661", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1984
./strace-static-x86_64: Process 7066 attached
[pid  7066] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7066] chdir("./661")              = 0
[pid  7066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7066] setpgid(0, 0)               = 0
[pid  7066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7066] write(3, "1000", 4)         = 4
[pid  7066] close(3)                    = 0
[pid  7066] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7066] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7066] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7066] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7066] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1985], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1985
[pid  7066] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7066] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7067 attached
 <unfinished ...>
[pid  7067] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7067] memfd_create("syzkaller", 0) = 3
[pid  7067] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7067] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7067] munmap(0x7ff042e09000, 2097152) = 0
[pid  7067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7067] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7067] close(3)                    = 0
[pid  7067] mkdir("./file0", 0777)      = 0
[pid  7067] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7067] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7067] chdir("./file0")            = 0
[pid  7067] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7067] close(4)                    = 0
[pid  7067] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7066] <... futex resumed>)        = 0
[pid  7066] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7066] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7066] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7066] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7066] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1986], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1986
[pid  7066] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7066] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7067] <... futex resumed>)        = 1
[pid  7067] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7068 attached
 <unfinished ...>
[pid  7068] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7068] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7067] <... mkdirat resumed>)      = 0
[pid  7067] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7067] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7068] <... chdir resumed>)        = 0
[pid  7068] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7066] <... futex resumed>)        = 0
[pid  7068] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7066] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7066] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7067] <... futex resumed>)        = 0
[pid  7067] creat("./file0", 0406)      = 4
[pid  7067] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7067] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7066] <... futex resumed>)        = 0
[pid  7066] close(3)                    = 0
[  158.206119][ T7067] loop0: detected capacity change from 0 to 4096
[pid  7066] close(4)                    = 0
[pid  7066] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7066] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7066] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7066] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7066] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7066] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7066] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7066] exit_group(0 <unfinished ...>
[pid  7068] <... futex resumed>)        = ?
[pid  7067] <... futex resumed>)        = ?
[pid  7066] <... exit_group resumed>)   = ?
[pid  7068] +++ exited with 0 +++
[pid  7067] +++ exited with 0 +++
[pid  7066] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1984, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./661", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./661", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./661/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./661/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./661/binderfs")    = 0
[pid  5067] umount2("./661/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./661/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./661/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./661/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./661/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./661/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./661")              = 0
[pid  5067] mkdir("./662", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1987
./strace-static-x86_64: Process 7069 attached
[pid  7069] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7069] chdir("./662")              = 0
[pid  7069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7069] setpgid(0, 0)               = 0
[pid  7069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7069] write(3, "1000", 4)         = 4
[pid  7069] close(3)                    = 0
[pid  7069] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7069] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7069] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7069] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7069] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7070 attached
, parent_tid=[1988], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1988
[pid  7070] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7069] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7070] <... set_robust_list resumed>) = 0
[pid  7069] <... futex resumed>)        = 0
[pid  7069] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7070] memfd_create("syzkaller", 0) = 3
[pid  7070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7070] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7070] munmap(0x7ff042e09000, 2097152) = 0
[pid  7070] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7070] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7070] close(3)                    = 0
[pid  7070] mkdir("./file0", 0777)      = 0
[pid  7070] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7070] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7070] chdir("./file0")            = 0
[pid  7070] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7070] close(4)                    = 0
[pid  7070] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7070] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7069] <... futex resumed>)        = 0
[pid  7069] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7069] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7069] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7069] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7069] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1989], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1989
[pid  7069] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7069] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7071 attached
 <unfinished ...>
[pid  7071] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7070] <... futex resumed>)        = 0
[pid  7070] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7071] <... set_robust_list resumed>) = 0
[pid  7071] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7070] <... mkdirat resumed>)      = 0
[pid  7071] <... chdir resumed>)        = 0
[pid  7070] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7070] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7071] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7069] <... futex resumed>)        = 0
[pid  7069] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7070] <... futex resumed>)        = 0
[pid  7069] <... futex resumed>)        = 1
[pid  7069] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7070] creat("./file0", 0406 <unfinished ...>
[pid  7071] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7070] <... creat resumed>)        = 4
[pid  7070] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7069] <... futex resumed>)        = 0
[  158.357857][ T7070] loop0: detected capacity change from 0 to 4096
[pid  7070] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7069] close(3)                    = 0
[pid  7069] close(4)                    = 0
[pid  7069] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7069] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7069] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7069] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7069] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7069] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7069] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7069] exit_group(0 <unfinished ...>
[pid  7071] <... futex resumed>)        = ?
[pid  7070] <... futex resumed>)        = ?
[pid  7069] <... exit_group resumed>)   = ?
[pid  7071] +++ exited with 0 +++
[pid  7070] +++ exited with 0 +++
[pid  7069] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1987, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./662", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./662", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./662/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./662/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./662/binderfs")    = 0
[pid  5067] umount2("./662/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./662/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./662/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./662/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./662/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./662/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./662")              = 0
[pid  5067] mkdir("./663", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1990
./strace-static-x86_64: Process 7072 attached
[pid  7072] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7072] chdir("./663")              = 0
[pid  7072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7072] setpgid(0, 0)               = 0
[pid  7072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7072] write(3, "1000", 4)         = 4
[pid  7072] close(3)                    = 0
[pid  7072] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7072] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7072] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7072] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7072] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7073 attached
, parent_tid=[1991], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1991
[pid  7072] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7073] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7072] <... futex resumed>)        = 0
[pid  7072] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7073] <... set_robust_list resumed>) = 0
[pid  7073] memfd_create("syzkaller", 0) = 3
[pid  7073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7073] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7073] munmap(0x7ff042e09000, 2097152) = 0
[pid  7073] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7073] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7073] close(3)                    = 0
[pid  7073] mkdir("./file0", 0777)      = 0
[pid  7073] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7073] chdir("./file0")            = 0
[pid  7073] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7073] close(4)                    = 0
[pid  7073] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7073] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7072] <... futex resumed>)        = 0
[pid  7072] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7072] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7072] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7073] <... futex resumed>)        = 0
[pid  7072] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7072] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7073] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7072] <... mprotect resumed>)     = 0
[pid  7072] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1992], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1992
[pid  7072] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7072] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7074 attached
 <unfinished ...>
[pid  7074] set_robust_list(0x7ff0430089e0, 24) = 0
[  158.518258][ T7073] loop0: detected capacity change from 0 to 4096
[pid  7074] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7073] <... mkdirat resumed>)      = 0
[pid  7073] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7074] <... chdir resumed>)        = 0
[pid  7073] <... futex resumed>)        = 0
[pid  7074] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7072] <... futex resumed>)        = 0
[pid  7072] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7072] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7074] <... futex resumed>)        = 1
[pid  7074] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7073] creat("./file0", 0406)      = 4
[pid  7073] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7072] <... futex resumed>)        = 0
[pid  7072] close(3)                    = 0
[pid  7072] close(4)                    = 0
[pid  7072] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7072] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7072] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7072] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7072] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7072] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7073] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7072] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7072] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7072] exit_group(0 <unfinished ...>
[pid  7074] <... futex resumed>)        = ?
[pid  7073] <... futex resumed>)        = ?
[pid  7072] <... exit_group resumed>)   = ?
[pid  7073] +++ exited with 0 +++
[pid  7074] +++ exited with 0 +++
[pid  7072] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1990, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./663", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./663", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./663/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./663/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./663/binderfs")    = 0
[pid  5067] umount2("./663/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./663/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./663/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./663/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./663/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./663/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./663")              = 0
[pid  5067] mkdir("./664", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1993
./strace-static-x86_64: Process 7075 attached
[pid  7075] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7075] chdir("./664")              = 0
[pid  7075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7075] setpgid(0, 0)               = 0
[pid  7075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7075] write(3, "1000", 4)         = 4
[pid  7075] close(3)                    = 0
[pid  7075] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7075] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7075] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7075] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7075] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7076 attached
, parent_tid=[1994], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1994
[pid  7075] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7076] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7075] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7076] <... set_robust_list resumed>) = 0
[pid  7076] memfd_create("syzkaller", 0) = 3
[pid  7076] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7076] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7076] munmap(0x7ff042e09000, 2097152) = 0
[pid  7076] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7076] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7076] close(3)                    = 0
[pid  7076] mkdir("./file0", 0777)      = 0
[pid  7076] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7076] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7076] chdir("./file0")            = 0
[pid  7076] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7076] close(4)                    = 0
[pid  7076] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7075] <... futex resumed>)        = 0
[pid  7075] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7075] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7075] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7075] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7075] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1995], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1995
[pid  7075] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7075] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7076] <... futex resumed>)        = 1
[pid  7076] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7076] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7076] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7077 attached
 <unfinished ...>
[pid  7077] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7077] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7077] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7075] <... futex resumed>)        = 0
[pid  7075] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7075] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7076] <... futex resumed>)        = 0
[pid  7076] creat("./file0", 0406 <unfinished ...>
[pid  7077] <... futex resumed>)        = 1
[pid  7077] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7076] <... creat resumed>)        = 4
[pid  7076] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7075] <... futex resumed>)        = 0
[pid  7076] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7075] close(3)                    = 0
[pid  7075] close(4)                    = 0
[pid  7075] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7075] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7075] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7075] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7075] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7075] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(19)                   = -1 EBADF (Bad file descriptor)
[  158.682277][ T7076] loop0: detected capacity change from 0 to 4096
[pid  7075] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7075] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7075] exit_group(0 <unfinished ...>
[pid  7077] <... futex resumed>)        = ?
[pid  7076] <... futex resumed>)        = ?
[pid  7075] <... exit_group resumed>)   = ?
[pid  7076] +++ exited with 0 +++
[pid  7077] +++ exited with 0 +++
[pid  7075] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1993, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./664", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./664", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./664/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./664/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./664/binderfs")    = 0
[pid  5067] umount2("./664/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./664/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./664/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./664/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./664/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./664/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./664")              = 0
[pid  5067] mkdir("./665", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1996
./strace-static-x86_64: Process 7078 attached
[pid  7078] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7078] chdir("./665")              = 0
[pid  7078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7078] setpgid(0, 0)               = 0
[pid  7078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7078] write(3, "1000", 4)         = 4
[pid  7078] close(3)                    = 0
[pid  7078] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7078] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7078] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7078] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1997], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 1997
./strace-static-x86_64: Process 7079 attached
[pid  7079] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7079] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7078] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7079] <... futex resumed>)        = 0
[pid  7078] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7079] memfd_create("syzkaller", 0) = 3
[pid  7079] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7079] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7079] munmap(0x7ff042e09000, 2097152) = 0
[pid  7079] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7079] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7079] close(3)                    = 0
[pid  7079] mkdir("./file0", 0777)      = 0
[pid  7079] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7079] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7079] chdir("./file0")            = 0
[pid  7079] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7079] close(4)                    = 0
[pid  7079] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7078] <... futex resumed>)        = 0
[pid  7078] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7079] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7078] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7079] <... mkdirat resumed>)      = 0
[pid  7078] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7078] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7078] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[1998], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 1998
[pid  7078] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7078] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7080 attached
 <unfinished ...>
[pid  7079] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7080] set_robust_list(0x7ff0430089e0, 24) = 0
[  158.827304][ T7079] loop0: detected capacity change from 0 to 4096
[pid  7080] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7079] <... futex resumed>)        = 0
[pid  7079] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7080] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7078] <... futex resumed>)        = 0
[pid  7078] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7078] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7079] <... futex resumed>)        = 0
[pid  7079] creat("./file0", 0406 <unfinished ...>
[pid  7080] <... futex resumed>)        = 1
[pid  7080] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7079] <... creat resumed>)        = 4
[pid  7079] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7078] <... futex resumed>)        = 0
[pid  7078] close(3)                    = 0
[pid  7079] <... futex resumed>)        = 1
[pid  7078] close(4 <unfinished ...>
[pid  7079] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7078] <... close resumed>)        = 0
[pid  7078] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7078] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7078] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7078] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7078] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7078] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7078] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7078] exit_group(0 <unfinished ...>
[pid  7080] <... futex resumed>)        = ?
[pid  7079] <... futex resumed>)        = ?
[pid  7078] <... exit_group resumed>)   = ?
[pid  7080] +++ exited with 0 +++
[pid  7079] +++ exited with 0 +++
[pid  7078] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1996, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./665", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./665", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./665/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./665/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./665/binderfs")    = 0
[pid  5067] umount2("./665/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./665/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./665/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./665/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./665/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./665/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./665")              = 0
[pid  5067] mkdir("./666", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 1999
./strace-static-x86_64: Process 7081 attached
[pid  7081] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7081] chdir("./666")              = 0
[pid  7081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7081] setpgid(0, 0)               = 0
[pid  7081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7081] write(3, "1000", 4)         = 4
[pid  7081] close(3)                    = 0
[pid  7081] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7081] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7081] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7081] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7081] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2000], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2000
[pid  7081] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7081] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7082 attached
 <unfinished ...>
[pid  7082] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7082] memfd_create("syzkaller", 0) = 3
[pid  7082] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7082] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7082] munmap(0x7ff042e09000, 2097152) = 0
[pid  7082] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7082] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7082] close(3)                    = 0
[pid  7082] mkdir("./file0", 0777)      = 0
[pid  7082] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7082] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7082] chdir("./file0")            = 0
[pid  7082] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7082] close(4)                    = 0
[pid  7082] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7081] <... futex resumed>)        = 0
[pid  7081] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7081] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7081] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7081] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7081] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2001], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2001
[pid  7081] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7081] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7082] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7083 attached
 <unfinished ...>
[pid  7083] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7083] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7082] <... mkdirat resumed>)      = 0
[pid  7082] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7082] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7083] <... chdir resumed>)        = 0
[pid  7083] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7081] <... futex resumed>)        = 0
[pid  7081] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7081] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7082] <... futex resumed>)        = 0
[pid  7082] creat("./file0", 0406 <unfinished ...>
[pid  7083] <... futex resumed>)        = 1
[pid  7083] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7082] <... creat resumed>)        = 4
[  158.988151][ T7082] loop0: detected capacity change from 0 to 4096
[pid  7082] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7081] <... futex resumed>)        = 0
[pid  7082] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7081] close(3)                    = 0
[pid  7081] close(4)                    = 0
[pid  7081] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7081] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7081] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7081] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7081] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7081] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7081] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7081] exit_group(0 <unfinished ...>
[pid  7083] <... futex resumed>)        = ?
[pid  7081] <... exit_group resumed>)   = ?
[pid  7082] <... futex resumed>)        = ?
[pid  7083] +++ exited with 0 +++
[pid  7082] +++ exited with 0 +++
[pid  7081] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=1999, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./666", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./666", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./666/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./666/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./666/binderfs")    = 0
[pid  5067] umount2("./666/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./666/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./666/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./666/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./666/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./666/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./666")              = 0
[pid  5067] mkdir("./667", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2002
./strace-static-x86_64: Process 7084 attached
[pid  7084] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7084] chdir("./667")              = 0
[pid  7084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7084] setpgid(0, 0)               = 0
[pid  7084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7084] write(3, "1000", 4)         = 4
[pid  7084] close(3)                    = 0
[pid  7084] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7084] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7084] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7084] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7084] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2003], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2003
[pid  7084] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7084] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7085 attached
 <unfinished ...>
[pid  7085] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7085] memfd_create("syzkaller", 0) = 3
[pid  7085] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7085] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7085] munmap(0x7ff042e09000, 2097152) = 0
[pid  7085] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7085] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7085] close(3)                    = 0
[pid  7085] mkdir("./file0", 0777)      = 0
[pid  7085] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7085] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7085] chdir("./file0")            = 0
[pid  7085] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7085] close(4)                    = 0
[pid  7085] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7085] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7084] <... futex resumed>)        = 0
[pid  7084] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7084] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7084] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7084] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7084] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2004], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2004
[pid  7084] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7084] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7085] <... futex resumed>)        = 0
[pid  7085] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7085] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7085] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7086 attached
 <unfinished ...>
[pid  7086] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7086] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7086] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7084] <... futex resumed>)        = 0
[pid  7084] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7084] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7086] <... futex resumed>)        = 1
[pid  7086] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7085] <... futex resumed>)        = 0
[pid  7085] creat("./file0", 0406)      = 4
[pid  7085] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7084] <... futex resumed>)        = 0
[pid  7084] close(3)                    = 0
[pid  7084] close(4)                    = 0
[pid  7084] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7084] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7084] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7084] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7084] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7084] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7084] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7084] exit_group(0 <unfinished ...>
[pid  7086] <... futex resumed>)        = ?
[pid  7084] <... exit_group resumed>)   = ?
[pid  7086] +++ exited with 0 +++
[  159.150387][ T7085] loop0: detected capacity change from 0 to 4096
[pid  7085] +++ exited with 0 +++
[pid  7084] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2002, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./667", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./667", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./667/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./667/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./667/binderfs")    = 0
[pid  5067] umount2("./667/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./667/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./667/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./667/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./667/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./667/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./667")              = 0
[pid  5067] mkdir("./668", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2005
./strace-static-x86_64: Process 7087 attached
[pid  7087] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7087] chdir("./668")              = 0
[pid  7087] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7087] setpgid(0, 0)               = 0
[pid  7087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7087] write(3, "1000", 4)         = 4
[pid  7087] close(3)                    = 0
[pid  7087] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7087] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7087] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7087] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7088 attached
, parent_tid=[2006], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2006
[pid  7088] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7087] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7088] <... set_robust_list resumed>) = 0
[pid  7087] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7088] memfd_create("syzkaller", 0) = 3
[pid  7088] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7088] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7088] munmap(0x7ff042e09000, 2097152) = 0
[pid  7088] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7088] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7088] close(3)                    = 0
[pid  7088] mkdir("./file0", 0777)      = 0
[pid  7088] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7088] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7088] chdir("./file0")            = 0
[pid  7088] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7088] close(4)                    = 0
[pid  7088] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7088] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7087] <... futex resumed>)        = 0
[pid  7087] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7087] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7087] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7087] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2007], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2007
[pid  7087] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7087] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7088] <... futex resumed>)        = 0
[pid  7088] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7089 attached
 <unfinished ...>
[pid  7089] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7089] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7088] <... mkdirat resumed>)      = 0
[pid  7088] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7089] <... chdir resumed>)        = 0
[pid  7089] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7087] <... futex resumed>)        = 0
[pid  7087] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7087] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7089] <... futex resumed>)        = 1
[pid  7088] creat("./file0", 0406 <unfinished ...>
[pid  7089] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7088] <... creat resumed>)        = 4
[pid  7088] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7087] <... futex resumed>)        = 0
[pid  7087] close(3)                    = 0
[pid  7087] close(4)                    = 0
[pid  7087] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7087] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7087] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7087] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7087] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7087] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(22 <unfinished ...>
[pid  7088] <... futex resumed>)        = 1
[pid  7087] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7088] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7087] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(26)                   = -1 EBADF (Bad file descriptor)
[  159.288358][ T7088] loop0: detected capacity change from 0 to 4096
[pid  7087] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7087] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7087] exit_group(0 <unfinished ...>
[pid  7089] <... futex resumed>)        = ?
[pid  7088] <... futex resumed>)        = ?
[pid  7087] <... exit_group resumed>)   = ?
[pid  7089] +++ exited with 0 +++
[pid  7088] +++ exited with 0 +++
[pid  7087] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2005, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./668", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./668", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./668/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./668/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./668/binderfs")    = 0
[pid  5067] umount2("./668/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./668/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./668/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./668/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./668/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./668/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./668")              = 0
[pid  5067] mkdir("./669", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2008
./strace-static-x86_64: Process 7090 attached
[pid  7090] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7090] chdir("./669")              = 0
[pid  7090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7090] setpgid(0, 0)               = 0
[pid  7090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7090] write(3, "1000", 4)         = 4
[pid  7090] close(3)                    = 0
[pid  7090] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7090] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7090] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7090] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7090] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2009], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2009
./strace-static-x86_64: Process 7091 attached
[pid  7090] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7090] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7091] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7091] memfd_create("syzkaller", 0) = 3
[pid  7091] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7091] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7091] munmap(0x7ff042e09000, 2097152) = 0
[pid  7091] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7091] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7091] close(3)                    = 0
[pid  7091] mkdir("./file0", 0777)      = 0
[pid  7091] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7091] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7091] chdir("./file0")            = 0
[pid  7091] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7091] close(4)                    = 0
[pid  7091] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7090] <... futex resumed>)        = 0
[pid  7090] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7090] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7090] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7090] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7090] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2010], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2010
[pid  7090] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7090] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7091] <... futex resumed>)        = 1
[  159.443016][ T7091] loop0: detected capacity change from 0 to 4096
[pid  7091] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7091] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7091] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7092 attached
 <unfinished ...>
[pid  7092] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7092] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7092] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7090] <... futex resumed>)        = 0
[pid  7090] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7090] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7091] <... futex resumed>)        = 0
[pid  7091] creat("./file0", 0406 <unfinished ...>
[pid  7092] <... futex resumed>)        = 1
[pid  7092] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7091] <... creat resumed>)        = 4
[pid  7091] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7090] <... futex resumed>)        = 0
[pid  7090] close(3)                    = 0
[pid  7090] close(4)                    = 0
[pid  7090] close(5 <unfinished ...>
[pid  7091] <... futex resumed>)        = 1
[pid  7090] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7091] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7090] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7090] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7090] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7090] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7090] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7090] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7090] exit_group(0 <unfinished ...>
[pid  7092] <... futex resumed>)        = ?
[pid  7091] <... futex resumed>)        = ?
[pid  7090] <... exit_group resumed>)   = ?
[pid  7092] +++ exited with 0 +++
[pid  7091] +++ exited with 0 +++
[pid  7090] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2008, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./669", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./669", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./669/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./669/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./669/binderfs")    = 0
[pid  5067] umount2("./669/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./669/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./669/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./669/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./669/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./669/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./669")              = 0
[pid  5067] mkdir("./670", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2011
./strace-static-x86_64: Process 7093 attached
[pid  7093] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7093] chdir("./670")              = 0
[pid  7093] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7093] setpgid(0, 0)               = 0
[pid  7093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7093] write(3, "1000", 4)         = 4
[pid  7093] close(3)                    = 0
[pid  7093] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7093] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7093] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7093] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7093] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7094 attached
, parent_tid=[2012], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2012
[pid  7094] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7093] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7094] <... set_robust_list resumed>) = 0
[pid  7093] <... futex resumed>)        = 0
[pid  7093] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7094] memfd_create("syzkaller", 0) = 3
[pid  7094] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7094] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7094] munmap(0x7ff042e09000, 2097152) = 0
[pid  7094] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7094] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7094] close(3)                    = 0
[pid  7094] mkdir("./file0", 0777)      = 0
[pid  7094] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7094] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7094] chdir("./file0")            = 0
[pid  7094] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7094] close(4)                    = 0
[pid  7094] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7093] <... futex resumed>)        = 0
[pid  7093] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7093] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7093] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7093] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7094] <... futex resumed>)        = 1
[pid  7093] <... mprotect resumed>)     = 0
[pid  7094] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7093] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7095 attached
 <unfinished ...>
[pid  7095] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7093] <... clone resumed>, parent_tid=[2013], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2013
[pid  7095] <... set_robust_list resumed>) = 0
[pid  7095] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7093] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7095] <... futex resumed>)        = 0
[pid  7093] <... futex resumed>)        = 1
[pid  7095] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7093] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7094] <... mkdirat resumed>)      = 0
[pid  7095] <... chdir resumed>)        = 0
[pid  7094] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7095] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7094] <... futex resumed>)        = 0
[pid  7095] <... futex resumed>)        = 1
[pid  7093] <... futex resumed>)        = 0
[pid  7093] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7093] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7095] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[  159.590445][ T7094] loop0: detected capacity change from 0 to 4096
[pid  7094] creat("./file0", 0406)      = 4
[pid  7094] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7093] <... futex resumed>)        = 0
[pid  7093] close(3)                    = 0
[pid  7093] close(4 <unfinished ...>
[pid  7094] <... futex resumed>)        = 1
[pid  7093] <... close resumed>)        = 0
[pid  7094] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7093] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7093] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7093] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7093] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7093] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7093] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7093] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7093] exit_group(0 <unfinished ...>
[pid  7095] <... futex resumed>)        = ?
[pid  7094] <... futex resumed>)        = ?
[pid  7093] <... exit_group resumed>)   = ?
[pid  7095] +++ exited with 0 +++
[pid  7094] +++ exited with 0 +++
[pid  7093] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2011, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./670", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./670", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./670/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./670/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./670/binderfs")    = 0
[pid  5067] umount2("./670/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./670/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./670/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./670/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./670/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./670/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./670")              = 0
[pid  5067] mkdir("./671", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2014
./strace-static-x86_64: Process 7096 attached
[pid  7096] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7096] chdir("./671")              = 0
[pid  7096] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7096] setpgid(0, 0)               = 0
[pid  7096] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7096] write(3, "1000", 4)         = 4
[pid  7096] close(3)                    = 0
[pid  7096] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7096] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7096] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7096] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7096] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7097 attached
, parent_tid=[2015], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2015
[pid  7097] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7097] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7096] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7097] <... futex resumed>)        = 0
[pid  7096] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7097] memfd_create("syzkaller", 0) = 3
[pid  7097] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7097] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7097] munmap(0x7ff042e09000, 2097152) = 0
[pid  7097] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7097] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7097] close(3)                    = 0
[pid  7097] mkdir("./file0", 0777)      = 0
[pid  7097] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7097] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7097] chdir("./file0")            = 0
[pid  7097] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7097] close(4)                    = 0
[pid  7097] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7096] <... futex resumed>)        = 0
[pid  7096] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7096] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7096] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7096] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7096] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2016], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2016
[pid  7096] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7096] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7097] <... futex resumed>)        = 1
[pid  7097] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7097] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7097] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7098 attached
 <unfinished ...>
[pid  7098] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7098] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7098] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7096] <... futex resumed>)        = 0
[pid  7098] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7096] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7097] <... futex resumed>)        = 0
[pid  7096] <... futex resumed>)        = 1
[pid  7097] creat("./file0", 0406 <unfinished ...>
[pid  7096] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7097] <... creat resumed>)        = 4
[pid  7097] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7096] <... futex resumed>)        = 0
[pid  7096] close(3)                    = 0
[pid  7096] close(4)                    = 0
[pid  7096] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7096] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7096] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7096] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7096] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7096] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(14 <unfinished ...>
[pid  7097] <... futex resumed>)        = 1
[pid  7096] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7097] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7096] close(15)                   = -1 EBADF (Bad file descriptor)
[  159.742394][ T7097] loop0: detected capacity change from 0 to 4096
[pid  7096] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7096] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7096] exit_group(0 <unfinished ...>
[pid  7097] <... futex resumed>)        = ?
[pid  7096] <... exit_group resumed>)   = ?
[pid  7098] <... futex resumed>)        = ?
[pid  7097] +++ exited with 0 +++
[pid  7098] +++ exited with 0 +++
[pid  7096] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2014, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./671", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./671", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./671/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./671/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./671/binderfs")    = 0
[pid  5067] umount2("./671/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./671/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./671/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./671/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./671/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./671/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./671")              = 0
[pid  5067] mkdir("./672", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2017
./strace-static-x86_64: Process 7099 attached
[pid  7099] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7099] chdir("./672")              = 0
[pid  7099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7099] setpgid(0, 0)               = 0
[pid  7099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7099] write(3, "1000", 4)         = 4
[pid  7099] close(3)                    = 0
[pid  7099] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7099] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7099] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7099] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7099] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7100 attached
 <unfinished ...>
[pid  7100] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7099] <... clone resumed>, parent_tid=[2018], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2018
[pid  7099] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7099] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7100] <... set_robust_list resumed>) = 0
[pid  7100] memfd_create("syzkaller", 0) = 3
[pid  7100] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7100] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7100] munmap(0x7ff042e09000, 2097152) = 0
[pid  7100] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7100] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7100] close(3)                    = 0
[pid  7100] mkdir("./file0", 0777)      = 0
[pid  7100] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7100] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7100] chdir("./file0")            = 0
[pid  7100] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7100] close(4)                    = 0
[pid  7100] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7100] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7099] <... futex resumed>)        = 0
[pid  7099] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7100] <... futex resumed>)        = 0
[pid  7099] <... futex resumed>)        = 1
[pid  7099] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7100] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7099] <... futex resumed>)        = 0
[pid  7099] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7099] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7100] <... mkdirat resumed>)      = 0
[pid  7099] <... mprotect resumed>)     = 0
[pid  7100] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7099] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7100] <... futex resumed>)        = 0
[pid  7100] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7099] <... clone resumed>, parent_tid=[2019], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2019
[pid  7099] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7099] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7101 attached
 <unfinished ...>
[pid  7101] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7101] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7101] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7099] <... futex resumed>)        = 0
[pid  7099] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7101] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7099] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7100] <... futex resumed>)        = 0
[pid  7100] creat("./file0", 0406)      = 4
[pid  7100] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7099] <... futex resumed>)        = 0
[pid  7100] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7099] close(3)                    = 0
[pid  7099] close(4)                    = 0
[pid  7099] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7099] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7099] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7099] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7099] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7099] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(13)                   = -1 EBADF (Bad file descriptor)
[  159.902771][ T7100] loop0: detected capacity change from 0 to 4096
[pid  7099] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7099] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7099] exit_group(0 <unfinished ...>
[pid  7101] <... futex resumed>)        = ?
[pid  7100] <... futex resumed>)        = ?
[pid  7099] <... exit_group resumed>)   = ?
[pid  7101] +++ exited with 0 +++
[pid  7100] +++ exited with 0 +++
[pid  7099] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2017, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./672", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./672", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./672/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./672/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./672/binderfs")    = 0
[pid  5067] umount2("./672/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./672/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./672/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./672/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./672/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./672/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./672")              = 0
[pid  5067] mkdir("./673", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2020
./strace-static-x86_64: Process 7102 attached
[pid  7102] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7102] chdir("./673")              = 0
[pid  7102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7102] setpgid(0, 0)               = 0
[pid  7102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7102] write(3, "1000", 4)         = 4
[pid  7102] close(3)                    = 0
[pid  7102] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7102] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7102] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7102] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7102] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7103 attached
, parent_tid=[2021], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2021
[pid  7103] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7102] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7103] <... set_robust_list resumed>) = 0
[pid  7102] <... futex resumed>)        = 0
[pid  7102] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7103] memfd_create("syzkaller", 0) = 3
[pid  7103] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7103] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7103] munmap(0x7ff042e09000, 2097152) = 0
[pid  7103] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7103] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7103] close(3)                    = 0
[pid  7103] mkdir("./file0", 0777)      = 0
[pid  7103] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7103] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7103] chdir("./file0")            = 0
[pid  7103] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7103] close(4)                    = 0
[pid  7103] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7102] <... futex resumed>)        = 0
[pid  7102] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7102] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7102] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7103] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7102] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7102] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2022], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2022
[pid  7102] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7102] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7103] <... mkdirat resumed>)      = 0
[pid  7103] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7103] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7104 attached
 <unfinished ...>
[pid  7104] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7104] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7104] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7102] <... futex resumed>)        = 0
[pid  7102] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7102] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7104] <... futex resumed>)        = 1
[  160.063873][ T7103] loop0: detected capacity change from 0 to 4096
[pid  7104] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7103] <... futex resumed>)        = 0
[pid  7103] creat("./file0", 0406)      = 4
[pid  7103] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7102] <... futex resumed>)        = 0
[pid  7103] <... futex resumed>)        = 1
[pid  7103] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7102] close(3)                    = 0
[pid  7102] close(4)                    = 0
[pid  7102] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7102] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7102] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7102] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7102] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7102] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7102] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7102] exit_group(0 <unfinished ...>
[pid  7104] <... futex resumed>)        = ?
[pid  7103] <... futex resumed>)        = ?
[pid  7102] <... exit_group resumed>)   = ?
[pid  7104] +++ exited with 0 +++
[pid  7103] +++ exited with 0 +++
[pid  7102] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2020, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./673", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./673", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./673/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./673/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./673/binderfs")    = 0
[pid  5067] umount2("./673/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./673/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./673/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./673/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./673/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./673/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./673")              = 0
[pid  5067] mkdir("./674", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2023
./strace-static-x86_64: Process 7105 attached
[pid  7105] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7105] chdir("./674")              = 0
[pid  7105] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7105] setpgid(0, 0)               = 0
[pid  7105] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7105] write(3, "1000", 4)         = 4
[pid  7105] close(3)                    = 0
[pid  7105] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7105] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7105] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7105] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7105] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2024], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2024
[pid  7105] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7105] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7106 attached
 <unfinished ...>
[pid  7106] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7106] memfd_create("syzkaller", 0) = 3
[pid  7106] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7106] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7106] munmap(0x7ff042e09000, 2097152) = 0
[pid  7106] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7106] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7106] close(3)                    = 0
[pid  7106] mkdir("./file0", 0777)      = 0
[pid  7106] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7106] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7106] chdir("./file0")            = 0
[pid  7106] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7106] close(4)                    = 0
[pid  7106] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7106] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7105] <... futex resumed>)        = 0
[pid  7105] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7106] <... futex resumed>)        = 0
[pid  7105] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7105] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7106] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7105] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7105] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7105] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2025], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2025
./strace-static-x86_64: Process 7107 attached
[pid  7105] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7107] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7105] <... futex resumed>)        = 0
[pid  7107] <... set_robust_list resumed>) = 0
[pid  7105] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7107] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7106] <... mkdirat resumed>)      = 0
[pid  7107] <... chdir resumed>)        = 0
[pid  7107] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7106] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7105] <... futex resumed>)        = 0
[pid  7107] <... futex resumed>)        = 1
[pid  7106] <... futex resumed>)        = 0
[pid  7105] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7107] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7106] creat("./file0", 0406 <unfinished ...>
[pid  7105] <... futex resumed>)        = 0
[pid  7105] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7106] <... creat resumed>)        = 4
[pid  7106] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7105] <... futex resumed>)        = 0
[pid  7105] close(3 <unfinished ...>
[pid  7106] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7105] <... close resumed>)        = 0
[pid  7105] close(4)                    = 0
[pid  7105] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7105] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7105] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7105] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7105] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7105] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(15)                   = -1 EBADF (Bad file descriptor)
[  160.228758][ T7106] loop0: detected capacity change from 0 to 4096
[pid  7105] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7105] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7105] exit_group(0 <unfinished ...>
[pid  7107] <... futex resumed>)        = ?
[pid  7106] <... futex resumed>)        = ?
[pid  7105] <... exit_group resumed>)   = ?
[pid  7107] +++ exited with 0 +++
[pid  7106] +++ exited with 0 +++
[pid  7105] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2023, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./674", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./674", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./674/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./674/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./674/binderfs")    = 0
[pid  5067] umount2("./674/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./674/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./674/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./674/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./674/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./674/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./674")              = 0
[pid  5067] mkdir("./675", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2026
./strace-static-x86_64: Process 7108 attached
[pid  7108] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7108] chdir("./675")              = 0
[pid  7108] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7108] setpgid(0, 0)               = 0
[pid  7108] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7108] write(3, "1000", 4)         = 4
[pid  7108] close(3)                    = 0
[pid  7108] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7108] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7108] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7108] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7108] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7109 attached
, parent_tid=[2027], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2027
[pid  7108] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7108] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7109] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7109] memfd_create("syzkaller", 0) = 3
[pid  7109] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7109] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7109] munmap(0x7ff042e09000, 2097152) = 0
[pid  7109] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7109] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7109] close(3)                    = 0
[pid  7109] mkdir("./file0", 0777)      = 0
[pid  7109] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7109] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7109] chdir("./file0")            = 0
[pid  7109] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7109] close(4)                    = 0
[pid  7109] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7108] <... futex resumed>)        = 0
[pid  7108] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7108] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7108] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7108] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7108] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2028], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2028
[pid  7108] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7108] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7109] <... futex resumed>)        = 1
[pid  7109] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7110 attached
) = 0
[pid  7109] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7109] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7110] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7110] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7110] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7108] <... futex resumed>)        = 0
[pid  7108] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7108] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7109] <... futex resumed>)        = 0
[pid  7109] creat("./file0", 0406 <unfinished ...>
[pid  7110] <... futex resumed>)        = 1
[  160.387703][ T7109] loop0: detected capacity change from 0 to 4096
[pid  7110] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7109] <... creat resumed>)        = 4
[pid  7109] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7108] <... futex resumed>)        = 0
[pid  7109] <... futex resumed>)        = 1
[pid  7109] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7108] close(3)                    = 0
[pid  7108] close(4)                    = 0
[pid  7108] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7108] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7108] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7108] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7108] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7108] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7108] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7108] exit_group(0 <unfinished ...>
[pid  7110] <... futex resumed>)        = ?
[pid  7109] <... futex resumed>)        = ?
[pid  7108] <... exit_group resumed>)   = ?
[pid  7109] +++ exited with 0 +++
[pid  7110] +++ exited with 0 +++
[pid  7108] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2026, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./675", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./675", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./675/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./675/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./675/binderfs")    = 0
[pid  5067] umount2("./675/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./675/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./675/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./675/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./675/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./675/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./675")              = 0
[pid  5067] mkdir("./676", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7111 attached
, child_tidptr=0x5555570e75d0) = 2029
[pid  7111] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7111] chdir("./676")              = 0
[pid  7111] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7111] setpgid(0, 0)               = 0
[pid  7111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7111] write(3, "1000", 4)         = 4
[pid  7111] close(3)                    = 0
[pid  7111] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7111] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7111] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7111] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7111] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7112 attached
, parent_tid=[2030], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2030
[pid  7112] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7112] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7111] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7112] <... futex resumed>)        = 0
[pid  7111] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7112] memfd_create("syzkaller", 0) = 3
[pid  7112] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7112] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7112] munmap(0x7ff042e09000, 2097152) = 0
[pid  7112] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7112] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7112] close(3)                    = 0
[pid  7112] mkdir("./file0", 0777)      = 0
[pid  7112] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7112] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7112] chdir("./file0")            = 0
[pid  7112] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7112] close(4)                    = 0
[pid  7112] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7111] <... futex resumed>)        = 0
[pid  7112] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)
[pid  7111] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7112] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7111] <... futex resumed>)        = 0
[pid  7111] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7112] <... mkdirat resumed>)      = 0
[pid  7112] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7111] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7112] <... futex resumed>)        = 0
[pid  7111] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7112] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7111] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7111] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7113 attached
, parent_tid=[2031], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2031
[pid  7111] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7111] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7113] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7113] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7113] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7111] <... futex resumed>)        = 0
[pid  7113] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7111] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7112] <... futex resumed>)        = 0
[pid  7111] <... futex resumed>)        = 1
[pid  7112] creat("./file0", 0406)      = 4
[pid  7111] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7112] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7111] <... futex resumed>)        = 0
[pid  7112] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7111] close(3)                    = 0
[pid  7111] close(4)                    = 0
[pid  7111] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7111] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7111] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7111] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7111] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7111] close(10)                   = -1 EBADF (Bad file descriptor)
[  160.545307][ T7112] loop0: detected capacity change from 0 to 4096
[pid  7111] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7111] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7111] exit_group(0 <unfinished ...>
[pid  7113] <... futex resumed>)        = ?
[pid  7112] <... futex resumed>)        = ?
[pid  7111] <... exit_group resumed>)   = ?
[pid  7113] +++ exited with 0 +++
[pid  7112] +++ exited with 0 +++
[pid  7111] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2029, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./676", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./676", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./676/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./676/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./676/binderfs")    = 0
[pid  5067] umount2("./676/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./676/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./676/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./676/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./676/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./676/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./676")              = 0
[pid  5067] mkdir("./677", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7114 attached
 <unfinished ...>
[pid  7114] set_robust_list(0x5555570e75e0, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2032
[pid  7114] <... set_robust_list resumed>) = 0
[pid  7114] chdir("./677")              = 0
[pid  7114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7114] setpgid(0, 0)               = 0
[pid  7114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7114] write(3, "1000", 4)         = 4
[pid  7114] close(3)                    = 0
[pid  7114] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7114] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7114] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7114] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7114] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2033], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2033
[pid  7114] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7115 attached
[pid  7114] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7115] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7115] memfd_create("syzkaller", 0) = 3
[pid  7115] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7115] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7115] munmap(0x7ff042e09000, 2097152) = 0
[pid  7115] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7115] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7115] close(3)                    = 0
[pid  7115] mkdir("./file0", 0777)      = 0
[pid  7115] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7115] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7115] chdir("./file0")            = 0
[pid  7115] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7115] close(4)                    = 0
[pid  7115] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7114] <... futex resumed>)        = 0
[pid  7115] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7114] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7114] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7114] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7114] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7114] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2034], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2034
[pid  7114] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7114] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7116 attached
 <unfinished ...>
[pid  7116] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7116] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7116] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7115] <... mkdirat resumed>)      = 0
[pid  7114] <... futex resumed>)        = 0
[pid  7114] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7115] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7114] <... futex resumed>)        = 0
[pid  7114] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7115] <... futex resumed>)        = 0
[pid  7116] <... futex resumed>)        = 1
[pid  7115] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7116] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7116] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7114] <... futex resumed>)        = 0
[pid  7114] close(3)                    = 0
[pid  7114] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7114] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7114] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7114] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7114] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7114] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7114] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7116] <... futex resumed>)        = 1
[pid  7114] close(25 <unfinished ...>
[pid  7116] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7114] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7114] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7114] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7114] exit_group(0 <unfinished ...>
[pid  7116] <... futex resumed>)        = ?
[pid  7115] <... futex resumed>)        = ?
[pid  7114] <... exit_group resumed>)   = ?
[pid  7116] +++ exited with 0 +++
[pid  7115] +++ exited with 0 +++
[pid  7114] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2032, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./677", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./677", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./677/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./677/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./677/binderfs")    = 0
[  160.699414][ T7115] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./677/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./677/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./677/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./677/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./677/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./677/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./677")              = 0
[pid  5067] mkdir("./678", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2035
./strace-static-x86_64: Process 7117 attached
[pid  7117] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7117] chdir("./678")              = 0
[pid  7117] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7117] setpgid(0, 0)               = 0
[pid  7117] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7117] write(3, "1000", 4)         = 4
[pid  7117] close(3)                    = 0
[pid  7117] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7117] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7117] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7117] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7117] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7118 attached
, parent_tid=[2036], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2036
[pid  7117] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7117] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7118] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7118] memfd_create("syzkaller", 0) = 3
[pid  7118] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7118] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7118] munmap(0x7ff042e09000, 2097152) = 0
[pid  7118] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7118] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7118] close(3)                    = 0
[pid  7118] mkdir("./file0", 0777)      = 0
[pid  7118] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7118] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7118] chdir("./file0")            = 0
[pid  7118] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7118] close(4)                    = 0
[pid  7118] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7117] <... futex resumed>)        = 0
[pid  7117] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7117] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7117] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7117] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[  160.828044][ T7118] loop0: detected capacity change from 0 to 4096
[pid  7117] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7119 attached
 <unfinished ...>
[pid  7119] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7119] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7117] <... clone resumed>, parent_tid=[2037], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2037
[pid  7117] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7119] <... futex resumed>)        = 0
[pid  7117] <... futex resumed>)        = 1
[pid  7117] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7119] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7118] <... futex resumed>)        = 1
[pid  7119] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7119] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7117] <... futex resumed>)        = 0
[pid  7117] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7117] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7119] <... futex resumed>)        = 1
[pid  7119] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7119] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7117] <... futex resumed>)        = 0
[pid  7119] <... futex resumed>)        = 1
[pid  7119] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7118] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7118] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7118] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7117] close(3)                    = 0
[pid  7117] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7117] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7117] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7117] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7117] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7117] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7117] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7117] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7117] exit_group(0 <unfinished ...>
[pid  7119] <... futex resumed>)        = ?
[pid  7118] <... futex resumed>)        = ?
[pid  7117] <... exit_group resumed>)   = ?
[pid  7118] +++ exited with 0 +++
[pid  7119] +++ exited with 0 +++
[pid  7117] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2035, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./678", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./678", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./678/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./678/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./678/binderfs")    = 0
[pid  5067] umount2("./678/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./678/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./678/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./678/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./678/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./678/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./678")              = 0
[pid  5067] mkdir("./679", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2038
./strace-static-x86_64: Process 7120 attached
[pid  7120] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7120] chdir("./679")              = 0
[pid  7120] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7120] setpgid(0, 0)               = 0
[pid  7120] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7120] write(3, "1000", 4)         = 4
[pid  7120] close(3)                    = 0
[pid  7120] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7120] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7120] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7120] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7120] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2039], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2039
[pid  7120] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7120] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7121 attached
 <unfinished ...>
[pid  7121] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7121] memfd_create("syzkaller", 0) = 3
[pid  7121] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7121] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7121] munmap(0x7ff042e09000, 2097152) = 0
[pid  7121] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7121] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7121] close(3)                    = 0
[pid  7121] mkdir("./file0", 0777)      = 0
[pid  7121] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7121] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7121] chdir("./file0")            = 0
[pid  7121] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7121] close(4)                    = 0
[pid  7121] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7120] <... futex resumed>)        = 0
[pid  7121] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7120] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7121] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7120] <... futex resumed>)        = 0
[pid  7121] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7120] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7120] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7120] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7121] <... mkdirat resumed>)      = 0
[pid  7120] <... mprotect resumed>)     = 0
[pid  7121] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7120] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7121] <... futex resumed>)        = 0
./strace-static-x86_64: Process 7122 attached
[pid  7121] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7122] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7120] <... clone resumed>, parent_tid=[2040], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2040
[pid  7122] <... set_robust_list resumed>) = 0
[pid  7120] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7122] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7120] <... futex resumed>)        = 0
[pid  7122] <... chdir resumed>)        = 0
[pid  7120] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7122] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7120] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7122] <... futex resumed>)        = 0
[pid  7120] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7122] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7121] <... futex resumed>)        = 0
[pid  7120] <... futex resumed>)        = 1
[pid  7121] creat("./file0", 0406 <unfinished ...>
[pid  7120] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7121] <... creat resumed>)        = 4
[pid  7121] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[  160.987868][ T7121] loop0: detected capacity change from 0 to 4096
[pid  7120] <... futex resumed>)        = 0
[pid  7121] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7120] close(3)                    = 0
[pid  7120] close(4)                    = 0
[pid  7120] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7120] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7120] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7120] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7120] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7120] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7120] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7120] exit_group(0 <unfinished ...>
[pid  7121] <... futex resumed>)        = ?
[pid  7120] <... exit_group resumed>)   = ?
[pid  7121] +++ exited with 0 +++
[pid  7122] <... futex resumed>)        = ?
[pid  7122] +++ exited with 0 +++
[pid  7120] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2038, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./679", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./679", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./679/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./679/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./679/binderfs")    = 0
[pid  5067] umount2("./679/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./679/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./679/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./679/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./679/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./679/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./679")              = 0
[pid  5067] mkdir("./680", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7123 attached
 <unfinished ...>
[pid  7123] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7123] chdir("./680" <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2041
[pid  7123] <... chdir resumed>)        = 0
[pid  7123] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7123] setpgid(0, 0)               = 0
[pid  7123] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7123] write(3, "1000", 4)         = 4
[pid  7123] close(3)                    = 0
[pid  7123] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7123] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7123] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7123] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7123] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2042], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2042
[pid  7123] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7123] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7124 attached
 <unfinished ...>
[pid  7124] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7124] memfd_create("syzkaller", 0) = 3
[pid  7124] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7124] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7124] munmap(0x7ff042e09000, 2097152) = 0
[pid  7124] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7124] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7124] close(3)                    = 0
[pid  7124] mkdir("./file0", 0777)      = 0
[pid  7124] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7124] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7124] chdir("./file0")            = 0
[pid  7124] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7124] close(4)                    = 0
[pid  7124] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7123] <... futex resumed>)        = 0
[pid  7123] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7124] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7123] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7123] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7123] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7123] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7125 attached
, parent_tid=[2043], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2043
[pid  7125] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7125] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7123] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7123] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7125] <... futex resumed>)        = 0
[pid  7124] <... mkdirat resumed>)      = 0
[pid  7124] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7124] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7125] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7125] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7123] <... futex resumed>)        = 0
[pid  7123] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7125] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7123] <... futex resumed>)        = 1
[pid  7123] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7124] <... futex resumed>)        = 0
[pid  7124] creat("./file0", 0406)      = 4
[pid  7124] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7123] <... futex resumed>)        = 0
[pid  7124] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7123] close(3)                    = 0
[pid  7123] close(4)                    = 0
[pid  7123] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7123] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7123] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7123] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7123] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7123] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(16)                   = -1 EBADF (Bad file descriptor)
[  161.159080][ T7124] loop0: detected capacity change from 0 to 4096
[pid  7123] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7123] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7123] exit_group(0)               = ?
[pid  7125] <... futex resumed>)        = ?
[pid  7124] <... futex resumed>)        = ?
[pid  7125] +++ exited with 0 +++
[pid  7124] +++ exited with 0 +++
[pid  7123] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2041, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./680", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./680", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./680/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./680/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./680/binderfs")    = 0
[pid  5067] umount2("./680/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./680/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./680/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./680/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./680/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./680/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./680")              = 0
[pid  5067] mkdir("./681", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2044
./strace-static-x86_64: Process 7126 attached
[pid  7126] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7126] chdir("./681")              = 0
[pid  7126] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7126] setpgid(0, 0)               = 0
[pid  7126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7126] write(3, "1000", 4)         = 4
[pid  7126] close(3)                    = 0
[pid  7126] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7126] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7126] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7126] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7126] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2045], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2045
./strace-static-x86_64: Process 7127 attached
[pid  7126] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7126] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7127] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7127] memfd_create("syzkaller", 0) = 3
[pid  7127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7127] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7127] munmap(0x7ff042e09000, 2097152) = 0
[pid  7127] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7127] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7127] close(3)                    = 0
[pid  7127] mkdir("./file0", 0777)      = 0
[pid  7127] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7127] chdir("./file0")            = 0
[pid  7127] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7127] close(4)                    = 0
[pid  7127] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7126] <... futex resumed>)        = 0
[pid  7127] <... futex resumed>)        = 1
[pid  7126] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7126] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7127] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7126] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7126] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7126] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2046], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2046
[pid  7126] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7126] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7127] <... mkdirat resumed>)      = 0
[pid  7127] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7128 attached
 <unfinished ...>
[pid  7128] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7128] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7128] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7126] <... futex resumed>)        = 0
[pid  7128] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7126] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7126] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7127] <... futex resumed>)        = 1
[pid  7126] <... futex resumed>)        = 0
[pid  7126] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=49000000} <unfinished ...>
[pid  7127] creat("./file0", 0406)      = 4
[pid  7127] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7126] <... futex resumed>)        = 0
[pid  7126] close(3)                    = 0
[pid  7126] close(4)                    = 0
[pid  7126] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7126] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7126] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7126] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7126] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7126] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(13)                   = -1 EBADF (Bad file descriptor)
[  161.322324][ T7127] loop0: detected capacity change from 0 to 4096
[pid  7126] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(17 <unfinished ...>
[pid  7127] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7126] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7126] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7126] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7126] exit_group(0 <unfinished ...>
[pid  7128] <... futex resumed>)        = ?
[pid  7127] <... futex resumed>)        = ?
[pid  7126] <... exit_group resumed>)   = ?
[pid  7128] +++ exited with 0 +++
[pid  7127] +++ exited with 0 +++
[pid  7126] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2044, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./681", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./681", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./681/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./681/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./681/binderfs")    = 0
[pid  5067] umount2("./681/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./681/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./681/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./681/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./681/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./681/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./681")              = 0
[pid  5067] mkdir("./682", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2047
./strace-static-x86_64: Process 7129 attached
[pid  7129] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7129] chdir("./682")              = 0
[pid  7129] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7129] setpgid(0, 0)               = 0
[pid  7129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7129] write(3, "1000", 4)         = 4
[pid  7129] close(3)                    = 0
[pid  7129] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7129] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7129] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7129] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7129] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7130 attached
, parent_tid=[2048], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2048
[pid  7129] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7129] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7130] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7130] memfd_create("syzkaller", 0) = 3
[pid  7130] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7130] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7130] munmap(0x7ff042e09000, 2097152) = 0
[pid  7130] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7130] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7130] close(3)                    = 0
[pid  7130] mkdir("./file0", 0777)      = 0
[pid  7130] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7130] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7130] chdir("./file0")            = 0
[pid  7130] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7130] close(4)                    = 0
[pid  7130] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7129] <... futex resumed>)        = 0
[pid  7129] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7129] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7129] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7129] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7129] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7131 attached
, parent_tid=[2049], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2049
[pid  7129] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7130] <... futex resumed>)        = 1
[pid  7129] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7131] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7130] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7131] <... set_robust_list resumed>) = 0
[pid  7131] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7131] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7129] <... futex resumed>)        = 0
[pid  7131] <... futex resumed>)        = 1
[pid  7129] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7131] creat("./file0", 0406 <unfinished ...>
[pid  7129] <... futex resumed>)        = 0
[pid  7129] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7130] <... mkdirat resumed>)      = 0
[pid  7130] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7131] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7130] <... futex resumed>)        = 0
[pid  7131] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7129] <... futex resumed>)        = 0
[pid  7129] close(3)                    = 0
[pid  7129] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7129] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7129] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7129] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7131] <... futex resumed>)        = 1
[pid  7129] close(8 <unfinished ...>
[pid  7131] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7129] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[  161.468825][ T7130] loop0: detected capacity change from 0 to 4096
[pid  7130] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7129] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7129] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7129] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7129] exit_group(0 <unfinished ...>
[pid  7131] <... futex resumed>)        = ?
[pid  7130] <... futex resumed>)        = ?
[pid  7129] <... exit_group resumed>)   = ?
[pid  7131] +++ exited with 0 +++
[pid  7130] +++ exited with 0 +++
[pid  7129] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2047, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./682", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./682", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./682/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./682/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./682/binderfs")    = 0
[pid  5067] umount2("./682/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./682/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./682/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./682/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./682/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./682/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./682")              = 0
[pid  5067] mkdir("./683", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2050
./strace-static-x86_64: Process 7132 attached
[pid  7132] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7132] chdir("./683")              = 0
[pid  7132] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7132] setpgid(0, 0)               = 0
[pid  7132] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7132] write(3, "1000", 4)         = 4
[pid  7132] close(3)                    = 0
[pid  7132] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7132] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7132] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7132] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7132] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7133 attached
, parent_tid=[2051], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2051
[pid  7132] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7133] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7132] <... futex resumed>)        = 0
[pid  7132] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7133] <... set_robust_list resumed>) = 0
[pid  7133] memfd_create("syzkaller", 0) = 3
[pid  7133] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7133] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7133] munmap(0x7ff042e09000, 2097152) = 0
[pid  7133] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7133] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7133] close(3)                    = 0
[pid  7133] mkdir("./file0", 0777)      = 0
[pid  7133] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7133] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7133] chdir("./file0")            = 0
[pid  7133] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7133] close(4)                    = 0
[pid  7133] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7132] <... futex resumed>)        = 0
[pid  7132] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7132] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7132] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7132] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7132] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2052], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2052
[pid  7132] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7133] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7132] <... futex resumed>)        = 0
[pid  7132] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7134 attached
 <unfinished ...>
[pid  7134] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7133] <... mkdirat resumed>)      = 0
[pid  7133] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7133] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7134] <... set_robust_list resumed>) = 0
[pid  7134] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7134] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7132] <... futex resumed>)        = 0
[pid  7132] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7133] <... futex resumed>)        = 0
[pid  7132] <... futex resumed>)        = 1
[pid  7133] creat("./file0", 0406 <unfinished ...>
[pid  7132] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7134] <... futex resumed>)        = 1
[pid  7134] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7133] <... creat resumed>)        = 4
[pid  7133] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7132] <... futex resumed>)        = 0
[pid  7133] <... futex resumed>)        = 1
[pid  7132] close(3 <unfinished ...>
[pid  7133] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7132] <... close resumed>)        = 0
[pid  7132] close(4)                    = 0
[pid  7132] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7132] close(6)                    = -1 EBADF (Bad file descriptor)
[  161.628512][ T7133] loop0: detected capacity change from 0 to 4096
[pid  7132] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7132] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7132] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7132] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7132] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7132] exit_group(0 <unfinished ...>
[pid  7134] <... futex resumed>)        = ?
[pid  7133] <... futex resumed>)        = ?
[pid  7132] <... exit_group resumed>)   = ?
[pid  7134] +++ exited with 0 +++
[pid  7133] +++ exited with 0 +++
[pid  7132] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2050, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./683", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./683", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./683/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./683/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./683/binderfs")    = 0
[pid  5067] umount2("./683/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./683/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./683/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./683/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./683/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./683/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./683")              = 0
[pid  5067] mkdir("./684", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2053
./strace-static-x86_64: Process 7135 attached
[pid  7135] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7135] chdir("./684")              = 0
[pid  7135] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7135] setpgid(0, 0)               = 0
[pid  7135] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7135] write(3, "1000", 4)         = 4
[pid  7135] close(3)                    = 0
[pid  7135] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7135] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7135] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7135] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7135] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2054], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2054
[pid  7135] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7135] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7136 attached
 <unfinished ...>
[pid  7136] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7136] memfd_create("syzkaller", 0) = 3
[pid  7136] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7136] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7136] munmap(0x7ff042e09000, 2097152) = 0
[pid  7136] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7136] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7136] close(3)                    = 0
[pid  7136] mkdir("./file0", 0777)      = 0
[pid  7136] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7136] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7136] chdir("./file0")            = 0
[pid  7136] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7136] close(4)                    = 0
[pid  7136] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7135] <... futex resumed>)        = 0
[pid  7136] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7135] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7135] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7135] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7135] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7135] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7136] <... mkdirat resumed>)      = 0
[pid  7135] <... clone resumed>, parent_tid=[2055], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2055
[pid  7136] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7135] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7136] <... futex resumed>)        = 0
[pid  7135] <... futex resumed>)        = 0
[pid  7136] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7135] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7137 attached
 <unfinished ...>
[pid  7137] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7137] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7137] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7135] <... futex resumed>)        = 0
[pid  7135] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7136] <... futex resumed>)        = 0
[pid  7135] <... futex resumed>)        = 1
[pid  7136] creat("./file0", 0406 <unfinished ...>
[pid  7135] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7137] <... futex resumed>)        = 1
[pid  7137] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7136] <... creat resumed>)        = 4
[pid  7136] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7135] <... futex resumed>)        = 0
[pid  7136] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7135] close(3)                    = 0
[pid  7135] close(4)                    = 0
[pid  7135] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7135] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7135] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7135] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7135] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7135] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7135] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7135] exit_group(0 <unfinished ...>
[pid  7137] <... futex resumed>)        = ?
[pid  7136] <... futex resumed>)        = ?
[pid  7135] <... exit_group resumed>)   = ?
[pid  7137] +++ exited with 0 +++
[pid  7136] +++ exited with 0 +++
[  161.775053][ T7136] loop0: detected capacity change from 0 to 4096
[pid  7135] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2053, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./684", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./684", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./684/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./684/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./684/binderfs")    = 0
[pid  5067] umount2("./684/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./684/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./684/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./684/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./684/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./684/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./684")              = 0
[pid  5067] mkdir("./685", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2056
./strace-static-x86_64: Process 7138 attached
[pid  7138] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7138] chdir("./685")              = 0
[pid  7138] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7138] setpgid(0, 0)               = 0
[pid  7138] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7138] write(3, "1000", 4)         = 4
[pid  7138] close(3)                    = 0
[pid  7138] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7138] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7138] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7138] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7138] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7139 attached
, parent_tid=[2057], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2057
[pid  7139] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7138] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7139] <... set_robust_list resumed>) = 0
[pid  7138] <... futex resumed>)        = 0
[pid  7138] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7139] memfd_create("syzkaller", 0) = 3
[pid  7139] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7139] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7139] munmap(0x7ff042e09000, 2097152) = 0
[pid  7139] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7139] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7139] close(3)                    = 0
[pid  7139] mkdir("./file0", 0777)      = 0
[pid  7139] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7139] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7139] chdir("./file0")            = 0
[pid  7139] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7139] close(4)                    = 0
[pid  7139] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7139] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7138] <... futex resumed>)        = 0
[pid  7138] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7139] <... futex resumed>)        = 0
[pid  7138] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7139] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7138] <... futex resumed>)        = 0
[pid  7138] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7138] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7138] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7139] <... mkdirat resumed>)      = 0
[pid  7139] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7138] <... clone resumed>, parent_tid=[2058], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2058
[pid  7138] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7139] <... futex resumed>)        = 0
[pid  7138] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7139] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7140 attached
 <unfinished ...>
[pid  7140] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7140] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7140] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7138] <... futex resumed>)        = 0
[pid  7140] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7138] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7139] <... futex resumed>)        = 0
[pid  7139] creat("./file0", 0406 <unfinished ...>
[pid  7138] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7139] <... creat resumed>)        = 4
[pid  7139] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7139] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7138] <... futex resumed>)        = 0
[pid  7138] close(3)                    = 0
[pid  7138] close(4)                    = 0
[pid  7138] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7138] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7138] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7138] close(8)                    = -1 EBADF (Bad file descriptor)
[  161.917593][ T7139] loop0: detected capacity change from 0 to 4096
[pid  7138] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7138] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7138] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7138] exit_group(0 <unfinished ...>
[pid  7140] <... futex resumed>)        = ?
[pid  7139] <... futex resumed>)        = ?
[pid  7138] <... exit_group resumed>)   = ?
[pid  7140] +++ exited with 0 +++
[pid  7139] +++ exited with 0 +++
[pid  7138] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2056, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} ---
[pid  5067] umount2("./685", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./685", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./685/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./685/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./685/binderfs")    = 0
[pid  5067] umount2("./685/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./685/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./685/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./685/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./685/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./685/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./685")              = 0
[pid  5067] mkdir("./686", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2059
./strace-static-x86_64: Process 7141 attached
[pid  7141] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7141] chdir("./686")              = 0
[pid  7141] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7141] setpgid(0, 0)               = 0
[pid  7141] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7141] write(3, "1000", 4)         = 4
[pid  7141] close(3)                    = 0
[pid  7141] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7141] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7141] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7141] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7141] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7142 attached
 <unfinished ...>
[pid  7142] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7141] <... clone resumed>, parent_tid=[2060], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2060
[pid  7142] <... set_robust_list resumed>) = 0
[pid  7141] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7141] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7142] memfd_create("syzkaller", 0) = 3
[pid  7142] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7142] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7142] munmap(0x7ff042e09000, 2097152) = 0
[pid  7142] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7142] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7142] close(3)                    = 0
[pid  7142] mkdir("./file0", 0777)      = 0
[pid  7142] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7142] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7142] chdir("./file0")            = 0
[pid  7142] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7142] close(4)                    = 0
[pid  7142] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7142] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7141] <... futex resumed>)        = 0
[pid  7141] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7141] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7141] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7141] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7141] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7143 attached
, parent_tid=[2061], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2061
[pid  7143] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7141] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7143] <... set_robust_list resumed>) = 0
[pid  7141] <... futex resumed>)        = 0
[pid  7141] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7143] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7142] <... futex resumed>)        = 0
[pid  7143] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7143] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7141] <... futex resumed>)        = 0
[pid  7143] <... futex resumed>)        = 1
[pid  7141] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7143] creat("./file0", 0406 <unfinished ...>
[pid  7141] <... futex resumed>)        = 0
[pid  7141] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7143] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7143] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7141] <... futex resumed>)        = 0
[pid  7143] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7142] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7142] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7142] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7141] close(3)                    = 0
[pid  7141] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7141] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7141] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7141] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7141] close(8)                    = -1 EBADF (Bad file descriptor)
[  162.064894][ T7142] loop0: detected capacity change from 0 to 4096
[pid  7141] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7141] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7141] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7141] exit_group(0)               = ?
[pid  7143] <... futex resumed>)        = ?
[pid  7142] <... futex resumed>)        = ?
[pid  7142] +++ exited with 0 +++
[pid  7143] +++ exited with 0 +++
[pid  7141] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2059, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./686", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./686", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./686/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./686/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./686/binderfs")    = 0
[pid  5067] umount2("./686/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./686/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./686/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./686/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./686/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./686/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./686")              = 0
[pid  5067] mkdir("./687", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2062
./strace-static-x86_64: Process 7144 attached
[pid  7144] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7144] chdir("./687")              = 0
[pid  7144] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7144] setpgid(0, 0)               = 0
[pid  7144] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7144] write(3, "1000", 4)         = 4
[pid  7144] close(3)                    = 0
[pid  7144] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7144] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7144] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7144] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7144] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2063], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2063
[pid  7144] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7144] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7145 attached
 <unfinished ...>
[pid  7145] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7145] memfd_create("syzkaller", 0) = 3
[pid  7145] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7145] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7145] munmap(0x7ff042e09000, 2097152) = 0
[pid  7145] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7145] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7145] close(3)                    = 0
[pid  7145] mkdir("./file0", 0777)      = 0
[pid  7145] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7145] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7145] chdir("./file0")            = 0
[pid  7145] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7145] close(4)                    = 0
[pid  7145] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7144] <... futex resumed>)        = 0
[pid  7144] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7144] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7144] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7144] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7145] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7144] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2064], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2064
[pid  7144] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7144] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7146 attached
 <unfinished ...>
[pid  7146] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7146] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7146] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7144] <... futex resumed>)        = 0
[pid  7144] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7144] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7146] <... futex resumed>)        = 1
[pid  7146] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7146] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7144] <... futex resumed>)        = 0
[pid  7146] <... futex resumed>)        = 1
[pid  7146] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7145] <... mkdirat resumed>)      = 0
[pid  7145] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7144] close(3)                    = 0
[pid  7144] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7144] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7144] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7144] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7144] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7144] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7144] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(16)                   = -1 EBADF (Bad file descriptor)
[  162.228077][ T7145] loop0: detected capacity change from 0 to 4096
[pid  7144] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7144] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7144] exit_group(0 <unfinished ...>
[pid  7146] <... futex resumed>)        = ?
[pid  7144] <... exit_group resumed>)   = ?
[pid  7146] +++ exited with 0 +++
[pid  7145] <... futex resumed>)        = ?
[pid  7145] +++ exited with 0 +++
[pid  7144] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2062, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./687", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./687", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./687/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./687/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./687/binderfs")    = 0
[pid  5067] umount2("./687/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./687/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./687/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./687/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./687/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./687/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./687")              = 0
[pid  5067] mkdir("./688", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2065
./strace-static-x86_64: Process 7147 attached
[pid  7147] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7147] chdir("./688")              = 0
[pid  7147] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7147] setpgid(0, 0)               = 0
[pid  7147] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7147] write(3, "1000", 4)         = 4
[pid  7147] close(3)                    = 0
[pid  7147] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7147] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7147] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7147] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7147] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7148 attached
, parent_tid=[2066], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2066
[pid  7147] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7148] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7147] <... futex resumed>)        = 0
[pid  7147] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7148] <... set_robust_list resumed>) = 0
[pid  7148] memfd_create("syzkaller", 0) = 3
[pid  7148] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7148] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7148] munmap(0x7ff042e09000, 2097152) = 0
[pid  7148] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7148] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7148] close(3)                    = 0
[pid  7148] mkdir("./file0", 0777)      = 0
[pid  7148] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7148] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7148] chdir("./file0")            = 0
[pid  7148] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7148] close(4)                    = 0
[pid  7148] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7148] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7147] <... futex resumed>)        = 0
[pid  7147] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7148] <... futex resumed>)        = 0
[pid  7147] <... futex resumed>)        = 1
[pid  7147] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7147] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7148] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7147] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7147] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7147] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2067], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2067
./strace-static-x86_64: Process 7149 attached
[pid  7147] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7149] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7147] <... futex resumed>)        = 0
[pid  7149] <... set_robust_list resumed>) = 0
[pid  7147] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7149] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7148] <... mkdirat resumed>)      = 0
[pid  7148] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7148] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7149] <... chdir resumed>)        = 0
[pid  7149] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7147] <... futex resumed>)        = 0
[  162.383484][ T7148] loop0: detected capacity change from 0 to 4096
[pid  7149] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7147] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7148] <... futex resumed>)        = 0
[pid  7148] creat("./file0", 0406 <unfinished ...>
[pid  7147] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7148] <... creat resumed>)        = 4
[pid  7148] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7147] <... futex resumed>)        = 0
[pid  7148] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7147] close(3)                    = 0
[pid  7147] close(4)                    = 0
[pid  7147] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7147] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7147] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7147] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7147] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7147] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7147] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7147] exit_group(0 <unfinished ...>
[pid  7149] <... futex resumed>)        = ?
[pid  7148] <... futex resumed>)        = ?
[pid  7147] <... exit_group resumed>)   = ?
[pid  7149] +++ exited with 0 +++
[pid  7148] +++ exited with 0 +++
[pid  7147] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2065, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./688", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./688", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./688/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./688/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./688/binderfs")    = 0
[pid  5067] umount2("./688/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./688/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./688/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./688/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./688/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./688/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./688")              = 0
[pid  5067] mkdir("./689", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2068
./strace-static-x86_64: Process 7150 attached
[pid  7150] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7150] chdir("./689")              = 0
[pid  7150] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7150] setpgid(0, 0)               = 0
[pid  7150] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7150] write(3, "1000", 4)         = 4
[pid  7150] close(3)                    = 0
[pid  7150] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7150] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7150] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7150] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7150] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2069], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2069
[pid  7150] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7150] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7151 attached
 <unfinished ...>
[pid  7151] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7151] memfd_create("syzkaller", 0) = 3
[pid  7151] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7151] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7151] munmap(0x7ff042e09000, 2097152) = 0
[pid  7151] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7151] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7151] close(3)                    = 0
[pid  7151] mkdir("./file0", 0777)      = 0
[pid  7151] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7151] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7151] chdir("./file0")            = 0
[pid  7151] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7151] close(4)                    = 0
[pid  7151] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7150] <... futex resumed>)        = 0
[pid  7150] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7150] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7150] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7150] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7150] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2070], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2070
[pid  7150] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7150] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7151] <... futex resumed>)        = 1
[pid  7151] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7151] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7151] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7152 attached
 <unfinished ...>
[pid  7152] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7152] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7152] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7150] <... futex resumed>)        = 0
[pid  7152] <... futex resumed>)        = 1
[pid  7150] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7150] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7152] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7151] <... futex resumed>)        = 0
[pid  7151] creat("./file0", 0406)      = 4
[pid  7151] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7150] <... futex resumed>)        = 0
[pid  7151] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7150] close(3)                    = 0
[pid  7150] close(4)                    = 0
[pid  7150] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7150] close(6)                    = -1 EBADF (Bad file descriptor)
[  162.534995][ T7151] loop0: detected capacity change from 0 to 4096
[pid  7150] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7150] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7150] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7150] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7150] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7150] exit_group(0 <unfinished ...>
[pid  7152] <... futex resumed>)        = ?
[pid  7151] <... futex resumed>)        = ?
[pid  7150] <... exit_group resumed>)   = ?
[pid  7152] +++ exited with 0 +++
[pid  7151] +++ exited with 0 +++
[pid  7150] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2068, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./689", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./689", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./689/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./689/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./689/binderfs")    = 0
[pid  5067] umount2("./689/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./689/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./689/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./689/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./689/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./689/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./689")              = 0
[pid  5067] mkdir("./690", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7153 attached
 <unfinished ...>
[pid  7153] set_robust_list(0x5555570e75e0, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2071
[pid  7153] <... set_robust_list resumed>) = 0
[pid  7153] chdir("./690")              = 0
[pid  7153] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7153] setpgid(0, 0)               = 0
[pid  7153] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7153] write(3, "1000", 4)         = 4
[pid  7153] close(3)                    = 0
[pid  7153] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7153] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7153] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7153] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7153] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2072], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2072
[pid  7153] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7153] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7154 attached
 <unfinished ...>
[pid  7154] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7154] memfd_create("syzkaller", 0) = 3
[pid  7154] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7154] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7154] munmap(0x7ff042e09000, 2097152) = 0
[pid  7154] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7154] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7154] close(3)                    = 0
[pid  7154] mkdir("./file0", 0777)      = 0
[pid  7154] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7154] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7154] chdir("./file0")            = 0
[pid  7154] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7154] close(4)                    = 0
[pid  7154] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7153] <... futex resumed>)        = 0
[pid  7154] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7153] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7154] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7154] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7153] <... futex resumed>)        = 0
[pid  7153] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7153] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7154] <... mkdirat resumed>)      = 0
[pid  7153] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7154] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7153] <... mprotect resumed>)     = 0
[pid  7154] <... futex resumed>)        = 0
[pid  7153] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7154] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7153] <... clone resumed>, parent_tid=[2073], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2073
[pid  7153] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7153] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7155 attached
 <unfinished ...>
[pid  7155] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7155] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7155] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7153] <... futex resumed>)        = 0
[pid  7155] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7153] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7154] <... futex resumed>)        = 0
[pid  7153] <... futex resumed>)        = 1
[pid  7154] creat("./file0", 0406 <unfinished ...>
[pid  7153] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7154] <... creat resumed>)        = 4
[pid  7154] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7153] <... futex resumed>)        = 0
[pid  7154] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7153] close(3)                    = 0
[pid  7153] close(4)                    = 0
[pid  7153] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7153] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7153] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7153] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7153] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7153] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(12)                   = -1 EBADF (Bad file descriptor)
[  162.697602][ T7154] loop0: detected capacity change from 0 to 4096
[pid  7153] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7153] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7153] exit_group(0 <unfinished ...>
[pid  7155] <... futex resumed>)        = ?
[pid  7154] <... futex resumed>)        = ?
[pid  7153] <... exit_group resumed>)   = ?
[pid  7155] +++ exited with 0 +++
[pid  7154] +++ exited with 0 +++
[pid  7153] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2071, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] umount2("./690", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./690", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./690/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./690/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./690/binderfs")    = 0
[pid  5067] umount2("./690/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./690/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./690/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./690/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./690/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./690/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./690")              = 0
[pid  5067] mkdir("./691", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2074
./strace-static-x86_64: Process 7156 attached
[pid  7156] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7156] chdir("./691")              = 0
[pid  7156] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7156] setpgid(0, 0)               = 0
[pid  7156] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7156] write(3, "1000", 4)         = 4
[pid  7156] close(3)                    = 0
[pid  7156] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7156] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7156] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7156] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7156] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7157 attached
, parent_tid=[2075], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2075
[pid  7156] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7157] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7156] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7157] <... set_robust_list resumed>) = 0
[pid  7157] memfd_create("syzkaller", 0) = 3
[pid  7157] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7157] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7157] munmap(0x7ff042e09000, 2097152) = 0
[pid  7157] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7157] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7157] close(3)                    = 0
[pid  7157] mkdir("./file0", 0777)      = 0
[pid  7157] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7157] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7157] chdir("./file0")            = 0
[pid  7157] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7157] close(4)                    = 0
[pid  7157] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7156] <... futex resumed>)        = 0
[pid  7156] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7156] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7156] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7156] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7156] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2076], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2076
[pid  7156] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7156] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7157] <... futex resumed>)        = 1
[pid  7157] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7158 attached
 <unfinished ...>
[pid  7158] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7158] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7158] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7156] <... futex resumed>)        = 0
[pid  7157] <... mkdirat resumed>)      = 0
[pid  7156] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7157] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7156] <... futex resumed>)        = 0
[pid  7157] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7156] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7158] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7158] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7156] <... futex resumed>)        = 0
[pid  7156] close(3)                    = 0
[pid  7156] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7156] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7156] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7156] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7158] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7156] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7156] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7156] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7156] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7156] exit_group(0 <unfinished ...>
[pid  7158] <... futex resumed>)        = ?
[pid  7157] <... futex resumed>)        = ?
[pid  7156] <... exit_group resumed>)   = ?
[pid  7158] +++ exited with 0 +++
[pid  7157] +++ exited with 0 +++
[pid  7156] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2074, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[  162.851940][ T7157] loop0: detected capacity change from 0 to 4096
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./691", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./691", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./691/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./691/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./691/binderfs")    = 0
[pid  5067] umount2("./691/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./691/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./691/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./691/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./691/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./691/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./691")              = 0
[pid  5067] mkdir("./692", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2077
./strace-static-x86_64: Process 7159 attached
[pid  7159] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7159] chdir("./692")              = 0
[pid  7159] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7159] setpgid(0, 0)               = 0
[pid  7159] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7159] write(3, "1000", 4)         = 4
[pid  7159] close(3)                    = 0
[pid  7159] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7159] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7159] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7159] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7159] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7160 attached
, parent_tid=[2078], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2078
[pid  7160] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7160] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7159] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7160] <... futex resumed>)        = 0
[pid  7159] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7160] memfd_create("syzkaller", 0) = 3
[pid  7160] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7160] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7160] munmap(0x7ff042e09000, 2097152) = 0
[pid  7160] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7160] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7160] close(3)                    = 0
[pid  7160] mkdir("./file0", 0777)      = 0
[pid  7160] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7160] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7160] chdir("./file0")            = 0
[pid  7160] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7160] close(4)                    = 0
[pid  7160] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7160] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7159] <... futex resumed>)        = 0
[pid  7159] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7160] <... futex resumed>)        = 0
[pid  7159] <... futex resumed>)        = 1
[pid  7160] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7159] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7159] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7159] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7159] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2079], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2079
[pid  7159] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7161 attached
 <unfinished ...>
[pid  7160] <... mkdirat resumed>)      = 0
[pid  7159] <... futex resumed>)        = 0
[pid  7161] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7160] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7159] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7161] <... set_robust_list resumed>) = 0
[pid  7160] <... futex resumed>)        = 0
[pid  7160] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7161] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7161] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7159] <... futex resumed>)        = 0
[pid  7161] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7159] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7159] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7160] <... futex resumed>)        = 0
[pid  7160] creat("./file0", 0406)      = 4
[pid  7160] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7159] <... futex resumed>)        = 0
[pid  7160] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7159] close(3)                    = 0
[  162.997892][ T7160] loop0: detected capacity change from 0 to 4096
[pid  7159] close(4)                    = 0
[pid  7159] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7159] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7159] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7159] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7159] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7159] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7159] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7159] exit_group(0 <unfinished ...>
[pid  7161] <... futex resumed>)        = ?
[pid  7160] <... futex resumed>)        = ?
[pid  7159] <... exit_group resumed>)   = ?
[pid  7161] +++ exited with 0 +++
[pid  7160] +++ exited with 0 +++
[pid  7159] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2077, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./692", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./692", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./692/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./692/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./692/binderfs")    = 0
[pid  5067] umount2("./692/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./692/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./692/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./692/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./692/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./692/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./692")              = 0
[pid  5067] mkdir("./693", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2080
./strace-static-x86_64: Process 7162 attached
[pid  7162] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7162] chdir("./693")              = 0
[pid  7162] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7162] setpgid(0, 0)               = 0
[pid  7162] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7162] write(3, "1000", 4)         = 4
[pid  7162] close(3)                    = 0
[pid  7162] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7162] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7162] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7162] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7162] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7163 attached
, parent_tid=[2081], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2081
[pid  7163] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7163] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7162] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7163] <... futex resumed>)        = 0
[pid  7162] <... futex resumed>)        = 1
[pid  7162] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7163] memfd_create("syzkaller", 0) = 3
[pid  7163] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7163] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7163] munmap(0x7ff042e09000, 2097152) = 0
[pid  7163] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7163] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7163] close(3)                    = 0
[pid  7163] mkdir("./file0", 0777)      = 0
[pid  7163] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7163] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7163] chdir("./file0")            = 0
[pid  7163] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7163] close(4)                    = 0
[pid  7163] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7162] <... futex resumed>)        = 0
[pid  7162] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7162] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7163] <... futex resumed>)        = 1
[pid  7162] <... futex resumed>)        = 0
[pid  7163] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7162] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7162] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7162] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2082], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2082
[pid  7162] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7163] <... mkdirat resumed>)      = 0
[pid  7162] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7163] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7164 attached
[pid  7163] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7164] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7164] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7164] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7162] <... futex resumed>)        = 0
[pid  7164] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7162] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7163] <... futex resumed>)        = 0
[pid  7162] <... futex resumed>)        = 1
[pid  7163] creat("./file0", 0406 <unfinished ...>
[pid  7162] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7163] <... creat resumed>)        = 4
[pid  7163] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7162] <... futex resumed>)        = 0
[pid  7162] close(3)                    = 0
[pid  7162] close(4)                    = 0
[pid  7163] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7162] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7162] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7162] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7162] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7162] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7162] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7162] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7162] exit_group(0 <unfinished ...>
[pid  7164] <... futex resumed>)        = ?
[pid  7163] <... futex resumed>)        = ?
[pid  7162] <... exit_group resumed>)   = ?
[pid  7164] +++ exited with 0 +++
[pid  7163] +++ exited with 0 +++
[pid  7162] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2080, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./693", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./693", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./693/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  163.153312][ T7163] loop0: detected capacity change from 0 to 4096
[pid  5067] lstat("./693/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./693/binderfs")    = 0
[pid  5067] umount2("./693/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./693/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./693/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./693/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./693/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./693/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./693")              = 0
[pid  5067] mkdir("./694", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2083
./strace-static-x86_64: Process 7165 attached
[pid  7165] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7165] chdir("./694")              = 0
[pid  7165] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7165] setpgid(0, 0)               = 0
[pid  7165] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7165] write(3, "1000", 4)         = 4
[pid  7165] close(3)                    = 0
[pid  7165] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7165] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7165] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7165] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7165] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7166 attached
 <unfinished ...>
[pid  7166] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7165] <... clone resumed>, parent_tid=[2084], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2084
[pid  7166] <... set_robust_list resumed>) = 0
[pid  7166] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7165] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7165] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7166] <... futex resumed>)        = 0
[pid  7166] memfd_create("syzkaller", 0) = 3
[pid  7166] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7166] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7166] munmap(0x7ff042e09000, 2097152) = 0
[pid  7166] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7166] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7166] close(3)                    = 0
[pid  7166] mkdir("./file0", 0777)      = 0
[pid  7166] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7166] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7166] chdir("./file0")            = 0
[pid  7166] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7166] close(4)                    = 0
[pid  7166] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7165] <... futex resumed>)        = 0
[pid  7165] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7165] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7165] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7165] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7165] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2085], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2085
[pid  7165] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7165] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7166] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7167 attached
 <unfinished ...>
[pid  7167] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7167] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7167] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7165] <... futex resumed>)        = 0
[pid  7165] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7165] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7167] <... futex resumed>)        = 1
[pid  7167] creat("./file0", 0406 <unfinished ...>
[pid  7166] <... mkdirat resumed>)      = 0
[pid  7167] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7166] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7167] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7165] <... futex resumed>)        = 0
[pid  7165] close(3)                    = 0
[pid  7165] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7165] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7165] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7165] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7165] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7165] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7165] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(14)                   = -1 EBADF (Bad file descriptor)
[  163.282747][ T7166] loop0: detected capacity change from 0 to 4096
[pid  7165] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7165] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7165] exit_group(0)               = ?
[pid  7167] <... futex resumed>)        = ?
[pid  7167] +++ exited with 0 +++
[pid  7166] <... futex resumed>)        = ?
[pid  7166] +++ exited with 0 +++
[pid  7165] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2083, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./694", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./694", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./694/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./694/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./694/binderfs")    = 0
[pid  5067] umount2("./694/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./694/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./694/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./694/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./694/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./694/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./694")              = 0
[pid  5067] mkdir("./695", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2086
./strace-static-x86_64: Process 7168 attached
[pid  7168] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7168] chdir("./695")              = 0
[pid  7168] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7168] setpgid(0, 0)               = 0
[pid  7168] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7168] write(3, "1000", 4)         = 4
[pid  7168] close(3)                    = 0
[pid  7168] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7168] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7168] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7168] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7168] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7169 attached
 <unfinished ...>
[pid  7169] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7169] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7168] <... clone resumed>, parent_tid=[2087], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2087
[pid  7168] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7169] <... futex resumed>)        = 0
[pid  7168] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7169] memfd_create("syzkaller", 0) = 3
[pid  7169] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7169] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7169] munmap(0x7ff042e09000, 2097152) = 0
[pid  7169] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7169] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7169] close(3)                    = 0
[pid  7169] mkdir("./file0", 0777)      = 0
[pid  7169] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7169] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7169] chdir("./file0")            = 0
[pid  7169] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7169] close(4)                    = 0
[pid  7169] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7169] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7168] <... futex resumed>)        = 0
[pid  7168] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7169] <... futex resumed>)        = 0
[pid  7168] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7169] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7168] <... futex resumed>)        = 0
[pid  7168] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7168] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7168] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2088], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2088
[pid  7168] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7170 attached
 <unfinished ...>
[pid  7169] <... mkdirat resumed>)      = 0
[pid  7168] <... futex resumed>)        = 0
[pid  7170] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7169] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7168] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7170] <... set_robust_list resumed>) = 0
[pid  7169] <... futex resumed>)        = 0
[pid  7170] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7169] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7170] <... chdir resumed>)        = 0
[pid  7170] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7168] <... futex resumed>)        = 0
[pid  7170] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7168] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7169] <... futex resumed>)        = 0
[pid  7168] <... futex resumed>)        = 1
[pid  7169] creat("./file0", 0406 <unfinished ...>
[pid  7168] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7169] <... creat resumed>)        = 4
[pid  7169] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7168] <... futex resumed>)        = 0
[  163.442958][ T7169] loop0: detected capacity change from 0 to 4096
[pid  7169] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7168] close(3)                    = 0
[pid  7168] close(4)                    = 0
[pid  7168] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7168] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7168] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7168] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7168] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7168] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7168] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7168] exit_group(0 <unfinished ...>
[pid  7170] <... futex resumed>)        = ?
[pid  7169] <... futex resumed>)        = ?
[pid  7168] <... exit_group resumed>)   = ?
[pid  7169] +++ exited with 0 +++
[pid  7170] +++ exited with 0 +++
[pid  7168] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2086, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./695", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./695", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./695/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./695/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./695/binderfs")    = 0
[pid  5067] umount2("./695/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./695/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./695/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./695/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./695/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./695/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./695")              = 0
[pid  5067] mkdir("./696", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7171 attached
, child_tidptr=0x5555570e75d0) = 2089
[pid  7171] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7171] chdir("./696")              = 0
[pid  7171] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7171] setpgid(0, 0)               = 0
[pid  7171] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7171] write(3, "1000", 4)         = 4
[pid  7171] close(3)                    = 0
[pid  7171] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7171] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7171] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7171] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7171] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7172 attached
, parent_tid=[2090], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2090
[pid  7172] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7171] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7172] <... set_robust_list resumed>) = 0
[pid  7171] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7172] memfd_create("syzkaller", 0) = 3
[pid  7172] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7172] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7172] munmap(0x7ff042e09000, 2097152) = 0
[pid  7172] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7172] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7172] close(3)                    = 0
[pid  7172] mkdir("./file0", 0777)      = 0
[pid  7172] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7172] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7172] chdir("./file0")            = 0
[pid  7172] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7172] close(4)                    = 0
[pid  7172] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7171] <... futex resumed>)        = 0
[pid  7172] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7171] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7172] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7171] <... futex resumed>)        = 0
[pid  7172] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7171] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7171] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7171] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7171] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7173 attached
 <unfinished ...>
[pid  7172] <... mkdirat resumed>)      = 0
[pid  7173] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7171] <... clone resumed>, parent_tid=[2091], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2091
[pid  7172] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7173] <... set_robust_list resumed>) = 0
[pid  7171] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7172] <... futex resumed>)        = 0
[pid  7172] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7173] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7173] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7171] <... futex resumed>)        = 0
[pid  7173] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7171] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable)
[pid  7171] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7171] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7172] <... futex resumed>)        = 0
[  163.604823][ T7172] loop0: detected capacity change from 0 to 4096
[pid  7172] creat("./file0", 0406)      = 4
[pid  7172] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7171] <... futex resumed>)        = 0
[pid  7171] close(3)                    = 0
[pid  7171] close(4)                    = 0
[pid  7171] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7171] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7171] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7171] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7171] close(9 <unfinished ...>
[pid  7172] <... futex resumed>)        = 1
[pid  7171] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7172] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7171] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7171] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7171] exit_group(0 <unfinished ...>
[pid  7173] <... futex resumed>)        = ?
[pid  7172] <... futex resumed>)        = ?
[pid  7171] <... exit_group resumed>)   = ?
[pid  7173] +++ exited with 0 +++
[pid  7172] +++ exited with 0 +++
[pid  7171] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2089, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./696", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./696", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./696/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./696/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./696/binderfs")    = 0
[pid  5067] umount2("./696/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./696/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./696/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./696/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./696/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./696/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./696")              = 0
[pid  5067] mkdir("./697", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2092
./strace-static-x86_64: Process 7174 attached
[pid  7174] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7174] chdir("./697")              = 0
[pid  7174] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7174] setpgid(0, 0)               = 0
[pid  7174] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7174] write(3, "1000", 4)         = 4
[pid  7174] close(3)                    = 0
[pid  7174] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7174] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7174] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7174] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7174] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7175 attached
, parent_tid=[2093], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2093
[pid  7175] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7174] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7175] <... set_robust_list resumed>) = 0
[pid  7174] <... futex resumed>)        = 0
[pid  7174] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7175] memfd_create("syzkaller", 0) = 3
[pid  7175] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7175] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7175] munmap(0x7ff042e09000, 2097152) = 0
[pid  7175] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7175] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7175] close(3)                    = 0
[pid  7175] mkdir("./file0", 0777)      = 0
[pid  7175] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7175] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7175] chdir("./file0")            = 0
[pid  7175] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7175] close(4)                    = 0
[pid  7175] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7174] <... futex resumed>)        = 0
[pid  7175] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7174] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7175] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7174] <... futex resumed>)        = 0
[pid  7175] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7174] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7174] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7174] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7174] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2094], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2094
[pid  7174] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7174] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7175] <... mkdirat resumed>)      = 0
[pid  7175] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7175] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7176 attached
 <unfinished ...>
[pid  7176] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7176] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7176] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7174] <... futex resumed>)        = 0
[pid  7176] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7174] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7175] <... futex resumed>)        = 0
[pid  7174] <... futex resumed>)        = 1
[  163.766029][ T7175] loop0: detected capacity change from 0 to 4096
[pid  7175] creat("./file0", 0406 <unfinished ...>
[pid  7174] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7175] <... creat resumed>)        = 4
[pid  7175] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7174] <... futex resumed>)        = 0
[pid  7175] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7174] close(3)                    = 0
[pid  7174] close(4)                    = 0
[pid  7174] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7174] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7174] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7174] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7174] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7174] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7174] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7174] exit_group(0 <unfinished ...>
[pid  7176] <... futex resumed>)        = ?
[pid  7175] <... futex resumed>)        = ?
[pid  7174] <... exit_group resumed>)   = ?
[pid  7176] +++ exited with 0 +++
[pid  7175] +++ exited with 0 +++
[pid  7174] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2092, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./697", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./697", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./697/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./697/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./697/binderfs")    = 0
[pid  5067] umount2("./697/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./697/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./697/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./697/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./697/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./697/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./697")              = 0
[pid  5067] mkdir("./698", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2095
./strace-static-x86_64: Process 7177 attached
[pid  7177] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7177] chdir("./698")              = 0
[pid  7177] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7177] setpgid(0, 0)               = 0
[pid  7177] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7177] write(3, "1000", 4)         = 4
[pid  7177] close(3)                    = 0
[pid  7177] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7177] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7177] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7177] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7177] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2096], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2096
[pid  7177] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7177] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7178 attached
 <unfinished ...>
[pid  7178] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7178] memfd_create("syzkaller", 0) = 3
[pid  7178] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7178] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7178] munmap(0x7ff042e09000, 2097152) = 0
[pid  7178] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7178] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7178] close(3)                    = 0
[pid  7178] mkdir("./file0", 0777)      = 0
[pid  7178] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7178] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7178] chdir("./file0")            = 0
[pid  7178] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7178] close(4)                    = 0
[pid  7178] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7177] <... futex resumed>)        = 0
[pid  7177] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7177] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7177] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7178] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7177] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7177] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7179 attached
, parent_tid=[2097], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2097
[pid  7179] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7177] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7177] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7179] <... set_robust_list resumed>) = 0
[pid  7179] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7178] <... mkdirat resumed>)      = 0
[pid  7178] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7178] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7179] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7177] <... futex resumed>)        = 0
[pid  7177] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7178] <... futex resumed>)        = 0
[pid  7177] <... futex resumed>)        = 1
[pid  7177] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7178] creat("./file0", 0406 <unfinished ...>
[pid  7179] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7178] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7178] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7177] <... futex resumed>)        = 0
[pid  7177] close(3 <unfinished ...>
[pid  7178] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7177] <... close resumed>)        = 0
[pid  7177] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7177] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7177] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7177] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7177] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7177] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7177] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(13)                   = -1 EBADF (Bad file descriptor)
[  163.922215][ T7178] loop0: detected capacity change from 0 to 4096
[pid  7177] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7177] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7177] exit_group(0 <unfinished ...>
[pid  7179] <... futex resumed>)        = ?
[pid  7178] <... futex resumed>)        = ?
[pid  7177] <... exit_group resumed>)   = ?
[pid  7179] +++ exited with 0 +++
[pid  7178] +++ exited with 0 +++
[pid  7177] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2095, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./698", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./698", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./698/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./698/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./698/binderfs")    = 0
[pid  5067] umount2("./698/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./698/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./698/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./698/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./698/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./698/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./698")              = 0
[pid  5067] mkdir("./699", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2098
./strace-static-x86_64: Process 7180 attached
[pid  7180] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7180] chdir("./699")              = 0
[pid  7180] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7180] setpgid(0, 0)               = 0
[pid  7180] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7180] write(3, "1000", 4)         = 4
[pid  7180] close(3)                    = 0
[pid  7180] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7180] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7180] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7180] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7180] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7181 attached
, parent_tid=[2099], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2099
[pid  7181] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7181] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7180] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7181] <... futex resumed>)        = 0
[pid  7180] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7181] memfd_create("syzkaller", 0) = 3
[pid  7181] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7181] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7181] munmap(0x7ff042e09000, 2097152) = 0
[pid  7181] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7181] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7181] close(3)                    = 0
[pid  7181] mkdir("./file0", 0777)      = 0
[pid  7181] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7181] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7181] chdir("./file0")            = 0
[pid  7181] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7181] close(4)                    = 0
[pid  7181] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7180] <... futex resumed>)        = 0
[pid  7180] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7180] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7180] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7180] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7180] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2100], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2100
[pid  7180] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7180] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7181] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7181] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7181] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7182 attached
 <unfinished ...>
[pid  7182] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7182] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7182] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7182] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7180] <... futex resumed>)        = 0
[pid  7180] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7180] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7181] <... futex resumed>)        = 0
[pid  7181] creat("./file0", 0406)      = 4
[pid  7181] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7180] <... futex resumed>)        = 0
[pid  7181] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7180] close(3)                    = 0
[  164.080019][ T7181] loop0: detected capacity change from 0 to 4096
[pid  7180] close(4)                    = 0
[pid  7180] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7180] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7180] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7180] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7180] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7180] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7180] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7180] exit_group(0 <unfinished ...>
[pid  7182] <... futex resumed>)        = ?
[pid  7181] <... futex resumed>)        = ?
[pid  7180] <... exit_group resumed>)   = ?
[pid  7182] +++ exited with 0 +++
[pid  7181] +++ exited with 0 +++
[pid  7180] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2098, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./699", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./699", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./699/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./699/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./699/binderfs")    = 0
[pid  5067] umount2("./699/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./699/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./699/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./699/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./699/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./699/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./699")              = 0
[pid  5067] mkdir("./700", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2101
./strace-static-x86_64: Process 7183 attached
[pid  7183] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7183] chdir("./700")              = 0
[pid  7183] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7183] setpgid(0, 0)               = 0
[pid  7183] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7183] write(3, "1000", 4)         = 4
[pid  7183] close(3)                    = 0
[pid  7183] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7183] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7183] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7183] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7183] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7184 attached
, parent_tid=[2102], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2102
[pid  7184] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7184] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7183] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7184] <... futex resumed>)        = 0
[pid  7183] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7184] memfd_create("syzkaller", 0) = 3
[pid  7184] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7184] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7184] munmap(0x7ff042e09000, 2097152) = 0
[pid  7184] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7184] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7184] close(3)                    = 0
[pid  7184] mkdir("./file0", 0777)      = 0
[pid  7184] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7184] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7184] chdir("./file0")            = 0
[pid  7184] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7184] close(4)                    = 0
[pid  7184] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7183] <... futex resumed>)        = 0
[pid  7184] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7183] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7183] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7183] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7183] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7184] <... mkdirat resumed>)      = 0
[pid  7183] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2103], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2103
[pid  7184] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7183] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7184] <... futex resumed>)        = 0
[pid  7183] <... futex resumed>)        = 0
[pid  7184] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7183] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7185 attached
 <unfinished ...>
[pid  7185] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7185] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7185] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7183] <... futex resumed>)        = 0
[pid  7183] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7184] <... futex resumed>)        = 0
[pid  7183] <... futex resumed>)        = 1
[pid  7184] creat("./file0", 0406 <unfinished ...>
[pid  7183] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7185] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7184] <... creat resumed>)        = 4
[pid  7184] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7183] <... futex resumed>)        = 0
[pid  7184] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7183] close(3)                    = 0
[pid  7183] close(4)                    = 0
[pid  7183] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7183] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7183] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7183] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7183] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7183] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7183] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7183] exit_group(0 <unfinished ...>
[pid  7184] <... futex resumed>)        = ?
[pid  7183] <... exit_group resumed>)   = ?
[pid  7184] +++ exited with 0 +++
[pid  7185] <... futex resumed>)        = ?
[pid  7185] +++ exited with 0 +++
[pid  7183] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2101, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./700", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./700", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[  164.225903][ T7184] loop0: detected capacity change from 0 to 4096
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./700/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./700/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./700/binderfs")    = 0
[pid  5067] umount2("./700/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./700/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./700/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./700/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./700/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./700/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./700")              = 0
[pid  5067] mkdir("./701", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2104
./strace-static-x86_64: Process 7186 attached
[pid  7186] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7186] chdir("./701")              = 0
[pid  7186] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7186] setpgid(0, 0)               = 0
[pid  7186] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7186] write(3, "1000", 4)         = 4
[pid  7186] close(3)                    = 0
[pid  7186] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7186] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7186] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7186] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2105], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2105
[pid  7186] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7186] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7187 attached
 <unfinished ...>
[pid  7187] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7187] memfd_create("syzkaller", 0) = 3
[pid  7187] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7187] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7187] munmap(0x7ff042e09000, 2097152) = 0
[pid  7187] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7187] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7187] close(3)                    = 0
[pid  7187] mkdir("./file0", 0777)      = 0
[pid  7187] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7187] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7187] chdir("./file0")            = 0
[pid  7187] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7187] close(4)                    = 0
[pid  7187] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7186] <... futex resumed>)        = 0
[pid  7186] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7186] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7186] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7186] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2106], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2106
[pid  7186] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7186] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7188 attached
 <unfinished ...>
[pid  7188] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7188] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7187] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7188] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7188] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7186] <... futex resumed>)        = 0
[pid  7186] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7186] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7188] creat("./file0", 0406 <unfinished ...>
[pid  7187] <... mkdirat resumed>)      = 0
[pid  7187] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7187] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7188] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7188] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7186] <... futex resumed>)        = 0
[pid  7186] close(3)                    = 0
[pid  7186] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7186] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7186] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7186] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7186] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7186] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7186] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(20 <unfinished ...>
[pid  7188] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7186] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7186] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(24)                   = -1 EBADF (Bad file descriptor)
[  164.359535][ T7187] loop0: detected capacity change from 0 to 4096
[pid  7186] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7186] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7186] exit_group(0 <unfinished ...>
[pid  7187] <... futex resumed>)        = ?
[pid  7186] <... exit_group resumed>)   = ?
[pid  7188] <... futex resumed>)        = ?
[pid  7187] +++ exited with 0 +++
[pid  7188] +++ exited with 0 +++
[pid  7186] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2104, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./701", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./701", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./701/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./701/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./701/binderfs")    = 0
[pid  5067] umount2("./701/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./701/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./701/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./701/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./701/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./701/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./701")              = 0
[pid  5067] mkdir("./702", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2107
./strace-static-x86_64: Process 7189 attached
[pid  7189] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7189] chdir("./702")              = 0
[pid  7189] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7189] setpgid(0, 0)               = 0
[pid  7189] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7189] write(3, "1000", 4)         = 4
[pid  7189] close(3)                    = 0
[pid  7189] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7189] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7189] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7189] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7189] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7190 attached
, parent_tid=[2108], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2108
[pid  7189] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7189] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7190] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7190] memfd_create("syzkaller", 0) = 3
[pid  7190] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7190] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7190] munmap(0x7ff042e09000, 2097152) = 0
[pid  7190] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7190] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7190] close(3)                    = 0
[pid  7190] mkdir("./file0", 0777)      = 0
[pid  7190] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7190] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7190] chdir("./file0")            = 0
[pid  7190] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7190] close(4)                    = 0
[pid  7190] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7189] <... futex resumed>)        = 0
[pid  7190] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7189] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7189] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7189] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7189] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7189] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2109], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2109
[pid  7189] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7189] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7191 attached
 <unfinished ...>
[pid  7191] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7191] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7191] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7189] <... futex resumed>)        = 0
[pid  7190] <... mkdirat resumed>)      = 0
[pid  7189] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7190] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7189] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7190] <... futex resumed>)        = 0
[pid  7191] <... futex resumed>)        = 1
[pid  7190] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7191] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7191] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7189] <... futex resumed>)        = 0
[pid  7189] close(3)                    = 0
[pid  7189] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7189] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7189] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7189] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7189] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7189] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7189] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7191] <... futex resumed>)        = 1
[pid  7189] close(19 <unfinished ...>
[pid  7191] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7189] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7189] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7189] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7189] exit_group(0 <unfinished ...>
[pid  7191] <... futex resumed>)        = ?
[pid  7190] <... futex resumed>)        = ?
[pid  7189] <... exit_group resumed>)   = ?
[  164.507220][ T7190] loop0: detected capacity change from 0 to 4096
[pid  7191] +++ exited with 0 +++
[pid  7190] +++ exited with 0 +++
[pid  7189] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2107, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./702", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./702", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./702/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./702/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./702/binderfs")    = 0
[pid  5067] umount2("./702/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./702/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./702/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./702/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./702/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./702/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./702")              = 0
[pid  5067] mkdir("./703", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2110
./strace-static-x86_64: Process 7192 attached
[pid  7192] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7192] chdir("./703")              = 0
[pid  7192] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7192] setpgid(0, 0)               = 0
[pid  7192] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7192] write(3, "1000", 4)         = 4
[pid  7192] close(3)                    = 0
[pid  7192] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7192] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7192] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7192] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7192] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7193 attached
, parent_tid=[2111], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2111
[pid  7193] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7193] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7192] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7193] <... futex resumed>)        = 0
[pid  7192] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7193] memfd_create("syzkaller", 0) = 3
[pid  7193] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7193] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7193] munmap(0x7ff042e09000, 2097152) = 0
[pid  7193] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7193] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7193] close(3)                    = 0
[pid  7193] mkdir("./file0", 0777)      = 0
[pid  7193] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7193] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7193] chdir("./file0")            = 0
[pid  7193] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7193] close(4)                    = 0
[pid  7193] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7192] <... futex resumed>)        = 0
[pid  7193] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7192] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7193] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7192] <... futex resumed>)        = 0
[pid  7193] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7192] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7192] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7192] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7192] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2112], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2112
[pid  7192] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7194 attached
) = 0
[pid  7194] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7194] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7192] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7194] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7194] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7192] <... futex resumed>)        = 0
[pid  7192] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7192] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7194] creat("./file0", 0406 <unfinished ...>
[pid  7193] <... mkdirat resumed>)      = 0
[pid  7194] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7193] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7194] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7192] <... futex resumed>)        = 0
[pid  7194] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7192] close(3)                    = 0
[pid  7192] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7192] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7192] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7192] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7192] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7192] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7192] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7192] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7192] exit_group(0 <unfinished ...>
[pid  7194] <... futex resumed>)        = ?
[pid  7192] <... exit_group resumed>)   = ?
[pid  7194] +++ exited with 0 +++
[pid  7193] <... futex resumed>)        = ?
[  164.656200][ T7193] loop0: detected capacity change from 0 to 4096
[pid  7193] +++ exited with 0 +++
[pid  7192] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2110, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./703", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./703", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./703/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./703/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./703/binderfs")    = 0
[pid  5067] umount2("./703/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./703/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./703/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./703/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./703/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./703/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./703")              = 0
[pid  5067] mkdir("./704", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2113
./strace-static-x86_64: Process 7195 attached
[pid  7195] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7195] chdir("./704")              = 0
[pid  7195] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7195] setpgid(0, 0)               = 0
[pid  7195] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7195] write(3, "1000", 4)         = 4
[pid  7195] close(3)                    = 0
[pid  7195] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7195] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7195] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7195] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7195] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7196 attached
, parent_tid=[2114], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2114
[pid  7196] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7195] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7196] <... set_robust_list resumed>) = 0
[pid  7195] <... futex resumed>)        = 0
[pid  7195] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7196] memfd_create("syzkaller", 0) = 3
[pid  7196] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7196] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7196] munmap(0x7ff042e09000, 2097152) = 0
[pid  7196] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7196] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7196] close(3)                    = 0
[pid  7196] mkdir("./file0", 0777)      = 0
[pid  7196] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7196] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7196] chdir("./file0")            = 0
[pid  7196] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7196] close(4)                    = 0
[pid  7196] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7195] <... futex resumed>)        = 0
[pid  7195] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7196] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7195] <... futex resumed>)        = 0
[pid  7195] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7195] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7195] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7195] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2115], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2115
[pid  7195] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7195] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7197 attached
 <unfinished ...>
[pid  7197] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7197] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7197] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7195] <... futex resumed>)        = 0
[pid  7195] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7195] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7197] creat("./file0", 0406 <unfinished ...>
[pid  7196] <... mkdirat resumed>)      = 0
[pid  7196] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7197] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7196] <... futex resumed>)        = 0
[pid  7197] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7196] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7195] <... futex resumed>)        = 0
[pid  7197] <... futex resumed>)        = 1
[pid  7195] close(3 <unfinished ...>
[pid  7197] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7195] <... close resumed>)        = 0
[pid  7195] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7195] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7195] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7195] close(7)                    = -1 EBADF (Bad file descriptor)
[  164.802466][ T7196] loop0: detected capacity change from 0 to 4096
[pid  7195] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7195] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7195] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7195] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7195] exit_group(0 <unfinished ...>
[pid  7196] <... futex resumed>)        = ?
[pid  7197] <... futex resumed>)        = ?
[pid  7195] <... exit_group resumed>)   = ?
[pid  7196] +++ exited with 0 +++
[pid  7197] +++ exited with 0 +++
[pid  7195] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2113, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./704", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./704", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./704/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./704/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./704/binderfs")    = 0
[pid  5067] umount2("./704/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./704/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./704/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./704/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./704/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./704/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./704")              = 0
[pid  5067] mkdir("./705", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2116
./strace-static-x86_64: Process 7198 attached
[pid  7198] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7198] chdir("./705")              = 0
[pid  7198] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7198] setpgid(0, 0)               = 0
[pid  7198] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7198] write(3, "1000", 4)         = 4
[pid  7198] close(3)                    = 0
[pid  7198] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7198] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7198] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7198] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7198] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7199 attached
 <unfinished ...>
[pid  7199] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7198] <... clone resumed>, parent_tid=[2117], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2117
[pid  7199] <... set_robust_list resumed>) = 0
[pid  7198] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7198] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7199] memfd_create("syzkaller", 0) = 3
[pid  7199] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7199] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7199] munmap(0x7ff042e09000, 2097152) = 0
[pid  7199] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7199] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7199] close(3)                    = 0
[pid  7199] mkdir("./file0", 0777)      = 0
[pid  7199] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7199] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7199] chdir("./file0")            = 0
[pid  7199] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7199] close(4)                    = 0
[pid  7199] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7198] <... futex resumed>)        = 0
[pid  7198] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7198] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7198] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7198] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7198] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2118], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2118
[pid  7198] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7198] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7200 attached
 <unfinished ...>
[pid  7200] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7199] <... futex resumed>)        = 1
[pid  7199] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7199] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7200] <... set_robust_list resumed>) = 0
[pid  7200] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7200] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7198] <... futex resumed>)        = 0
[pid  7200] <... futex resumed>)        = 1
[pid  7198] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7200] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7198] <... futex resumed>)        = 0
[pid  7198] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7199] creat("./file0", 0406)      = 4
[pid  7199] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7198] <... futex resumed>)        = 0
[pid  7198] close(3)                    = 0
[pid  7198] close(4)                    = 0
[pid  7198] close(5 <unfinished ...>
[pid  7199] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7198] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7198] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7198] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7198] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7198] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7198] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(12)                   = -1 EBADF (Bad file descriptor)
[  164.960598][ T7199] loop0: detected capacity change from 0 to 4096
[pid  7198] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7198] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7198] exit_group(0 <unfinished ...>
[pid  7199] <... futex resumed>)        = ?
[pid  7200] <... futex resumed>)        = ?
[pid  7198] <... exit_group resumed>)   = ?
[pid  7199] +++ exited with 0 +++
[pid  7200] +++ exited with 0 +++
[pid  7198] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2116, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./705", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./705", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./705/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./705/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./705/binderfs")    = 0
[pid  5067] umount2("./705/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./705/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./705/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./705/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./705/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./705/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./705")              = 0
[pid  5067] mkdir("./706", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2119
./strace-static-x86_64: Process 7201 attached
[pid  7201] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7201] chdir("./706")              = 0
[pid  7201] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7201] setpgid(0, 0)               = 0
[pid  7201] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7201] write(3, "1000", 4)         = 4
[pid  7201] close(3)                    = 0
[pid  7201] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7201] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7201] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7201] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7201] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2120], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2120
[pid  7201] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7201] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7202 attached
 <unfinished ...>
[pid  7202] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7202] memfd_create("syzkaller", 0) = 3
[pid  7202] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7202] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7202] munmap(0x7ff042e09000, 2097152) = 0
[pid  7202] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7202] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7202] close(3)                    = 0
[pid  7202] mkdir("./file0", 0777)      = 0
[pid  7202] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7202] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7202] chdir("./file0")            = 0
[pid  7202] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7202] close(4)                    = 0
[pid  7202] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7201] <... futex resumed>)        = 0
[pid  7201] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7201] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7201] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7202] <... futex resumed>)        = 1
[pid  7201] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7202] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7201] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7201] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2121], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2121
[pid  7201] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7201] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7202] <... mkdirat resumed>)      = 0
[pid  7202] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7202] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7203 attached
 <unfinished ...>
[pid  7203] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7203] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7203] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7201] <... futex resumed>)        = 0
[pid  7201] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7202] <... futex resumed>)        = 0
[pid  7201] <... futex resumed>)        = 1
[pid  7202] creat("./file0", 0406 <unfinished ...>
[pid  7201] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7203] <... futex resumed>)        = 1
[pid  7203] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7202] <... creat resumed>)        = 4
[pid  7202] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7201] <... futex resumed>)        = 0
[pid  7202] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7201] close(3)                    = 0
[pid  7201] close(4)                    = 0
[pid  7201] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7201] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7201] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7201] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7201] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7201] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(15)                   = -1 EBADF (Bad file descriptor)
[  165.106624][ T7202] loop0: detected capacity change from 0 to 4096
[pid  7201] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7201] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7201] exit_group(0 <unfinished ...>
[pid  7203] <... futex resumed>)        = ?
[pid  7202] <... futex resumed>)        = ?
[pid  7201] <... exit_group resumed>)   = ?
[pid  7203] +++ exited with 0 +++
[pid  7202] +++ exited with 0 +++
[pid  7201] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2119, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./706", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./706", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./706/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./706/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./706/binderfs")    = 0
[pid  5067] umount2("./706/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./706/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./706/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./706/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./706/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./706/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./706")              = 0
[pid  5067] mkdir("./707", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2122
./strace-static-x86_64: Process 7204 attached
[pid  7204] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7204] chdir("./707")              = 0
[pid  7204] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7204] setpgid(0, 0)               = 0
[pid  7204] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7204] write(3, "1000", 4)         = 4
[pid  7204] close(3)                    = 0
[pid  7204] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7204] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7204] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7204] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7204] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7205 attached
, parent_tid=[2123], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2123
[pid  7205] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7205] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7204] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7205] <... futex resumed>)        = 0
[pid  7204] <... futex resumed>)        = 1
[pid  7204] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7205] memfd_create("syzkaller", 0) = 3
[pid  7205] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7205] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7205] munmap(0x7ff042e09000, 2097152) = 0
[pid  7205] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7205] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7205] close(3)                    = 0
[pid  7205] mkdir("./file0", 0777)      = 0
[pid  7205] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7205] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7205] chdir("./file0")            = 0
[pid  7205] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7205] close(4)                    = 0
[pid  7205] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7204] <... futex resumed>)        = 0
[pid  7204] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7204] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7204] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7204] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7204] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2124], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2124
[pid  7204] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7204] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7206 attached
 <unfinished ...>
[pid  7205] <... futex resumed>)        = 1
[pid  7206] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7206] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7205] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7206] <... chdir resumed>)        = 0
[pid  7206] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7205] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7205] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7204] <... futex resumed>)        = 0
[pid  7204] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7204] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7206] <... futex resumed>)        = 1
[pid  7206] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7205] <... futex resumed>)        = 0
[pid  7205] creat("./file0", 0406)      = 4
[pid  7205] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7204] <... futex resumed>)        = 0
[pid  7204] close(3)                    = 0
[pid  7204] close(4)                    = 0
[pid  7204] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7204] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7204] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7204] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7204] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7204] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(11)                   = -1 EBADF (Bad file descriptor)
[  165.251517][ T7205] loop0: detected capacity change from 0 to 4096
[pid  7204] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(18 <unfinished ...>
[pid  7205] <... futex resumed>)        = 1
[pid  7204] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7205] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7204] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7204] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7204] exit_group(0 <unfinished ...>
[pid  7206] <... futex resumed>)        = ?
[pid  7205] <... futex resumed>)        = ?
[pid  7204] <... exit_group resumed>)   = ?
[pid  7206] +++ exited with 0 +++
[pid  7205] +++ exited with 0 +++
[pid  7204] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2122, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[pid  5067] umount2("./707", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./707", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./707/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./707/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./707/binderfs")    = 0
[pid  5067] umount2("./707/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./707/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./707/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./707/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./707/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./707/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./707")              = 0
[pid  5067] mkdir("./708", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7207 attached
 <unfinished ...>
[pid  7207] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7207] chdir("./708")              = 0
[pid  7207] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7207] setpgid(0, 0)               = 0
[pid  7207] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7207] write(3, "1000", 4)         = 4
[pid  7207] close(3)                    = 0
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2125
[pid  7207] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7207] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7207] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7207] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7207] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2126], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2126
[pid  7207] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7207] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7208 attached
 <unfinished ...>
[pid  7208] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7208] memfd_create("syzkaller", 0) = 3
[pid  7208] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7208] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7208] munmap(0x7ff042e09000, 2097152) = 0
[pid  7208] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7208] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7208] close(3)                    = 0
[pid  7208] mkdir("./file0", 0777)      = 0
[pid  7208] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7208] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7208] chdir("./file0")            = 0
[pid  7208] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7208] close(4)                    = 0
[pid  7208] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7207] <... futex resumed>)        = 0
[pid  7207] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7207] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7207] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7207] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7207] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2127], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2127
[pid  7207] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7207] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7209 attached
 <unfinished ...>
[pid  7209] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7209] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7208] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7209] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7209] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7207] <... futex resumed>)        = 0
[pid  7207] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7209] creat("./file0", 0406 <unfinished ...>
[pid  7208] <... mkdirat resumed>)      = 0
[pid  7207] <... futex resumed>)        = 0
[pid  7208] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7207] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7208] <... futex resumed>)        = 0
[pid  7209] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7208] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7209] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7207] <... futex resumed>)        = 0
[pid  7209] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7207] close(3)                    = 0
[pid  7207] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7207] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7207] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7207] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7207] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7207] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7207] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(25)                   = -1 EBADF (Bad file descriptor)
[  165.400350][ T7208] loop0: detected capacity change from 0 to 4096
[pid  7207] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7207] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7207] exit_group(0 <unfinished ...>
[pid  7209] <... futex resumed>)        = ?
[pid  7208] <... futex resumed>)        = ?
[pid  7207] <... exit_group resumed>)   = ?
[pid  7209] +++ exited with 0 +++
[pid  7208] +++ exited with 0 +++
[pid  7207] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2125, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./708", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./708", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./708/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./708/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./708/binderfs")    = 0
[pid  5067] umount2("./708/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./708/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./708/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./708/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./708/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./708/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./708")              = 0
[pid  5067] mkdir("./709", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2128
./strace-static-x86_64: Process 7210 attached
[pid  7210] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7210] chdir("./709")              = 0
[pid  7210] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7210] setpgid(0, 0)               = 0
[pid  7210] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7210] write(3, "1000", 4)         = 4
[pid  7210] close(3)                    = 0
[pid  7210] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7210] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7210] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7210] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2129], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2129
[pid  7210] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7210] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7211 attached
 <unfinished ...>
[pid  7211] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7211] memfd_create("syzkaller", 0) = 3
[pid  7211] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7211] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7211] munmap(0x7ff042e09000, 2097152) = 0
[pid  7211] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7211] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7211] close(3)                    = 0
[pid  7211] mkdir("./file0", 0777)      = 0
[pid  7211] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7211] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7211] chdir("./file0")            = 0
[pid  7211] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7211] close(4)                    = 0
[pid  7211] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7210] <... futex resumed>)        = 0
[pid  7210] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7210] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7211] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7210] <... futex resumed>)        = 0
[pid  7210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7210] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7210] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7212 attached
 <unfinished ...>
[pid  7212] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7211] <... mkdirat resumed>)      = 0
[pid  7210] <... clone resumed>, parent_tid=[2130], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2130
[pid  7212] <... set_robust_list resumed>) = 0
[pid  7211] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7210] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7212] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7211] <... futex resumed>)        = 0
[pid  7210] <... futex resumed>)        = 0
[pid  7212] <... chdir resumed>)        = 0
[pid  7211] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7210] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7212] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7210] <... futex resumed>)        = 0
[pid  7212] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7210] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7211] <... futex resumed>)        = 0
[pid  7210] <... futex resumed>)        = 1
[pid  7211] creat("./file0", 0406 <unfinished ...>
[pid  7210] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7211] <... creat resumed>)        = 4
[pid  7211] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7210] <... futex resumed>)        = 0
[  165.537004][ T7211] loop0: detected capacity change from 0 to 4096
[pid  7211] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7210] close(3)                    = 0
[pid  7210] close(4)                    = 0
[pid  7210] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7210] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7210] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7210] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7210] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7210] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7210] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7210] exit_group(0 <unfinished ...>
[pid  7212] <... futex resumed>)        = ?
[pid  7210] <... exit_group resumed>)   = ?
[pid  7212] +++ exited with 0 +++
[pid  7211] <... futex resumed>)        = ?
[pid  7211] +++ exited with 0 +++
[pid  7210] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2128, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./709", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./709", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./709/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./709/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./709/binderfs")    = 0
[pid  5067] umount2("./709/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./709/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./709/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./709/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./709/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./709/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./709")              = 0
[pid  5067] mkdir("./710", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7213 attached
, child_tidptr=0x5555570e75d0) = 2131
[pid  7213] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7213] chdir("./710")              = 0
[pid  7213] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7213] setpgid(0, 0)               = 0
[pid  7213] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7213] write(3, "1000", 4)         = 4
[pid  7213] close(3)                    = 0
[pid  7213] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7213] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7213] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7213] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7213] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7214 attached
, parent_tid=[2132], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2132
[pid  7214] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7214] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7213] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7214] <... futex resumed>)        = 0
[pid  7213] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7214] memfd_create("syzkaller", 0) = 3
[pid  7214] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7214] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7214] munmap(0x7ff042e09000, 2097152) = 0
[pid  7214] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7214] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7214] close(3)                    = 0
[pid  7214] mkdir("./file0", 0777)      = 0
[pid  7214] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7214] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7214] chdir("./file0")            = 0
[pid  7214] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7214] close(4)                    = 0
[pid  7214] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7213] <... futex resumed>)        = 0
[pid  7214] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7213] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7214] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7213] <... futex resumed>)        = 0
[pid  7214] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7213] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7213] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7214] <... mkdirat resumed>)      = 0
[pid  7213] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7214] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7213] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7214] <... futex resumed>)        = 0
[pid  7213] <... mprotect resumed>)     = 0
[pid  7214] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7213] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2133], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2133
[pid  7213] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7213] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7215 attached
 <unfinished ...>
[pid  7215] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7215] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7215] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7213] <... futex resumed>)        = 0
[pid  7213] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7214] <... futex resumed>)        = 0
[pid  7213] <... futex resumed>)        = 1
[pid  7214] creat("./file0", 0406 <unfinished ...>
[pid  7213] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7215] <... futex resumed>)        = 1
[pid  7215] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7214] <... creat resumed>)        = 4
[pid  7214] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7213] <... futex resumed>)        = 0
[pid  7213] close(3 <unfinished ...>
[pid  7214] <... futex resumed>)        = 1
[pid  7213] <... close resumed>)        = 0
[pid  7214] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7213] close(4)                    = 0
[pid  7213] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7213] close(6)                    = -1 EBADF (Bad file descriptor)
[  165.697414][ T7214] loop0: detected capacity change from 0 to 4096
[pid  7213] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7213] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7213] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7213] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7213] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7213] exit_group(0 <unfinished ...>
[pid  7215] <... futex resumed>)        = ?
[pid  7214] <... futex resumed>)        = ?
[pid  7213] <... exit_group resumed>)   = ?
[pid  7215] +++ exited with 0 +++
[pid  7214] +++ exited with 0 +++
[pid  7213] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2131, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./710", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./710", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./710/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./710/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./710/binderfs")    = 0
[pid  5067] umount2("./710/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./710/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./710/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./710/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./710/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./710/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./710")              = 0
[pid  5067] mkdir("./711", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2134
./strace-static-x86_64: Process 7216 attached
[pid  7216] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7216] chdir("./711")              = 0
[pid  7216] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7216] setpgid(0, 0)               = 0
[pid  7216] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7216] write(3, "1000", 4)         = 4
[pid  7216] close(3)                    = 0
[pid  7216] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7216] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7216] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7216] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7216] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2135], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2135
[pid  7216] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7216] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7217 attached
 <unfinished ...>
[pid  7217] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7217] memfd_create("syzkaller", 0) = 3
[pid  7217] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7217] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7217] munmap(0x7ff042e09000, 2097152) = 0
[pid  7217] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7217] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7217] close(3)                    = 0
[pid  7217] mkdir("./file0", 0777)      = 0
[pid  7217] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7217] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7217] chdir("./file0")            = 0
[pid  7217] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7217] close(4)                    = 0
[pid  7217] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7216] <... futex resumed>)        = 0
[pid  7217] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)
[pid  7216] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7217] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7216] <... futex resumed>)        = 0
[pid  7216] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7216] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7216] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7216] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7218 attached
, parent_tid=[2136], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2136
[pid  7218] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7216] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7218] <... set_robust_list resumed>) = 0
[pid  7216] <... futex resumed>)        = 0
[pid  7218] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7216] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7218] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7218] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7217] <... mkdirat resumed>)      = 0
[pid  7216] <... futex resumed>)        = 0
[pid  7218] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7217] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7216] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7217] <... futex resumed>)        = 0
[pid  7216] <... futex resumed>)        = 0
[pid  7217] creat("./file0", 0406 <unfinished ...>
[pid  7216] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7217] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7217] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7216] <... futex resumed>)        = 0
[pid  7217] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7216] close(3)                    = 0
[pid  7216] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7216] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7216] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7216] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7216] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7216] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7216] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(19)                   = -1 EBADF (Bad file descriptor)
[  165.842278][ T7217] loop0: detected capacity change from 0 to 4096
[pid  7216] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7216] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7216] exit_group(0 <unfinished ...>
[pid  7218] <... futex resumed>)        = ?
[pid  7217] <... futex resumed>)        = ?
[pid  7216] <... exit_group resumed>)   = ?
[pid  7218] +++ exited with 0 +++
[pid  7217] +++ exited with 0 +++
[pid  7216] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2134, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./711", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./711", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./711/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./711/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./711/binderfs")    = 0
[pid  5067] umount2("./711/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./711/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./711/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./711/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./711/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./711/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./711")              = 0
[pid  5067] mkdir("./712", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2137
./strace-static-x86_64: Process 7219 attached
[pid  7219] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7219] chdir("./712")              = 0
[pid  7219] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7219] setpgid(0, 0)               = 0
[pid  7219] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7219] write(3, "1000", 4)         = 4
[pid  7219] close(3)                    = 0
[pid  7219] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7219] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7219] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7219] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7219] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7220 attached
 <unfinished ...>
[pid  7220] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7220] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7219] <... clone resumed>, parent_tid=[2138], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2138
[pid  7219] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7220] <... futex resumed>)        = 0
[pid  7219] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7220] memfd_create("syzkaller", 0) = 3
[pid  7220] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7220] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7220] munmap(0x7ff042e09000, 2097152) = 0
[pid  7220] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7220] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7220] close(3)                    = 0
[pid  7220] mkdir("./file0", 0777)      = 0
[pid  7220] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7220] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7220] chdir("./file0")            = 0
[pid  7220] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7220] close(4)                    = 0
[pid  7220] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7219] <... futex resumed>)        = 0
[pid  7219] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7219] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7219] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7219] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7219] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2139], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2139
[pid  7219] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7219] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7220] <... futex resumed>)        = 1
[pid  7220] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7220] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7220] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7221 attached
 <unfinished ...>
[pid  7221] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7221] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7221] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7219] <... futex resumed>)        = 0
[pid  7221] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7219] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7219] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7220] <... futex resumed>)        = 0
[pid  7220] creat("./file0", 0406)      = 4
[pid  7220] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7219] <... futex resumed>)        = 0
[pid  7219] close(3)                    = 0
[pid  7219] close(4 <unfinished ...>
[pid  7220] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7219] <... close resumed>)        = 0
[  166.001932][ T7220] loop0: detected capacity change from 0 to 4096
[pid  7219] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7219] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7219] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7219] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7219] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7219] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7219] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7219] exit_group(0 <unfinished ...>
[pid  7221] <... futex resumed>)        = ?
[pid  7220] <... futex resumed>)        = ?
[pid  7219] <... exit_group resumed>)   = ?
[pid  7221] +++ exited with 0 +++
[pid  7220] +++ exited with 0 +++
[pid  7219] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2137, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[pid  5067] umount2("./712", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./712", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./712/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./712/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./712/binderfs")    = 0
[pid  5067] umount2("./712/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./712/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./712/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./712/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./712/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./712/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./712")              = 0
[pid  5067] mkdir("./713", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2140
./strace-static-x86_64: Process 7222 attached
[pid  7222] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7222] chdir("./713")              = 0
[pid  7222] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7222] setpgid(0, 0)               = 0
[pid  7222] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7222] write(3, "1000", 4)         = 4
[pid  7222] close(3)                    = 0
[pid  7222] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7222] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7222] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7222] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7222] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7223 attached
, parent_tid=[2141], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2141
[pid  7223] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7222] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7222] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7223] memfd_create("syzkaller", 0) = 3
[pid  7223] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7223] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7223] munmap(0x7ff042e09000, 2097152) = 0
[pid  7223] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7223] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7223] close(3)                    = 0
[pid  7223] mkdir("./file0", 0777)      = 0
[pid  7223] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7223] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7223] chdir("./file0")            = 0
[pid  7223] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7223] close(4)                    = 0
[pid  7223] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7223] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7222] <... futex resumed>)        = 0
[pid  7222] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7222] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7223] <... futex resumed>)        = 0
[pid  7222] <... futex resumed>)        = 0
[pid  7222] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7223] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7222] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7222] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7222] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7224 attached
, parent_tid=[2142], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2142
[pid  7224] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7222] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7222] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7224] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7223] <... mkdirat resumed>)      = 0
[pid  7223] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7224] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7223] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7222] <... futex resumed>)        = 0
[pid  7222] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7223] <... futex resumed>)        = 0
[pid  7222] <... futex resumed>)        = 1
[pid  7224] <... futex resumed>)        = 1
[pid  7223] creat("./file0", 0406 <unfinished ...>
[pid  7222] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7224] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7223] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7223] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7222] <... futex resumed>)        = 0
[pid  7223] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7222] close(3)                    = 0
[pid  7222] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7222] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7222] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7222] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7222] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7222] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7222] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7222] close(28)                   = -1 EBADF (Bad file descriptor)
[  166.167149][ T7223] loop0: detected capacity change from 0 to 4096
[pid  7222] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7222] exit_group(0 <unfinished ...>
[pid  7224] <... futex resumed>)        = ?
[pid  7223] <... futex resumed>)        = ?
[pid  7222] <... exit_group resumed>)   = ?
[pid  7224] +++ exited with 0 +++
[pid  7223] +++ exited with 0 +++
[pid  7222] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2140, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./713", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./713", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./713/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./713/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./713/binderfs")    = 0
[pid  5067] umount2("./713/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./713/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./713/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./713/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./713/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./713/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./713")              = 0
[pid  5067] mkdir("./714", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2143
./strace-static-x86_64: Process 7225 attached
[pid  7225] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7225] chdir("./714")              = 0
[pid  7225] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7225] setpgid(0, 0)               = 0
[pid  7225] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7225] write(3, "1000", 4)         = 4
[pid  7225] close(3)                    = 0
[pid  7225] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7225] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7225] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7225] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7225] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7226 attached
, parent_tid=[2144], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2144
[pid  7226] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7225] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7225] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7226] <... set_robust_list resumed>) = 0
[pid  7226] memfd_create("syzkaller", 0) = 3
[pid  7226] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7226] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7226] munmap(0x7ff042e09000, 2097152) = 0
[pid  7226] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7226] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7226] close(3)                    = 0
[pid  7226] mkdir("./file0", 0777)      = 0
[pid  7226] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7226] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7226] chdir("./file0")            = 0
[pid  7226] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7226] close(4)                    = 0
[pid  7226] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7225] <... futex resumed>)        = 0
[pid  7225] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7225] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7225] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7225] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7225] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7227 attached
, parent_tid=[2145], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2145
[pid  7225] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7227] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7225] <... futex resumed>)        = 0
[pid  7225] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7227] <... set_robust_list resumed>) = 0
[pid  7227] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7226] <... futex resumed>)        = 1
[pid  7226] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7227] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7226] <... mkdirat resumed>)      = 0
[  166.322670][ T7226] loop0: detected capacity change from 0 to 4096
[pid  7227] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7225] <... futex resumed>)        = 0
[pid  7227] creat("./file0", 0406 <unfinished ...>
[pid  7226] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7225] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7227] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7226] <... futex resumed>)        = 0
[pid  7225] <... futex resumed>)        = 0
[pid  7227] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7226] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7225] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7227] <... futex resumed>)        = 0
[pid  7225] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7227] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7225] close(3)                    = 0
[pid  7225] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7225] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7225] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7225] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7225] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7225] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7225] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7225] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7225] exit_group(0 <unfinished ...>
[pid  7227] <... futex resumed>)        = ?
[pid  7226] <... futex resumed>)        = ?
[pid  7225] <... exit_group resumed>)   = ?
[pid  7227] +++ exited with 0 +++
[pid  7226] +++ exited with 0 +++
[pid  7225] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2143, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./714", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./714", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./714/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./714/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./714/binderfs")    = 0
[pid  5067] umount2("./714/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./714/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./714/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./714/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./714/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./714/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./714")              = 0
[pid  5067] mkdir("./715", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2146
./strace-static-x86_64: Process 7228 attached
[pid  7228] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7228] chdir("./715")              = 0
[pid  7228] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7228] setpgid(0, 0)               = 0
[pid  7228] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7228] write(3, "1000", 4)         = 4
[pid  7228] close(3)                    = 0
[pid  7228] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7228] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7228] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7228] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7228] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7229 attached
, parent_tid=[2147], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2147
[pid  7228] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7228] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7229] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7229] memfd_create("syzkaller", 0) = 3
[pid  7229] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7229] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7229] munmap(0x7ff042e09000, 2097152) = 0
[pid  7229] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7229] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7229] close(3)                    = 0
[pid  7229] mkdir("./file0", 0777)      = 0
[pid  7229] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7229] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7229] chdir("./file0")            = 0
[pid  7229] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7229] close(4)                    = 0
[pid  7229] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7228] <... futex resumed>)        = 0
[pid  7228] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7228] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7228] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7229] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7228] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7228] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7228] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7230 attached
 <unfinished ...>
[pid  7229] <... mkdirat resumed>)      = 0
[pid  7230] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7229] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7228] <... clone resumed>, parent_tid=[2148], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2148
[pid  7230] <... set_robust_list resumed>) = 0
[pid  7229] <... futex resumed>)        = 0
[pid  7228] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7230] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7229] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7228] <... futex resumed>)        = 0
[pid  7230] <... chdir resumed>)        = 0
[pid  7228] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7230] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7228] <... futex resumed>)        = 0
[pid  7230] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7228] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7229] <... futex resumed>)        = 0
[pid  7228] <... futex resumed>)        = 1
[pid  7229] creat("./file0", 0406 <unfinished ...>
[pid  7228] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7229] <... creat resumed>)        = 4
[pid  7229] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7228] <... futex resumed>)        = 0
[pid  7229] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7228] close(3)                    = 0
[pid  7228] close(4)                    = 0
[pid  7228] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7228] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7228] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7228] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7228] close(9)                    = -1 EBADF (Bad file descriptor)
[  166.488175][ T7229] loop0: detected capacity change from 0 to 4096
[pid  7228] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7228] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7228] exit_group(0 <unfinished ...>
[pid  7230] <... futex resumed>)        = ?
[pid  7229] <... futex resumed>)        = ?
[pid  7228] <... exit_group resumed>)   = ?
[pid  7230] +++ exited with 0 +++
[pid  7229] +++ exited with 0 +++
[pid  7228] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2146, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./715", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./715", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./715/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./715/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./715/binderfs")    = 0
[pid  5067] umount2("./715/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./715/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./715/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./715/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./715/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./715/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./715")              = 0
[pid  5067] mkdir("./716", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2149
./strace-static-x86_64: Process 7231 attached
[pid  7231] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7231] chdir("./716")              = 0
[pid  7231] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7231] setpgid(0, 0)               = 0
[pid  7231] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7231] write(3, "1000", 4)         = 4
[pid  7231] close(3)                    = 0
[pid  7231] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7231] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7231] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7231] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7231] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7232 attached
, parent_tid=[2150], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2150
[pid  7231] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7231] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7232] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7232] memfd_create("syzkaller", 0) = 3
[pid  7232] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7232] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7232] munmap(0x7ff042e09000, 2097152) = 0
[pid  7232] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7232] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7232] close(3)                    = 0
[pid  7232] mkdir("./file0", 0777)      = 0
[pid  7232] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7232] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7232] chdir("./file0")            = 0
[pid  7232] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7232] close(4)                    = 0
[pid  7232] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7231] <... futex resumed>)        = 0
[pid  7231] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7231] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7231] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7231] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7231] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2151], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2151
[pid  7231] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7231] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7232] <... futex resumed>)        = 1
[pid  7232] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7233 attached
 <unfinished ...>
[pid  7233] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7233] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7232] <... mkdirat resumed>)      = 0
[pid  7232] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7232] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7233] <... chdir resumed>)        = 0
[pid  7233] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7231] <... futex resumed>)        = 0
[pid  7231] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7231] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7232] <... futex resumed>)        = 0
[pid  7232] creat("./file0", 0406 <unfinished ...>
[pid  7233] <... futex resumed>)        = 1
[pid  7233] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7232] <... creat resumed>)        = 4
[pid  7232] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7231] <... futex resumed>)        = 0
[pid  7231] close(3)                    = 0
[pid  7231] close(4)                    = 0
[pid  7231] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7231] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7231] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7231] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7231] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7231] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(16 <unfinished ...>
[pid  7232] <... futex resumed>)        = 1
[pid  7231] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7232] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7231] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7231] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7231] exit_group(0 <unfinished ...>
[pid  7233] <... futex resumed>)        = ?
[pid  7232] <... futex resumed>)        = ?
[pid  7231] <... exit_group resumed>)   = ?
[pid  7232] +++ exited with 0 +++
[pid  7233] +++ exited with 0 +++
[pid  7231] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2149, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=1 /* 0.01 s */} ---
[pid  5067] umount2("./716", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./716", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[  166.652668][ T7232] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./716/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./716/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./716/binderfs")    = 0
[pid  5067] umount2("./716/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./716/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./716/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./716/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./716/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./716/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./716")              = 0
[pid  5067] mkdir("./717", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7234 attached
, child_tidptr=0x5555570e75d0) = 2152
[pid  7234] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7234] chdir("./717")              = 0
[pid  7234] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7234] setpgid(0, 0)               = 0
[pid  7234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7234] write(3, "1000", 4)         = 4
[pid  7234] close(3)                    = 0
[pid  7234] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7234] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7234] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7234] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7235 attached
, parent_tid=[2153], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2153
[pid  7235] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7234] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7235] <... set_robust_list resumed>) = 0
[pid  7234] <... futex resumed>)        = 0
[pid  7234] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7235] memfd_create("syzkaller", 0) = 3
[pid  7235] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7235] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7235] munmap(0x7ff042e09000, 2097152) = 0
[pid  7235] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7235] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7235] close(3)                    = 0
[pid  7235] mkdir("./file0", 0777)      = 0
[pid  7235] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7235] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7235] chdir("./file0")            = 0
[pid  7235] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7235] close(4)                    = 0
[pid  7235] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7234] <... futex resumed>)        = 0
[pid  7234] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7234] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7235] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7234] <... futex resumed>)        = 0
[pid  7234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7234] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7234] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2154], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2154
[pid  7234] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7234] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7236 attached
 <unfinished ...>
[pid  7236] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7236] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7235] <... mkdirat resumed>)      = 0
[pid  7236] <... chdir resumed>)        = 0
[pid  7236] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7234] <... futex resumed>)        = 0
[pid  7234] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7234] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7236] <... futex resumed>)        = 1
[pid  7236] creat("./file0", 0406 <unfinished ...>
[pid  7235] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7235] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7236] <... creat resumed>)        = 4
[pid  7236] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7234] <... futex resumed>)        = 0
[pid  7234] close(3 <unfinished ...>
[pid  7236] <... futex resumed>)        = 1
[pid  7234] <... close resumed>)        = 0
[pid  7234] close(4)                    = 0
[pid  7234] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7234] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7234] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7234] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7234] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7234] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7236] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7234] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7234] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7234] exit_group(0 <unfinished ...>
[pid  7236] <... futex resumed>)        = ?
[pid  7235] <... futex resumed>)        = ?
[pid  7234] <... exit_group resumed>)   = ?
[pid  7236] +++ exited with 0 +++
[pid  7235] +++ exited with 0 +++
[pid  7234] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2152, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./717", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./717", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./717/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  166.784221][ T7235] loop0: detected capacity change from 0 to 4096
[pid  5067] lstat("./717/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./717/binderfs")    = 0
[pid  5067] umount2("./717/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./717/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./717/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./717/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./717/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./717/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./717")              = 0
[pid  5067] mkdir("./718", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2155
./strace-static-x86_64: Process 7237 attached
[pid  7237] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7237] chdir("./718")              = 0
[pid  7237] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7237] setpgid(0, 0)               = 0
[pid  7237] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7237] write(3, "1000", 4)         = 4
[pid  7237] close(3)                    = 0
[pid  7237] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7237] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7237] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7237] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7237] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7238 attached
, parent_tid=[2156], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2156
[pid  7237] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7237] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7238] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7238] memfd_create("syzkaller", 0) = 3
[pid  7238] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7238] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7238] munmap(0x7ff042e09000, 2097152) = 0
[pid  7238] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7238] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7238] close(3)                    = 0
[pid  7238] mkdir("./file0", 0777)      = 0
[pid  7238] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7238] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7238] chdir("./file0")            = 0
[pid  7238] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7238] close(4)                    = 0
[pid  7238] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7237] <... futex resumed>)        = 0
[pid  7237] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7237] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7237] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7237] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7237] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2157], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2157
[pid  7237] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7237] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7238] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7239 attached
 <unfinished ...>
[pid  7239] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7239] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7239] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7237] <... futex resumed>)        = 0
[pid  7237] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7237] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7239] <... futex resumed>)        = 1
[pid  7239] creat("./file0", 0406 <unfinished ...>
[pid  7238] <... mkdirat resumed>)      = 0
[pid  7238] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7238] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7239] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7239] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7237] <... futex resumed>)        = 0
[pid  7237] close(3)                    = 0
[pid  7237] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7237] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7237] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7237] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7237] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7237] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7237] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(27 <unfinished ...>
[pid  7239] <... futex resumed>)        = 1
[pid  7237] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7239] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7237] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7237] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7237] exit_group(0 <unfinished ...>
[pid  7239] <... futex resumed>)        = ?
[pid  7237] <... exit_group resumed>)   = ?
[pid  7239] +++ exited with 0 +++
[pid  7238] <... futex resumed>)        = ?
[  166.929969][ T7238] loop0: detected capacity change from 0 to 4096
[pid  7238] +++ exited with 0 +++
[pid  7237] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2155, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./718", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./718", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./718/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./718/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./718/binderfs")    = 0
[pid  5067] umount2("./718/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./718/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./718/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./718/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./718/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./718/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./718")              = 0
[pid  5067] mkdir("./719", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2158
./strace-static-x86_64: Process 7240 attached
[pid  7240] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7240] chdir("./719")              = 0
[pid  7240] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7240] setpgid(0, 0)               = 0
[pid  7240] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7240] write(3, "1000", 4)         = 4
[pid  7240] close(3)                    = 0
[pid  7240] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7240] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7240] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7240] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7240] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2159], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2159
[pid  7240] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7240] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7241 attached
 <unfinished ...>
[pid  7241] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7241] memfd_create("syzkaller", 0) = 3
[pid  7241] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7241] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7241] munmap(0x7ff042e09000, 2097152) = 0
[pid  7241] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7241] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7241] close(3)                    = 0
[pid  7241] mkdir("./file0", 0777)      = 0
[pid  7241] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7241] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7241] chdir("./file0")            = 0
[pid  7241] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7241] close(4)                    = 0
[pid  7241] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7241] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7240] <... futex resumed>)        = 0
[pid  7240] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7240] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7240] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7240] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7240] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7242 attached
, parent_tid=[2160], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2160
[pid  7242] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7240] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7242] <... set_robust_list resumed>) = 0
[pid  7240] <... futex resumed>)        = 0
[pid  7240] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7242] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7242] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7240] <... futex resumed>)        = 0
[pid  7242] creat("./file0", 0406 <unfinished ...>
[pid  7240] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7240] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7242] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7242] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7241] <... futex resumed>)        = 0
[pid  7241] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7242] <... futex resumed>)        = 1
[pid  7240] <... futex resumed>)        = 0
[pid  7242] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7241] <... mkdirat resumed>)      = 0
[pid  7241] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7241] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7240] close(3)                    = 0
[pid  7240] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7240] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7240] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7240] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7240] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7240] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7240] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(13)                   = -1 EBADF (Bad file descriptor)
[  167.059485][ T7241] loop0: detected capacity change from 0 to 4096
[pid  7240] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7240] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7240] exit_group(0 <unfinished ...>
[pid  7242] <... futex resumed>)        = ?
[pid  7241] <... futex resumed>)        = ?
[pid  7240] <... exit_group resumed>)   = ?
[pid  7242] +++ exited with 0 +++
[pid  7241] +++ exited with 0 +++
[pid  7240] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2158, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./719", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./719", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./719/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./719/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./719/binderfs")    = 0
[pid  5067] umount2("./719/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./719/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./719/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./719/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./719/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./719/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./719")              = 0
[pid  5067] mkdir("./720", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2161
./strace-static-x86_64: Process 7243 attached
[pid  7243] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7243] chdir("./720")              = 0
[pid  7243] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7243] setpgid(0, 0)               = 0
[pid  7243] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7243] write(3, "1000", 4)         = 4
[pid  7243] close(3)                    = 0
[pid  7243] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7243] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7243] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7243] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7243] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7244 attached
, parent_tid=[2162], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2162
[pid  7243] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7243] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7244] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7244] memfd_create("syzkaller", 0) = 3
[pid  7244] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7244] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7244] munmap(0x7ff042e09000, 2097152) = 0
[pid  7244] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7244] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7244] close(3)                    = 0
[pid  7244] mkdir("./file0", 0777)      = 0
[pid  7244] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7244] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7244] chdir("./file0")            = 0
[pid  7244] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7244] close(4)                    = 0
[pid  7244] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7243] <... futex resumed>)        = 0
[pid  7243] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7243] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7243] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7243] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7243] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2163], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2163
[pid  7243] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7243] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7244] <... futex resumed>)        = 1
[pid  7244] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7245 attached
 <unfinished ...>
[pid  7245] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7245] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7244] <... mkdirat resumed>)      = 0
[pid  7245] <... chdir resumed>)        = 0
[pid  7244] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7244] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7245] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7243] <... futex resumed>)        = 0
[pid  7243] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7243] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7245] <... futex resumed>)        = 1
[pid  7245] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7244] <... futex resumed>)        = 0
[pid  7244] creat("./file0", 0406)      = 4
[pid  7244] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7243] <... futex resumed>)        = 0
[pid  7244] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7243] close(3)                    = 0
[pid  7243] close(4)                    = 0
[pid  7243] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7243] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7243] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7243] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7243] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7243] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7243] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7243] exit_group(0 <unfinished ...>
[pid  7245] <... futex resumed>)        = ?
[pid  7244] <... futex resumed>)        = ?
[pid  7243] <... exit_group resumed>)   = ?
[pid  7245] +++ exited with 0 +++
[pid  7244] +++ exited with 0 +++
[pid  7243] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2161, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./720", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./720", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[  167.218528][ T7244] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./720/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./720/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./720/binderfs")    = 0
[pid  5067] umount2("./720/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./720/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./720/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./720/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./720/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./720/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./720")              = 0
[pid  5067] mkdir("./721", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2164
./strace-static-x86_64: Process 7246 attached
[pid  7246] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7246] chdir("./721")              = 0
[pid  7246] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7246] setpgid(0, 0)               = 0
[pid  7246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7246] write(3, "1000", 4)         = 4
[pid  7246] close(3)                    = 0
[pid  7246] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7246] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7246] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7246] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7246] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7247 attached
 <unfinished ...>
[pid  7247] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7247] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7246] <... clone resumed>, parent_tid=[2165], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2165
[pid  7246] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7247] <... futex resumed>)        = 0
[pid  7246] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7247] memfd_create("syzkaller", 0) = 3
[pid  7247] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7247] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7247] munmap(0x7ff042e09000, 2097152) = 0
[pid  7247] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7247] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7247] close(3)                    = 0
[pid  7247] mkdir("./file0", 0777)      = 0
[pid  7247] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7247] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7247] chdir("./file0")            = 0
[pid  7247] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7247] close(4)                    = 0
[pid  7247] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7246] <... futex resumed>)        = 0
[pid  7246] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7246] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7246] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7246] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7246] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2166], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2166
[pid  7246] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7246] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7247] <... futex resumed>)        = 1
[pid  7247] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7248 attached
 <unfinished ...>
[pid  7248] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7248] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7247] <... mkdirat resumed>)      = 0
[pid  7248] <... chdir resumed>)        = 0
[pid  7248] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7246] <... futex resumed>)        = 0
[pid  7246] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7246] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7248] <... futex resumed>)        = 1
[pid  7248] creat("./file0", 0406 <unfinished ...>
[pid  7247] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7247] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7248] <... creat resumed>)        = 4
[pid  7248] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7246] <... futex resumed>)        = 0
[pid  7246] close(3)                    = 0
[pid  7246] close(4)                    = 0
[pid  7246] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7246] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7246] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7246] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7246] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7246] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(13 <unfinished ...>
[pid  7248] <... futex resumed>)        = 1
[pid  7246] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7248] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7246] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7246] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7246] exit_group(0 <unfinished ...>
[pid  7248] <... futex resumed>)        = ?
[pid  7247] <... futex resumed>)        = ?
[pid  7246] <... exit_group resumed>)   = ?
[pid  7248] +++ exited with 0 +++
[pid  7247] +++ exited with 0 +++
[pid  7246] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2164, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./721", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./721", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./721/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./721/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./721/binderfs")    = 0
[  167.359359][ T7247] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./721/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./721/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./721/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./721/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./721/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./721/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./721")              = 0
[pid  5067] mkdir("./722", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2167
./strace-static-x86_64: Process 7249 attached
[pid  7249] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7249] chdir("./722")              = 0
[pid  7249] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7249] setpgid(0, 0)               = 0
[pid  7249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7249] write(3, "1000", 4)         = 4
[pid  7249] close(3)                    = 0
[pid  7249] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7249] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7249] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7249] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7249] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2168], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2168
[pid  7249] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7249] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7250 attached
 <unfinished ...>
[pid  7250] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7250] memfd_create("syzkaller", 0) = 3
[pid  7250] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7250] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7250] munmap(0x7ff042e09000, 2097152) = 0
[pid  7250] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7250] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7250] close(3)                    = 0
[pid  7250] mkdir("./file0", 0777)      = 0
[pid  7250] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7250] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7250] chdir("./file0")            = 0
[pid  7250] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7250] close(4)                    = 0
[pid  7250] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7249] <... futex resumed>)        = 0
[pid  7249] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7249] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7249] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7249] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7249] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2169], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2169
[pid  7249] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7249] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7250] <... futex resumed>)        = 1
[pid  7250] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7251 attached
) = 0
[pid  7250] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7250] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7251] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7251] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7251] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7249] <... futex resumed>)        = 0
[pid  7249] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7251] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7249] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7250] <... futex resumed>)        = 0
[pid  7250] creat("./file0", 0406)      = 4
[pid  7250] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7250] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7249] <... futex resumed>)        = 0
[pid  7249] close(3)                    = 0
[pid  7249] close(4)                    = 0
[pid  7249] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7249] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7249] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7249] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7249] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7249] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(27)                   = -1 EBADF (Bad file descriptor)
[  167.482438][ T7250] loop0: detected capacity change from 0 to 4096
[pid  7249] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7249] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7249] exit_group(0 <unfinished ...>
[pid  7251] <... futex resumed>)        = ?
[pid  7250] <... futex resumed>)        = ?
[pid  7249] <... exit_group resumed>)   = ?
[pid  7251] +++ exited with 0 +++
[pid  7250] +++ exited with 0 +++
[pid  7249] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2167, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] umount2("./722", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./722", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./722/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./722/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./722/binderfs")    = 0
[pid  5067] umount2("./722/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./722/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./722/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./722/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./722/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./722/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./722")              = 0
[pid  5067] mkdir("./723", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2170
./strace-static-x86_64: Process 7252 attached
[pid  7252] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7252] chdir("./723")              = 0
[pid  7252] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7252] setpgid(0, 0)               = 0
[pid  7252] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7252] write(3, "1000", 4)         = 4
[pid  7252] close(3)                    = 0
[pid  7252] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7252] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7252] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7252] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7252] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2171], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2171
./strace-static-x86_64: Process 7253 attached
[pid  7253] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7253] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7252] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7253] <... futex resumed>)        = 0
[pid  7252] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7253] memfd_create("syzkaller", 0) = 3
[pid  7253] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7253] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7253] munmap(0x7ff042e09000, 2097152) = 0
[pid  7253] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7253] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7253] close(3)                    = 0
[pid  7253] mkdir("./file0", 0777)      = 0
[pid  7253] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7253] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7253] chdir("./file0")            = 0
[pid  7253] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7253] close(4)                    = 0
[pid  7253] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7253] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7252] <... futex resumed>)        = 0
[pid  7252] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7252] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7252] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7252] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7252] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2172], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2172
[pid  7252] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7252] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7254 attached
 <unfinished ...>
[pid  7254] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7254] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7253] <... futex resumed>)        = 0
[pid  7253] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7254] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7254] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7252] <... futex resumed>)        = 0
[pid  7254] <... futex resumed>)        = 1
[pid  7252] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7254] creat("./file0", 0406 <unfinished ...>
[pid  7252] <... futex resumed>)        = 0
[pid  7252] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7254] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7254] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7252] <... futex resumed>)        = 0
[pid  7254] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7253] <... mkdirat resumed>)      = 0
[pid  7253] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7252] close(3)                    = 0
[pid  7252] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7252] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7252] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7252] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7252] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7252] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7252] close(10 <unfinished ...>
[pid  7253] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7252] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7252] close(11)                   = -1 EBADF (Bad file descriptor)
[  167.635377][ T7253] loop0: detected capacity change from 0 to 4096
[pid  7252] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7252] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7252] exit_group(0 <unfinished ...>
[pid  7254] <... futex resumed>)        = ?
[pid  7252] <... exit_group resumed>)   = ?
[pid  7254] +++ exited with 0 +++
[pid  7253] <... futex resumed>)        = ?
[pid  7253] +++ exited with 0 +++
[pid  7252] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2170, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./723", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./723", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./723/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./723/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./723/binderfs")    = 0
[pid  5067] umount2("./723/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./723/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./723/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./723/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./723/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./723/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./723")              = 0
[pid  5067] mkdir("./724", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2173
./strace-static-x86_64: Process 7255 attached
[pid  7255] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7255] chdir("./724")              = 0
[pid  7255] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7255] setpgid(0, 0)               = 0
[pid  7255] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7255] write(3, "1000", 4)         = 4
[pid  7255] close(3)                    = 0
[pid  7255] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7255] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7255] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7255] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7255] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7256 attached
, parent_tid=[2174], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2174
[pid  7256] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7255] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7256] <... set_robust_list resumed>) = 0
[pid  7255] <... futex resumed>)        = 0
[pid  7255] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7256] memfd_create("syzkaller", 0) = 3
[pid  7256] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7256] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7256] munmap(0x7ff042e09000, 2097152) = 0
[pid  7256] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7256] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7256] close(3)                    = 0
[pid  7256] mkdir("./file0", 0777)      = 0
[pid  7256] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7256] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7256] chdir("./file0")            = 0
[pid  7256] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7256] close(4)                    = 0
[pid  7256] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7255] <... futex resumed>)        = 0
[pid  7255] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7255] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7255] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7255] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7255] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2175], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2175
[pid  7255] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7255] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7256] <... futex resumed>)        = 1
[pid  7256] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7257 attached
 <unfinished ...>
[pid  7257] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7257] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7256] <... mkdirat resumed>)      = 0
[pid  7256] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7256] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7257] <... chdir resumed>)        = 0
[pid  7257] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7255] <... futex resumed>)        = 0
[pid  7255] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7255] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7256] <... futex resumed>)        = 0
[pid  7256] creat("./file0", 0406 <unfinished ...>
[pid  7257] <... futex resumed>)        = 1
[pid  7257] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7256] <... creat resumed>)        = 4
[pid  7256] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7255] <... futex resumed>)        = 0
[pid  7255] close(3)                    = 0
[pid  7255] close(4)                    = 0
[pid  7255] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7255] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7255] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7255] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7255] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7255] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7255] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7255] exit_group(0 <unfinished ...>
[pid  7257] <... futex resumed>)        = ?
[pid  7255] <... exit_group resumed>)   = ?
[pid  7257] +++ exited with 0 +++
[pid  7256] <... futex resumed>)        = ?
[pid  7256] +++ exited with 0 +++
[pid  7255] +++ exited with 0 +++
[  167.788332][ T7256] loop0: detected capacity change from 0 to 4096
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2173, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./724", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./724", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./724/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./724/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./724/binderfs")    = 0
[pid  5067] umount2("./724/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./724/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./724/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./724/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./724/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./724/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./724")              = 0
[pid  5067] mkdir("./725", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2176
./strace-static-x86_64: Process 7258 attached
[pid  7258] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7258] chdir("./725")              = 0
[pid  7258] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7258] setpgid(0, 0)               = 0
[pid  7258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7258] write(3, "1000", 4)         = 4
[pid  7258] close(3)                    = 0
[pid  7258] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7258] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7258] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7258] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7258] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7259 attached
, parent_tid=[2177], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2177
[pid  7259] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7259] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7258] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7259] <... futex resumed>)        = 0
[pid  7258] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7259] memfd_create("syzkaller", 0) = 3
[pid  7259] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7259] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7259] munmap(0x7ff042e09000, 2097152) = 0
[pid  7259] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7259] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7259] close(3)                    = 0
[pid  7259] mkdir("./file0", 0777)      = 0
[pid  7259] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7259] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7259] chdir("./file0")            = 0
[pid  7259] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7259] close(4)                    = 0
[pid  7259] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7259] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7258] <... futex resumed>)        = 0
[pid  7258] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7259] <... futex resumed>)        = 0
[pid  7258] <... futex resumed>)        = 1
[pid  7258] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7259] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7258] <... futex resumed>)        = 0
[pid  7258] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7258] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7258] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7260 attached
, parent_tid=[2178], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2178
[pid  7260] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7258] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7260] <... set_robust_list resumed>) = 0
[pid  7258] <... futex resumed>)        = 0
[pid  7260] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7258] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7259] <... mkdirat resumed>)      = 0
[pid  7260] <... chdir resumed>)        = 0
[pid  7260] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7258] <... futex resumed>)        = 0
[pid  7258] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7258] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7260] <... futex resumed>)        = 1
[pid  7260] creat("./file0", 0406 <unfinished ...>
[pid  7259] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7259] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7260] <... creat resumed>)        = 4
[pid  7260] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7258] <... futex resumed>)        = 0
[pid  7258] close(3)                    = 0
[pid  7258] close(4)                    = 0
[pid  7258] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7258] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7258] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7258] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7258] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7258] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(22 <unfinished ...>
[pid  7260] <... futex resumed>)        = 1
[pid  7258] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7260] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7258] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(25)                   = -1 EBADF (Bad file descriptor)
[  167.936198][ T7259] loop0: detected capacity change from 0 to 4096
[pid  7258] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7258] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7258] exit_group(0 <unfinished ...>
[pid  7260] <... futex resumed>)        = ?
[pid  7258] <... exit_group resumed>)   = ?
[pid  7260] +++ exited with 0 +++
[pid  7259] <... futex resumed>)        = ?
[pid  7259] +++ exited with 0 +++
[pid  7258] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2176, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] umount2("./725", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./725", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./725/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./725/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./725/binderfs")    = 0
[pid  5067] umount2("./725/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./725/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./725/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./725/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./725/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./725/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./725")              = 0
[pid  5067] mkdir("./726", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2179
./strace-static-x86_64: Process 7261 attached
[pid  7261] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7261] chdir("./726")              = 0
[pid  7261] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7261] setpgid(0, 0)               = 0
[pid  7261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7261] write(3, "1000", 4)         = 4
[pid  7261] close(3)                    = 0
[pid  7261] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7261] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7261] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7261] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7261] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2180], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2180
[pid  7261] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7261] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7262 attached
 <unfinished ...>
[pid  7262] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7262] memfd_create("syzkaller", 0) = 3
[pid  7262] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7262] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7262] munmap(0x7ff042e09000, 2097152) = 0
[pid  7262] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7262] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7262] close(3)                    = 0
[pid  7262] mkdir("./file0", 0777)      = 0
[pid  7262] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7262] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7262] chdir("./file0")            = 0
[pid  7262] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7262] close(4)                    = 0
[pid  7262] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7261] <... futex resumed>)        = 0
[pid  7261] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7261] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7261] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7261] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7261] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2181], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2181
[pid  7261] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7261] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7262] <... futex resumed>)        = 1
[pid  7262] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7263 attached
 <unfinished ...>
[pid  7263] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7263] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7263] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7261] <... futex resumed>)        = 0
[pid  7263] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7261] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7263] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7261] <... futex resumed>)        = 0
[  168.082325][ T7262] loop0: detected capacity change from 0 to 4096
[pid  7263] creat("./file0", 0406 <unfinished ...>
[pid  7261] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7262] <... mkdirat resumed>)      = 0
[pid  7262] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7263] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7262] <... futex resumed>)        = 0
[pid  7262] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7263] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7261] <... futex resumed>)        = 0
[pid  7261] close(3)                    = 0
[pid  7261] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7261] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7261] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7261] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7261] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7261] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7261] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7263] <... futex resumed>)        = 1
[pid  7261] close(13 <unfinished ...>
[pid  7263] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7261] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7261] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7261] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7261] exit_group(0 <unfinished ...>
[pid  7263] <... futex resumed>)        = ?
[pid  7262] <... futex resumed>)        = ?
[pid  7261] <... exit_group resumed>)   = ?
[pid  7263] +++ exited with 0 +++
[pid  7262] +++ exited with 0 +++
[pid  7261] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2179, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./726", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./726", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./726/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./726/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./726/binderfs")    = 0
[pid  5067] umount2("./726/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./726/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./726/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./726/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./726/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./726/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./726")              = 0
[pid  5067] mkdir("./727", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2182
./strace-static-x86_64: Process 7264 attached
[pid  7264] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7264] chdir("./727")              = 0
[pid  7264] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7264] setpgid(0, 0)               = 0
[pid  7264] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7264] write(3, "1000", 4)         = 4
[pid  7264] close(3)                    = 0
[pid  7264] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7264] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7264] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7264] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7264] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7265 attached
, parent_tid=[2183], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2183
[pid  7264] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7265] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7264] <... futex resumed>)        = 0
[pid  7265] <... set_robust_list resumed>) = 0
[pid  7264] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7265] memfd_create("syzkaller", 0) = 3
[pid  7265] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7265] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7265] munmap(0x7ff042e09000, 2097152) = 0
[pid  7265] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7265] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7265] close(3)                    = 0
[pid  7265] mkdir("./file0", 0777)      = 0
[pid  7265] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7265] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7265] chdir("./file0")            = 0
[pid  7265] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7265] close(4)                    = 0
[pid  7265] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7265] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7264] <... futex resumed>)        = 0
[pid  7264] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7265] <... futex resumed>)        = 0
[pid  7264] <... futex resumed>)        = 1
[pid  7265] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7264] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7264] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7264] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7264] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2184], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2184
[pid  7265] <... mkdirat resumed>)      = 0
[pid  7264] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7265] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7264] <... futex resumed>)        = 0
[pid  7265] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7264] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7266 attached
 <unfinished ...>
[pid  7266] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7266] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7266] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7266] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7264] <... futex resumed>)        = 0
[pid  7264] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7265] <... futex resumed>)        = 0
[pid  7264] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7265] creat("./file0", 0406)      = 4
[pid  7265] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7264] <... futex resumed>)        = 0
[pid  7265] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7264] close(3)                    = 0
[pid  7264] close(4)                    = 0
[pid  7264] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7264] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7264] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7264] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7264] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7264] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7264] close(29)                   = -1 EBADF (Bad file descriptor)
[  168.246958][ T7265] loop0: detected capacity change from 0 to 4096
[pid  7264] exit_group(0 <unfinished ...>
[pid  7266] <... futex resumed>)        = ?
[pid  7265] <... futex resumed>)        = ?
[pid  7264] <... exit_group resumed>)   = ?
[pid  7266] +++ exited with 0 +++
[pid  7265] +++ exited with 0 +++
[pid  7264] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2182, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] umount2("./727", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./727", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./727/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./727/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./727/binderfs")    = 0
[pid  5067] umount2("./727/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./727/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./727/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./727/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./727/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./727/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./727")              = 0
[pid  5067] mkdir("./728", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2185
./strace-static-x86_64: Process 7267 attached
[pid  7267] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7267] chdir("./728")              = 0
[pid  7267] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7267] setpgid(0, 0)               = 0
[pid  7267] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7267] write(3, "1000", 4)         = 4
[pid  7267] close(3)                    = 0
[pid  7267] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7267] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7267] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7267] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7267] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2186], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2186
[pid  7267] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7267] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7268 attached
 <unfinished ...>
[pid  7268] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7268] memfd_create("syzkaller", 0) = 3
[pid  7268] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7268] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7268] munmap(0x7ff042e09000, 2097152) = 0
[pid  7268] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7268] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7268] close(3)                    = 0
[pid  7268] mkdir("./file0", 0777)      = 0
[pid  7268] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7268] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7268] chdir("./file0")            = 0
[pid  7268] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7268] close(4)                    = 0
[pid  7268] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7267] <... futex resumed>)        = 0
[pid  7267] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7267] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7267] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7267] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7267] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2187], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2187
[pid  7267] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7267] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7268] <... futex resumed>)        = 1
[pid  7268] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7269 attached
 <unfinished ...>
[pid  7269] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7269] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7268] <... mkdirat resumed>)      = 0
[pid  7268] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7268] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7269] <... chdir resumed>)        = 0
[pid  7269] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7267] <... futex resumed>)        = 0
[pid  7267] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7268] <... futex resumed>)        = 0
[pid  7267] <... futex resumed>)        = 1
[pid  7268] creat("./file0", 0406 <unfinished ...>
[pid  7267] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7269] <... futex resumed>)        = 1
[pid  7269] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7268] <... creat resumed>)        = 4
[pid  7268] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7267] <... futex resumed>)        = 0
[pid  7267] close(3)                    = 0
[pid  7267] close(4)                    = 0
[pid  7267] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7267] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7267] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7267] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7267] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7267] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7267] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7267] exit_group(0 <unfinished ...>
[pid  7269] <... futex resumed>)        = ?
[pid  7267] <... exit_group resumed>)   = ?
[  168.388877][ T7268] loop0: detected capacity change from 0 to 4096
[pid  7269] +++ exited with 0 +++
[pid  7268] +++ exited with 0 +++
[pid  7267] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2185, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./728", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./728", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./728/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./728/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./728/binderfs")    = 0
[pid  5067] umount2("./728/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./728/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./728/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./728/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./728/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./728/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./728")              = 0
[pid  5067] mkdir("./729", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2188
./strace-static-x86_64: Process 7270 attached
[pid  7270] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7270] chdir("./729")              = 0
[pid  7270] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7270] setpgid(0, 0)               = 0
[pid  7270] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7270] write(3, "1000", 4)         = 4
[pid  7270] close(3)                    = 0
[pid  7270] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7270] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7270] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7270] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7270] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2189], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2189
[pid  7270] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7270] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7271 attached
 <unfinished ...>
[pid  7271] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7271] memfd_create("syzkaller", 0) = 3
[pid  7271] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7271] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7271] munmap(0x7ff042e09000, 2097152) = 0
[pid  7271] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7271] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7271] close(3)                    = 0
[pid  7271] mkdir("./file0", 0777)      = 0
[pid  7271] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7271] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7271] chdir("./file0")            = 0
[pid  7271] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7271] close(4)                    = 0
[pid  7271] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7270] <... futex resumed>)        = 0
[pid  7270] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7270] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7270] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7270] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7270] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2190], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2190
[pid  7270] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7270] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7271] <... futex resumed>)        = 1
[pid  7271] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7271] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7271] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7272 attached
 <unfinished ...>
[pid  7272] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7272] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7272] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7270] <... futex resumed>)        = 0
[pid  7270] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7270] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7271] <... futex resumed>)        = 0
[pid  7271] creat("./file0", 0406)      = 4
[pid  7271] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7270] <... futex resumed>)        = 0
[pid  7270] close(3)                    = 0
[pid  7270] close(4)                    = 0
[pid  7270] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7270] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7270] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7270] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7270] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7270] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7271] <... futex resumed>)        = 1
[pid  7270] close(25 <unfinished ...>
[pid  7271] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7270] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7270] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7270] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7270] exit_group(0 <unfinished ...>
[pid  7271] <... futex resumed>)        = ?
[pid  7270] <... exit_group resumed>)   = ?
[pid  7271] +++ exited with 0 +++
[pid  7272] <... futex resumed>)        = ?
[pid  7272] +++ exited with 0 +++
[pid  7270] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2188, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./729", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./729", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./729/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./729/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./729/binderfs")    = 0
[  168.526880][ T7271] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./729/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./729/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./729/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./729/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./729/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./729/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./729")              = 0
[pid  5067] mkdir("./730", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2191
./strace-static-x86_64: Process 7273 attached
[pid  7273] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7273] chdir("./730")              = 0
[pid  7273] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7273] setpgid(0, 0)               = 0
[pid  7273] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7273] write(3, "1000", 4)         = 4
[pid  7273] close(3)                    = 0
[pid  7273] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7273] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7273] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7273] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7273] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2192], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2192
[pid  7273] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7273] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7274 attached
 <unfinished ...>
[pid  7274] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7274] memfd_create("syzkaller", 0) = 3
[pid  7274] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7274] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7274] munmap(0x7ff042e09000, 2097152) = 0
[pid  7274] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7274] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7274] close(3)                    = 0
[pid  7274] mkdir("./file0", 0777)      = 0
[pid  7274] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7274] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7274] chdir("./file0")            = 0
[pid  7274] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7274] close(4)                    = 0
[pid  7274] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7273] <... futex resumed>)        = 0
[pid  7274] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7273] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7273] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7273] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7273] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7273] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2193], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2193
[pid  7273] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7273] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7274] <... mkdirat resumed>)      = 0
[pid  7274] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7274] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7275 attached
 <unfinished ...>
[pid  7275] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7275] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7275] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7273] <... futex resumed>)        = 0
[pid  7273] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7274] <... futex resumed>)        = 0
[pid  7273] <... futex resumed>)        = 1
[pid  7274] creat("./file0", 0406 <unfinished ...>
[pid  7273] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7274] <... creat resumed>)        = 4
[pid  7274] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7273] <... futex resumed>)        = 0
[pid  7273] close(3)                    = 0
[pid  7274] <... futex resumed>)        = 1
[pid  7273] close(4 <unfinished ...>
[pid  7274] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7273] <... close resumed>)        = 0
[pid  7273] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7273] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7273] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7273] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7273] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7273] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7275] <... futex resumed>)        = 1
[pid  7273] close(18 <unfinished ...>
[pid  7275] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7273] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7273] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7273] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7273] exit_group(0 <unfinished ...>
[pid  7275] <... futex resumed>)        = ?
[pid  7274] <... futex resumed>)        = ?
[pid  7273] <... exit_group resumed>)   = ?
[pid  7275] +++ exited with 0 +++
[pid  7274] +++ exited with 0 +++
[pid  7273] +++ exited with 0 +++
[  168.657926][ T7274] loop0: detected capacity change from 0 to 4096
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2191, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./730", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./730", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./730/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./730/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./730/binderfs")    = 0
[pid  5067] umount2("./730/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./730/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./730/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./730/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./730/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./730/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./730")              = 0
[pid  5067] mkdir("./731", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7276 attached
, child_tidptr=0x5555570e75d0) = 2194
[pid  7276] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7276] chdir("./731")              = 0
[pid  7276] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7276] setpgid(0, 0)               = 0
[pid  7276] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7276] write(3, "1000", 4)         = 4
[pid  7276] close(3)                    = 0
[pid  7276] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7276] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7276] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7276] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7276] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7277 attached
, parent_tid=[2195], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2195
[pid  7276] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7276] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7277] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7277] memfd_create("syzkaller", 0) = 3
[pid  7277] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7277] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7277] munmap(0x7ff042e09000, 2097152) = 0
[pid  7277] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7277] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7277] close(3)                    = 0
[pid  7277] mkdir("./file0", 0777)      = 0
[pid  7277] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7277] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7277] chdir("./file0")            = 0
[pid  7277] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7277] close(4)                    = 0
[pid  7277] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7276] <... futex resumed>)        = 0
[pid  7276] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7276] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7276] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7276] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7277] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7276] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7278 attached
, parent_tid=[2196], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2196
[pid  7276] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7276] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7278] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7278] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7278] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7276] <... futex resumed>)        = 0
[pid  7276] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7276] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7278] creat("./file0", 0406 <unfinished ...>
[pid  7277] <... mkdirat resumed>)      = 0
[pid  7277] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7278] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7277] <... futex resumed>)        = 0
[pid  7277] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7278] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7276] <... futex resumed>)        = 0
[pid  7276] close(3)                    = 0
[pid  7276] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7276] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7276] close(6)                    = -1 EBADF (Bad file descriptor)
[  168.801165][ T7277] loop0: detected capacity change from 0 to 4096
[pid  7276] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7276] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7276] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7276] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(12 <unfinished ...>
[pid  7278] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7276] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7276] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7276] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7276] exit_group(0 <unfinished ...>
[pid  7277] <... futex resumed>)        = ?
[pid  7276] <... exit_group resumed>)   = ?
[pid  7278] <... futex resumed>)        = ?
[pid  7277] +++ exited with 0 +++
[pid  7278] +++ exited with 0 +++
[pid  7276] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2194, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./731", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./731", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./731/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./731/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./731/binderfs")    = 0
[pid  5067] umount2("./731/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./731/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./731/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./731/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./731/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./731/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./731")              = 0
[pid  5067] mkdir("./732", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7279 attached
 <unfinished ...>
[pid  7279] set_robust_list(0x5555570e75e0, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2197
[pid  7279] <... set_robust_list resumed>) = 0
[pid  7279] chdir("./732")              = 0
[pid  7279] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7279] setpgid(0, 0)               = 0
[pid  7279] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7279] write(3, "1000", 4)         = 4
[pid  7279] close(3)                    = 0
[pid  7279] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7279] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7279] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7279] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7279] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7280 attached
, parent_tid=[2198], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2198
[pid  7279] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7279] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7280] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7280] memfd_create("syzkaller", 0) = 3
[pid  7280] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7280] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7280] munmap(0x7ff042e09000, 2097152) = 0
[pid  7280] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7280] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7280] close(3)                    = 0
[pid  7280] mkdir("./file0", 0777)      = 0
[pid  7280] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7280] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7280] chdir("./file0")            = 0
[pid  7280] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7280] close(4)                    = 0
[pid  7280] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7279] <... futex resumed>)        = 0
[pid  7280] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7279] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7280] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7279] <... futex resumed>)        = 0
[pid  7280] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7279] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7280] <... mkdirat resumed>)      = 0
[pid  7279] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7280] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7279] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7280] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7279] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7279] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7281 attached
 <unfinished ...>
[pid  7281] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7279] <... clone resumed>, parent_tid=[2199], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2199
[pid  7281] <... set_robust_list resumed>) = 0
[pid  7279] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7281] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7279] <... futex resumed>)        = 0
[pid  7281] <... chdir resumed>)        = 0
[pid  7279] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7281] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7279] <... futex resumed>)        = 0
[pid  7281] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7279] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7280] <... futex resumed>)        = 0
[pid  7279] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7280] creat("./file0", 0406)      = 4
[pid  7280] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7279] <... futex resumed>)        = 0
[pid  7280] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7279] close(3)                    = 0
[  168.952810][ T7280] loop0: detected capacity change from 0 to 4096
[pid  7279] close(4)                    = 0
[pid  7279] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7279] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7279] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7279] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7279] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7279] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7279] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7279] exit_group(0 <unfinished ...>
[pid  7281] <... futex resumed>)        = ?
[pid  7280] <... futex resumed>)        = ?
[pid  7279] <... exit_group resumed>)   = ?
[pid  7281] +++ exited with 0 +++
[pid  7280] +++ exited with 0 +++
[pid  7279] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2197, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./732", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./732", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./732/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./732/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./732/binderfs")    = 0
[pid  5067] umount2("./732/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./732/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./732/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./732/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./732/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./732/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./732")              = 0
[pid  5067] mkdir("./733", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7282 attached
, child_tidptr=0x5555570e75d0) = 2200
[pid  7282] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7282] chdir("./733")              = 0
[pid  7282] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7282] setpgid(0, 0)               = 0
[pid  7282] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7282] write(3, "1000", 4)         = 4
[pid  7282] close(3)                    = 0
[pid  7282] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7282] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7282] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7282] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7282] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7283 attached
, parent_tid=[2201], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2201
[pid  7283] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7283] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7282] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7283] <... futex resumed>)        = 0
[pid  7282] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7283] memfd_create("syzkaller", 0) = 3
[pid  7283] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7283] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7283] munmap(0x7ff042e09000, 2097152) = 0
[pid  7283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7283] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7283] close(3)                    = 0
[pid  7283] mkdir("./file0", 0777)      = 0
[pid  7283] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7283] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7283] chdir("./file0")            = 0
[pid  7283] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7283] close(4)                    = 0
[pid  7283] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7283] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7282] <... futex resumed>)        = 0
[pid  7282] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7282] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7282] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7282] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7282] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2202], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2202
[pid  7282] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7282] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7283] <... futex resumed>)        = 0
[pid  7283] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7283] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7283] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7284 attached
 <unfinished ...>
[pid  7284] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7284] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7284] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7282] <... futex resumed>)        = 0
[pid  7282] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7282] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7283] <... futex resumed>)        = 0
[pid  7283] creat("./file0", 0406 <unfinished ...>
[pid  7284] <... futex resumed>)        = 1
[  169.108526][ T7283] loop0: detected capacity change from 0 to 4096
[pid  7284] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7283] <... creat resumed>)        = 4
[pid  7283] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7282] <... futex resumed>)        = 0
[pid  7282] close(3)                    = 0
[pid  7282] close(4)                    = 0
[pid  7282] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7282] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7282] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7282] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7282] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7282] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7282] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7282] exit_group(0 <unfinished ...>
[pid  7284] <... futex resumed>)        = ?
[pid  7282] <... exit_group resumed>)   = ?
[pid  7284] +++ exited with 0 +++
[pid  7283] <... futex resumed>)        = ?
[pid  7283] +++ exited with 0 +++
[pid  7282] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2200, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./733", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./733", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./733/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./733/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./733/binderfs")    = 0
[pid  5067] umount2("./733/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./733/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./733/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./733/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./733/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./733/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./733")              = 0
[pid  5067] mkdir("./734", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2203
./strace-static-x86_64: Process 7285 attached
[pid  7285] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7285] chdir("./734")              = 0
[pid  7285] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7285] setpgid(0, 0)               = 0
[pid  7285] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7285] write(3, "1000", 4)         = 4
[pid  7285] close(3)                    = 0
[pid  7285] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7285] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7285] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7285] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7285] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7286 attached
, parent_tid=[2204], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2204
[pid  7285] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7286] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7285] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7286] <... set_robust_list resumed>) = 0
[pid  7286] memfd_create("syzkaller", 0) = 3
[pid  7286] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7286] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7286] munmap(0x7ff042e09000, 2097152) = 0
[pid  7286] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7286] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7286] close(3)                    = 0
[pid  7286] mkdir("./file0", 0777)      = 0
[pid  7286] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7286] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7286] chdir("./file0")            = 0
[pid  7286] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7286] close(4)                    = 0
[pid  7286] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7285] <... futex resumed>)        = 0
[pid  7285] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7285] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7285] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7285] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7285] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2205], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2205
[pid  7285] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7287 attached
) = 0
[pid  7285] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7286] <... futex resumed>)        = 1
[pid  7287] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7286] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7287] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7286] <... mkdirat resumed>)      = 0
[pid  7287] <... chdir resumed>)        = 0
[pid  7287] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7286] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7286] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7285] <... futex resumed>)        = 0
[pid  7285] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7285] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7287] <... futex resumed>)        = 1
[pid  7287] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7286] <... futex resumed>)        = 0
[pid  7286] creat("./file0", 0406)      = 4
[pid  7286] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7285] <... futex resumed>)        = 0
[pid  7285] close(3)                    = 0
[pid  7285] close(4)                    = 0
[pid  7285] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7285] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7285] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7285] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7285] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7285] close(10 <unfinished ...>
[pid  7286] <... futex resumed>)        = 1
[pid  7285] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7286] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7285] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(23)                   = -1 EBADF (Bad file descriptor)
[  169.272040][ T7286] loop0: detected capacity change from 0 to 4096
[pid  7285] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7285] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7285] exit_group(0 <unfinished ...>
[pid  7287] <... futex resumed>)        = ?
[pid  7286] <... futex resumed>)        = ?
[pid  7285] <... exit_group resumed>)   = ?
[pid  7287] +++ exited with 0 +++
[pid  7286] +++ exited with 0 +++
[pid  7285] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2203, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./734", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./734", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./734/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./734/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./734/binderfs")    = 0
[pid  5067] umount2("./734/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./734/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./734/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./734/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./734/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./734/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./734")              = 0
[pid  5067] mkdir("./735", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7288 attached
, child_tidptr=0x5555570e75d0) = 2206
[pid  7288] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7288] chdir("./735")              = 0
[pid  7288] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7288] setpgid(0, 0)               = 0
[pid  7288] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7288] write(3, "1000", 4)         = 4
[pid  7288] close(3)                    = 0
[pid  7288] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7288] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7288] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7288] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7288] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7289 attached
, parent_tid=[2207], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2207
[pid  7289] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7288] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7289] <... set_robust_list resumed>) = 0
[pid  7288] <... futex resumed>)        = 0
[pid  7288] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7289] memfd_create("syzkaller", 0) = 3
[pid  7289] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7289] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7289] munmap(0x7ff042e09000, 2097152) = 0
[pid  7289] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7289] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7289] close(3)                    = 0
[pid  7289] mkdir("./file0", 0777)      = 0
[pid  7289] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7289] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7289] chdir("./file0")            = 0
[pid  7289] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7289] close(4)                    = 0
[pid  7289] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7288] <... futex resumed>)        = 0
[pid  7288] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7288] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7288] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7288] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7288] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2208], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2208
[pid  7288] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7288] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7289] <... futex resumed>)        = 1
[pid  7289] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7290 attached
 <unfinished ...>
[pid  7290] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7290] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7289] <... mkdirat resumed>)      = 0
[pid  7289] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7289] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7290] <... chdir resumed>)        = 0
[pid  7290] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7288] <... futex resumed>)        = 0
[pid  7288] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7288] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7289] <... futex resumed>)        = 0
[pid  7289] creat("./file0", 0406 <unfinished ...>
[pid  7290] <... futex resumed>)        = 1
[  169.422871][ T7289] loop0: detected capacity change from 0 to 4096
[pid  7290] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7289] <... creat resumed>)        = 4
[pid  7289] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7288] <... futex resumed>)        = 0
[pid  7288] close(3)                    = 0
[pid  7288] close(4)                    = 0
[pid  7288] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7288] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7288] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7288] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7288] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7288] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7289] <... futex resumed>)        = 1
[pid  7288] close(14 <unfinished ...>
[pid  7289] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7288] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7288] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7288] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7288] exit_group(0)               = ?
[pid  7290] <... futex resumed>)        = ?
[pid  7289] <... futex resumed>)        = ?
[pid  7290] +++ exited with 0 +++
[pid  7289] +++ exited with 0 +++
[pid  7288] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2206, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./735", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./735", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./735/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./735/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./735/binderfs")    = 0
[pid  5067] umount2("./735/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./735/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./735/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./735/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./735/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./735/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./735")              = 0
[pid  5067] mkdir("./736", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2209
./strace-static-x86_64: Process 7291 attached
[pid  7291] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7291] chdir("./736")              = 0
[pid  7291] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7291] setpgid(0, 0)               = 0
[pid  7291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7291] write(3, "1000", 4)         = 4
[pid  7291] close(3)                    = 0
[pid  7291] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7291] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7291] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7291] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7292 attached
, parent_tid=[2210], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2210
[pid  7291] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7292] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7291] <... futex resumed>)        = 0
[pid  7291] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7292] memfd_create("syzkaller", 0) = 3
[pid  7292] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7292] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7292] munmap(0x7ff042e09000, 2097152) = 0
[pid  7292] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7292] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7292] close(3)                    = 0
[pid  7292] mkdir("./file0", 0777)      = 0
[pid  7292] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7292] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7292] chdir("./file0")            = 0
[pid  7292] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7292] close(4)                    = 0
[pid  7292] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7291] <... futex resumed>)        = 0
[pid  7291] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7291] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7291] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7291] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7293 attached
, parent_tid=[2211], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2211
[pid  7291] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7291] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7293] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7292] <... futex resumed>)        = 1
[pid  7292] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7293] <... set_robust_list resumed>) = 0
[pid  7293] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7292] <... mkdirat resumed>)      = 0
[pid  7292] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7292] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7293] <... chdir resumed>)        = 0
[pid  7293] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7291] <... futex resumed>)        = 0
[pid  7291] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7291] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7292] <... futex resumed>)        = 0
[pid  7292] creat("./file0", 0406 <unfinished ...>
[pid  7293] <... futex resumed>)        = 1
[pid  7293] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7292] <... creat resumed>)        = 4
[pid  7292] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7291] <... futex resumed>)        = 0
[pid  7291] close(3 <unfinished ...>
[pid  7292] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7291] <... close resumed>)        = 0
[pid  7291] close(4)                    = 0
[pid  7291] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7291] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7291] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7291] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7291] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7291] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(23)                   = -1 EBADF (Bad file descriptor)
[  169.580170][ T7292] loop0: detected capacity change from 0 to 4096
[pid  7291] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7291] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7291] exit_group(0 <unfinished ...>
[pid  7293] <... futex resumed>)        = ?
[pid  7292] <... futex resumed>)        = ?
[pid  7291] <... exit_group resumed>)   = ?
[pid  7293] +++ exited with 0 +++
[pid  7292] +++ exited with 0 +++
[pid  7291] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2209, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./736", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./736", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./736/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./736/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./736/binderfs")    = 0
[pid  5067] umount2("./736/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./736/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./736/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./736/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./736/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./736/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./736")              = 0
[pid  5067] mkdir("./737", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2212
./strace-static-x86_64: Process 7294 attached
[pid  7294] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7294] chdir("./737")              = 0
[pid  7294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7294] setpgid(0, 0)               = 0
[pid  7294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7294] write(3, "1000", 4)         = 4
[pid  7294] close(3)                    = 0
[pid  7294] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7294] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7294] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7294] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7295 attached
, parent_tid=[2213], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2213
[pid  7295] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7295] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7294] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7295] <... futex resumed>)        = 0
[pid  7294] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7295] memfd_create("syzkaller", 0) = 3
[pid  7295] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7295] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7295] munmap(0x7ff042e09000, 2097152) = 0
[pid  7295] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7295] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7295] close(3)                    = 0
[pid  7295] mkdir("./file0", 0777)      = 0
[pid  7295] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7295] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7295] chdir("./file0")            = 0
[pid  7295] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7295] close(4)                    = 0
[pid  7295] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7294] <... futex resumed>)        = 0
[pid  7294] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7294] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7294] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7294] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7295] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7294] <... clone resumed>, parent_tid=[2214], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2214
[pid  7294] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7294] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7296 attached
 <unfinished ...>
[pid  7296] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7296] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7295] <... mkdirat resumed>)      = 0
[pid  7296] <... chdir resumed>)        = 0
[pid  7296] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7294] <... futex resumed>)        = 0
[pid  7294] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7294] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7296] <... futex resumed>)        = 1
[pid  7296] creat("./file0", 0406)      = 4
[pid  7296] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7294] <... futex resumed>)        = 0
[pid  7296] <... futex resumed>)        = 1
[pid  7296] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7295] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7295] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7294] close(3)                    = 0
[pid  7294] close(4)                    = 0
[pid  7294] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7294] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7294] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7294] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7294] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7294] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7294] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7294] exit_group(0 <unfinished ...>
[pid  7296] <... futex resumed>)        = ?
[pid  7295] <... futex resumed>)        = ?
[pid  7294] <... exit_group resumed>)   = ?
[  169.735416][ T7295] loop0: detected capacity change from 0 to 4096
[pid  7296] +++ exited with 0 +++
[pid  7295] +++ exited with 0 +++
[pid  7294] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2212, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./737", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./737", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./737/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./737/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./737/binderfs")    = 0
[pid  5067] umount2("./737/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./737/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./737/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./737/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./737/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./737/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./737")              = 0
[pid  5067] mkdir("./738", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2215
./strace-static-x86_64: Process 7297 attached
[pid  7297] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7297] chdir("./738")              = 0
[pid  7297] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7297] setpgid(0, 0)               = 0
[pid  7297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7297] write(3, "1000", 4)         = 4
[pid  7297] close(3)                    = 0
[pid  7297] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7297] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7297] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7297] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7297] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7298 attached
, parent_tid=[2216], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2216
[pid  7297] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7297] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7298] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7298] memfd_create("syzkaller", 0) = 3
[pid  7298] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7298] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7298] munmap(0x7ff042e09000, 2097152) = 0
[pid  7298] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7298] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7298] close(3)                    = 0
[pid  7298] mkdir("./file0", 0777)      = 0
[pid  7298] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7298] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7298] chdir("./file0")            = 0
[pid  7298] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7298] close(4)                    = 0
[pid  7298] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7297] <... futex resumed>)        = 0
[pid  7297] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7297] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7297] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7297] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7297] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2217], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2217
[pid  7297] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7297] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7298] <... futex resumed>)        = 1
[pid  7298] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7299 attached
 <unfinished ...>
[pid  7299] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7299] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7298] <... mkdirat resumed>)      = 0
[pid  7299] <... chdir resumed>)        = 0
[pid  7299] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7297] <... futex resumed>)        = 0
[pid  7297] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7297] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7299] <... futex resumed>)        = 1
[pid  7299] creat("./file0", 0406 <unfinished ...>
[pid  7298] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7299] <... creat resumed>)        = 4
[pid  7298] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7299] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7297] <... futex resumed>)        = 0
[pid  7297] close(3 <unfinished ...>
[pid  7299] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7297] <... close resumed>)        = 0
[pid  7297] close(4)                    = 0
[pid  7297] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7297] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7297] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7297] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7297] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7297] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7297] close(29)                   = -1 EBADF (Bad file descriptor)
[  169.881348][ T7298] loop0: detected capacity change from 0 to 4096
[pid  7297] exit_group(0 <unfinished ...>
[pid  7299] <... futex resumed>)        = ?
[pid  7297] <... exit_group resumed>)   = ?
[pid  7298] <... futex resumed>)        = ?
[pid  7299] +++ exited with 0 +++
[pid  7298] +++ exited with 0 +++
[pid  7297] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2215, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./738", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./738", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./738/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./738/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./738/binderfs")    = 0
[pid  5067] umount2("./738/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./738/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./738/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./738/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./738/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./738/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./738")              = 0
[pid  5067] mkdir("./739", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2218
./strace-static-x86_64: Process 7300 attached
[pid  7300] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7300] chdir("./739")              = 0
[pid  7300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7300] setpgid(0, 0)               = 0
[pid  7300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7300] write(3, "1000", 4)         = 4
[pid  7300] close(3)                    = 0
[pid  7300] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7300] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7300] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7300] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7300] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2219], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2219
[pid  7300] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7300] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7301 attached
 <unfinished ...>
[pid  7301] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7301] memfd_create("syzkaller", 0) = 3
[pid  7301] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7301] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7301] munmap(0x7ff042e09000, 2097152) = 0
[pid  7301] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7301] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7301] close(3)                    = 0
[pid  7301] mkdir("./file0", 0777)      = 0
[pid  7301] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7301] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7301] chdir("./file0")            = 0
[pid  7301] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7301] close(4)                    = 0
[pid  7301] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7301] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7300] <... futex resumed>)        = 0
[pid  7300] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7300] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7300] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7300] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7300] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7302 attached
, parent_tid=[2220], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2220
[pid  7301] <... futex resumed>)        = 0
[pid  7300] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7301] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7300] <... futex resumed>)        = 0
[pid  7300] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7302] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7301] <... mkdirat resumed>)      = 0
[pid  7302] <... set_robust_list resumed>) = 0
[pid  7302] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7302] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7300] <... futex resumed>)        = 0
[pid  7302] creat("./file0", 0406 <unfinished ...>
[pid  7300] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7301] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7300] <... futex resumed>)        = 0
[pid  7301] <... futex resumed>)        = 0
[pid  7300] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7302] <... creat resumed>)        = 4
[pid  7301] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7302] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7300] <... futex resumed>)        = 0
[pid  7302] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7300] close(3)                    = 0
[pid  7300] close(4)                    = 0
[pid  7300] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7300] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7300] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7300] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7300] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7300] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7300] close(29)                   = -1 EBADF (Bad file descriptor)
[  170.026511][ T7301] loop0: detected capacity change from 0 to 4096
[pid  7300] exit_group(0 <unfinished ...>
[pid  7302] <... futex resumed>)        = ?
[pid  7301] <... futex resumed>)        = ?
[pid  7300] <... exit_group resumed>)   = ?
[pid  7302] +++ exited with 0 +++
[pid  7301] +++ exited with 0 +++
[pid  7300] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2218, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./739", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./739", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./739/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./739/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./739/binderfs")    = 0
[pid  5067] umount2("./739/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./739/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./739/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./739/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./739/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./739/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./739")              = 0
[pid  5067] mkdir("./740", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2221
./strace-static-x86_64: Process 7303 attached
[pid  7303] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7303] chdir("./740")              = 0
[pid  7303] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7303] setpgid(0, 0)               = 0
[pid  7303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7303] write(3, "1000", 4)         = 4
[pid  7303] close(3)                    = 0
[pid  7303] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7303] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7303] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7303] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7303] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2222], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2222
[pid  7303] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7303] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7304 attached
 <unfinished ...>
[pid  7304] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7304] memfd_create("syzkaller", 0) = 3
[pid  7304] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7304] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7304] munmap(0x7ff042e09000, 2097152) = 0
[pid  7304] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7304] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7304] close(3)                    = 0
[pid  7304] mkdir("./file0", 0777)      = 0
[pid  7304] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7304] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7304] chdir("./file0")            = 0
[pid  7304] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7304] close(4)                    = 0
[pid  7304] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7303] <... futex resumed>)        = 0
[pid  7303] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7303] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7304] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7303] <... futex resumed>)        = 0
[pid  7303] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7303] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7303] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2223], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2223
[pid  7303] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7303] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7305 attached
 <unfinished ...>
[pid  7305] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7304] <... mkdirat resumed>)      = 0
[pid  7304] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7305] <... set_robust_list resumed>) = 0
[pid  7304] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7305] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7305] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7303] <... futex resumed>)        = 0
[pid  7305] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7303] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7304] <... futex resumed>)        = 0
[pid  7303] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7304] creat("./file0", 0406)      = 4
[pid  7304] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7303] <... futex resumed>)        = 0
[pid  7303] close(3 <unfinished ...>
[pid  7304] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7303] <... close resumed>)        = 0
[pid  7303] close(4)                    = 0
[pid  7303] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7303] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7303] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7303] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7303] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7303] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(15)                   = -1 EBADF (Bad file descriptor)
[  170.172905][ T7304] loop0: detected capacity change from 0 to 4096
[pid  7303] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7303] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7303] exit_group(0 <unfinished ...>
[pid  7305] <... futex resumed>)        = ?
[pid  7304] <... futex resumed>)        = ?
[pid  7303] <... exit_group resumed>)   = ?
[pid  7305] +++ exited with 0 +++
[pid  7304] +++ exited with 0 +++
[pid  7303] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2221, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./740", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./740", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./740/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./740/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./740/binderfs")    = 0
[pid  5067] umount2("./740/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./740/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./740/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./740/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./740/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./740/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./740")              = 0
[pid  5067] mkdir("./741", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2224
./strace-static-x86_64: Process 7306 attached
[pid  7306] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7306] chdir("./741")              = 0
[pid  7306] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7306] setpgid(0, 0)               = 0
[pid  7306] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7306] write(3, "1000", 4)         = 4
[pid  7306] close(3)                    = 0
[pid  7306] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7306] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7306] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7306] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7306] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7307 attached
, parent_tid=[2225], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2225
[pid  7307] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7306] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7306] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7307] <... set_robust_list resumed>) = 0
[pid  7307] memfd_create("syzkaller", 0) = 3
[pid  7307] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7307] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7307] munmap(0x7ff042e09000, 2097152) = 0
[pid  7307] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7307] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7307] close(3)                    = 0
[pid  7307] mkdir("./file0", 0777)      = 0
[pid  7307] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7307] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7307] chdir("./file0")            = 0
[pid  7307] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7307] close(4)                    = 0
[pid  7307] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7306] <... futex resumed>)        = 0
[pid  7306] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7306] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7306] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7306] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7306] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2226], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2226
./strace-static-x86_64: Process 7308 attached
[pid  7306] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7306] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7308] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7307] <... futex resumed>)        = 1
[pid  7307] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7308] <... set_robust_list resumed>) = 0
[pid  7308] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7308] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7306] <... futex resumed>)        = 0
[pid  7306] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7306] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7308] <... futex resumed>)        = 1
[pid  7308] creat("./file0", 0406 <unfinished ...>
[pid  7307] <... mkdirat resumed>)      = 0
[pid  7307] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7307] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7308] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7308] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7306] <... futex resumed>)        = 0
[pid  7306] close(3)                    = 0
[pid  7306] close(4)                    = -1 EBADF (Bad file descriptor)
[  170.333985][ T7307] loop0: detected capacity change from 0 to 4096
[pid  7306] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7306] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7306] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7306] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7306] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7306] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(18 <unfinished ...>
[pid  7308] <... futex resumed>)        = 1
[pid  7306] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7308] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7306] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7306] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7306] exit_group(0 <unfinished ...>
[pid  7308] <... futex resumed>)        = ?
[pid  7307] <... futex resumed>)        = ?
[pid  7306] <... exit_group resumed>)   = ?
[pid  7308] +++ exited with 0 +++
[pid  7307] +++ exited with 0 +++
[pid  7306] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2224, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=1 /* 0.01 s */} ---
[pid  5067] umount2("./741", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./741", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./741/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./741/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./741/binderfs")    = 0
[pid  5067] umount2("./741/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./741/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./741/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./741/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./741/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./741/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./741")              = 0
[pid  5067] mkdir("./742", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2227
./strace-static-x86_64: Process 7309 attached
[pid  7309] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7309] chdir("./742")              = 0
[pid  7309] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7309] setpgid(0, 0)               = 0
[pid  7309] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7309] write(3, "1000", 4)         = 4
[pid  7309] close(3)                    = 0
[pid  7309] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7309] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7309] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7309] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7309] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7310 attached
, parent_tid=[2228], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2228
[pid  7310] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7310] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7309] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7310] <... futex resumed>)        = 0
[pid  7309] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7310] memfd_create("syzkaller", 0) = 3
[pid  7310] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7310] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7310] munmap(0x7ff042e09000, 2097152) = 0
[pid  7310] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7310] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7310] close(3)                    = 0
[pid  7310] mkdir("./file0", 0777)      = 0
[pid  7310] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7310] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7310] chdir("./file0")            = 0
[pid  7310] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7310] close(4)                    = 0
[pid  7310] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7310] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7309] <... futex resumed>)        = 0
[pid  7309] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7309] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7309] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7309] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7309] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2229], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2229
[pid  7309] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7309] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7310] <... futex resumed>)        = 0
[pid  7310] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7310] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7310] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7311 attached
 <unfinished ...>
[pid  7311] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7311] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7311] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7311] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7309] <... futex resumed>)        = 0
[pid  7309] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7309] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7310] <... futex resumed>)        = 0
[  170.482246][ T7310] loop0: detected capacity change from 0 to 4096
[pid  7310] creat("./file0", 0406)      = 4
[pid  7310] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7309] <... futex resumed>)        = 0
[pid  7309] close(3)                    = 0
[pid  7309] close(4)                    = 0
[pid  7309] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7309] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7309] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7309] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7309] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7309] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7310] <... futex resumed>)        = 1
[pid  7309] close(13 <unfinished ...>
[pid  7310] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7309] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7309] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7309] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7309] exit_group(0 <unfinished ...>
[pid  7311] <... futex resumed>)        = ?
[pid  7310] <... futex resumed>)        = ?
[pid  7309] <... exit_group resumed>)   = ?
[pid  7311] +++ exited with 0 +++
[pid  7310] +++ exited with 0 +++
[pid  7309] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2227, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] umount2("./742", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./742", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./742/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./742/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./742/binderfs")    = 0
[pid  5067] umount2("./742/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./742/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./742/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./742/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./742/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./742/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./742")              = 0
[pid  5067] mkdir("./743", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2230
./strace-static-x86_64: Process 7312 attached
[pid  7312] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7312] chdir("./743")              = 0
[pid  7312] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7312] setpgid(0, 0)               = 0
[pid  7312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7312] write(3, "1000", 4)         = 4
[pid  7312] close(3)                    = 0
[pid  7312] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7312] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7312] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7312] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7312] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7313 attached
, parent_tid=[2231], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2231
[pid  7312] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7313] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7312] <... futex resumed>)        = 0
[pid  7313] <... set_robust_list resumed>) = 0
[pid  7312] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7313] memfd_create("syzkaller", 0) = 3
[pid  7313] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7313] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7313] munmap(0x7ff042e09000, 2097152) = 0
[pid  7313] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7313] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7313] close(3)                    = 0
[pid  7313] mkdir("./file0", 0777)      = 0
[pid  7313] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7313] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7313] chdir("./file0")            = 0
[pid  7313] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7313] close(4)                    = 0
[pid  7313] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7312] <... futex resumed>)        = 0
[pid  7312] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7312] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7312] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7313] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7312] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7312] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7312] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2232], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2232
[pid  7312] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7312] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7313] <... mkdirat resumed>)      = 0
[pid  7313] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7313] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7314 attached
 <unfinished ...>
[pid  7314] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7314] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7314] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7312] <... futex resumed>)        = 0
[pid  7312] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7312] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7314] <... futex resumed>)        = 1
[pid  7313] <... futex resumed>)        = 0
[pid  7314] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[  170.643977][ T7313] loop0: detected capacity change from 0 to 4096
[pid  7313] creat("./file0", 0406)      = 4
[pid  7313] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7312] <... futex resumed>)        = 0
[pid  7312] close(3 <unfinished ...>
[pid  7313] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7312] <... close resumed>)        = 0
[pid  7312] close(4)                    = 0
[pid  7312] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7312] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7312] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7312] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7312] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7312] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7312] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7312] exit_group(0 <unfinished ...>
[pid  7314] <... futex resumed>)        = ?
[pid  7313] <... futex resumed>)        = ?
[pid  7312] <... exit_group resumed>)   = ?
[pid  7314] +++ exited with 0 +++
[pid  7313] +++ exited with 0 +++
[pid  7312] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2230, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./743", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./743", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./743/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./743/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./743/binderfs")    = 0
[pid  5067] umount2("./743/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./743/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./743/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./743/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./743/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./743/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./743")              = 0
[pid  5067] mkdir("./744", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2233
./strace-static-x86_64: Process 7315 attached
[pid  7315] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7315] chdir("./744")              = 0
[pid  7315] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7315] setpgid(0, 0)               = 0
[pid  7315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7315] write(3, "1000", 4)         = 4
[pid  7315] close(3)                    = 0
[pid  7315] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7315] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7315] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7315] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7315] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2234], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2234
./strace-static-x86_64: Process 7316 attached
[pid  7316] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7316] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7315] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7316] <... futex resumed>)        = 0
[pid  7315] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7316] memfd_create("syzkaller", 0) = 3
[pid  7316] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7316] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7316] munmap(0x7ff042e09000, 2097152) = 0
[pid  7316] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7316] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7316] close(3)                    = 0
[pid  7316] mkdir("./file0", 0777)      = 0
[pid  7316] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7316] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7316] chdir("./file0")            = 0
[pid  7316] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7316] close(4)                    = 0
[pid  7316] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7316] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7315] <... futex resumed>)        = 0
[pid  7315] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7316] <... futex resumed>)        = 0
[pid  7315] <... futex resumed>)        = 1
[pid  7316] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7315] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7315] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7316] <... mkdirat resumed>)      = 0
[pid  7315] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7316] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7316] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7315] <... mprotect resumed>)     = 0
[pid  7315] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7317 attached
 <unfinished ...>
[pid  7317] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7315] <... clone resumed>, parent_tid=[2235], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2235
[pid  7317] <... set_robust_list resumed>) = 0
[pid  7315] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7317] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7315] <... futex resumed>)        = 0
[pid  7317] <... chdir resumed>)        = 0
[pid  7315] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7317] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7315] <... futex resumed>)        = 0
[pid  7315] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7317] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7315] <... futex resumed>)        = 1
[pid  7315] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7316] <... futex resumed>)        = 0
[  170.807927][ T7316] loop0: detected capacity change from 0 to 4096
[pid  7316] creat("./file0", 0406)      = 4
[pid  7316] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7315] <... futex resumed>)        = 0
[pid  7316] <... futex resumed>)        = 1
[pid  7315] close(3 <unfinished ...>
[pid  7316] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7315] <... close resumed>)        = 0
[pid  7315] close(4)                    = 0
[pid  7315] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7315] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7315] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7315] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7315] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7315] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7315] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7315] exit_group(0 <unfinished ...>
[pid  7317] <... futex resumed>)        = ?
[pid  7316] <... futex resumed>)        = ?
[pid  7315] <... exit_group resumed>)   = ?
[pid  7317] +++ exited with 0 +++
[pid  7316] +++ exited with 0 +++
[pid  7315] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2233, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./744", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./744", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./744/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./744/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./744/binderfs")    = 0
[pid  5067] umount2("./744/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./744/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./744/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./744/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./744/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./744/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./744")              = 0
[pid  5067] mkdir("./745", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2236
./strace-static-x86_64: Process 7318 attached
[pid  7318] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7318] chdir("./745")              = 0
[pid  7318] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7318] setpgid(0, 0)               = 0
[pid  7318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7318] write(3, "1000", 4)         = 4
[pid  7318] close(3)                    = 0
[pid  7318] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7318] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7318] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7318] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7318] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7319 attached
, parent_tid=[2237], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2237
[pid  7318] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7319] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7318] <... futex resumed>)        = 0
[pid  7319] <... set_robust_list resumed>) = 0
[pid  7318] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7319] memfd_create("syzkaller", 0) = 3
[pid  7319] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7319] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7319] munmap(0x7ff042e09000, 2097152) = 0
[pid  7319] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7319] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7319] close(3)                    = 0
[pid  7319] mkdir("./file0", 0777)      = 0
[pid  7319] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7319] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7319] chdir("./file0")            = 0
[pid  7319] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7319] close(4)                    = 0
[pid  7319] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7318] <... futex resumed>)        = 0
[pid  7318] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7318] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7318] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7318] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7318] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7320 attached
, parent_tid=[2238], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2238
[pid  7318] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7318] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7319] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7320] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7320] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7320] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7318] <... futex resumed>)        = 0
[pid  7318] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7320] creat("./file0", 0406 <unfinished ...>
[pid  7318] <... futex resumed>)        = 0
[pid  7319] <... mkdirat resumed>)      = 0
[pid  7318] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7319] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7319] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7320] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7320] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7320] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7318] <... futex resumed>)        = 0
[pid  7318] close(3)                    = 0
[pid  7318] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7318] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7318] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7318] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7318] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7318] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7318] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(11)                   = -1 EBADF (Bad file descriptor)
[  170.966872][ T7319] loop0: detected capacity change from 0 to 4096
[pid  7318] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7318] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7318] exit_group(0 <unfinished ...>
[pid  7320] <... futex resumed>)        = ?
[pid  7319] <... futex resumed>)        = ?
[pid  7318] <... exit_group resumed>)   = ?
[pid  7320] +++ exited with 0 +++
[pid  7319] +++ exited with 0 +++
[pid  7318] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2236, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./745", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./745", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./745/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./745/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./745/binderfs")    = 0
[pid  5067] umount2("./745/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./745/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./745/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./745/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./745/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./745/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./745")              = 0
[pid  5067] mkdir("./746", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2239
./strace-static-x86_64: Process 7321 attached
[pid  7321] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7321] chdir("./746")              = 0
[pid  7321] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7321] setpgid(0, 0)               = 0
[pid  7321] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7321] write(3, "1000", 4)         = 4
[pid  7321] close(3)                    = 0
[pid  7321] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7321] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7321] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7321] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7321] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2240], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2240
[pid  7321] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7321] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7322 attached
 <unfinished ...>
[pid  7322] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7322] memfd_create("syzkaller", 0) = 3
[pid  7322] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7322] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7322] munmap(0x7ff042e09000, 2097152) = 0
[pid  7322] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7322] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7322] close(3)                    = 0
[pid  7322] mkdir("./file0", 0777)      = 0
[pid  7322] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7322] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7322] chdir("./file0")            = 0
[pid  7322] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7322] close(4)                    = 0
[pid  7322] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7321] <... futex resumed>)        = 0
[pid  7322] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7321] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7321] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7321] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7322] <... mkdirat resumed>)      = 0
[pid  7321] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7322] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7321] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7322] <... futex resumed>)        = 0
[pid  7321] <... mprotect resumed>)     = 0
[pid  7322] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7321] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7323 attached
 <unfinished ...>
[pid  7323] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7321] <... clone resumed>, parent_tid=[2241], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2241
[pid  7323] <... set_robust_list resumed>) = 0
[pid  7321] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7323] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7321] <... futex resumed>)        = 0
[pid  7323] <... chdir resumed>)        = 0
[pid  7321] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7323] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7321] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7323] <... futex resumed>)        = 0
[pid  7321] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7323] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7322] <... futex resumed>)        = 0
[pid  7321] <... futex resumed>)        = 1
[pid  7322] creat("./file0", 0406 <unfinished ...>
[pid  7321] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7322] <... creat resumed>)        = 4
[pid  7322] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7321] <... futex resumed>)        = 0
[pid  7322] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7321] close(3)                    = 0
[pid  7321] close(4)                    = 0
[pid  7321] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7321] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7321] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7321] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7321] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7321] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7321] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7321] exit_group(0 <unfinished ...>
[pid  7323] <... futex resumed>)        = ?
[pid  7322] <... futex resumed>)        = ?
[pid  7321] <... exit_group resumed>)   = ?
[pid  7323] +++ exited with 0 +++
[pid  7322] +++ exited with 0 +++
[pid  7321] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2239, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./746", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./746", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[  171.115264][ T7322] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./746/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./746/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./746/binderfs")    = 0
[pid  5067] umount2("./746/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./746/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./746/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./746/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./746/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./746/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./746")              = 0
[pid  5067] mkdir("./747", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7324 attached
, child_tidptr=0x5555570e75d0) = 2242
[pid  7324] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7324] chdir("./747")              = 0
[pid  7324] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7324] setpgid(0, 0)               = 0
[pid  7324] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7324] write(3, "1000", 4)         = 4
[pid  7324] close(3)                    = 0
[pid  7324] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7324] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7324] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7324] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7324] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7325 attached
, parent_tid=[2243], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2243
[pid  7325] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7325] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7324] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7325] <... futex resumed>)        = 0
[pid  7324] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7325] memfd_create("syzkaller", 0) = 3
[pid  7325] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7325] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7325] munmap(0x7ff042e09000, 2097152) = 0
[pid  7325] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7325] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7325] close(3)                    = 0
[pid  7325] mkdir("./file0", 0777)      = 0
[pid  7325] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7325] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7325] chdir("./file0")            = 0
[pid  7325] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7325] close(4)                    = 0
[pid  7325] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7324] <... futex resumed>)        = 0
[pid  7324] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7324] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7324] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7324] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7324] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2244], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2244
[pid  7324] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7324] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7325] <... futex resumed>)        = 1
[pid  7325] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7326 attached
 <unfinished ...>
[pid  7326] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7326] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7325] <... mkdirat resumed>)      = 0
[pid  7325] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7325] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7326] <... chdir resumed>)        = 0
[pid  7326] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7324] <... futex resumed>)        = 0
[pid  7324] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7324] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7326] <... futex resumed>)        = 1
[pid  7325] <... futex resumed>)        = 0
[pid  7326] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7325] creat("./file0", 0406)      = 4
[pid  7325] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7324] <... futex resumed>)        = 0
[pid  7324] close(3)                    = 0
[pid  7324] close(4)                    = 0
[pid  7324] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7324] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7324] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7324] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7324] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7324] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7325] <... futex resumed>)        = 1
[pid  7324] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(14 <unfinished ...>
[pid  7325] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7324] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7324] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7324] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7324] exit_group(0 <unfinished ...>
[pid  7326] <... futex resumed>)        = ?
[pid  7325] <... futex resumed>)        = ?
[pid  7324] <... exit_group resumed>)   = ?
[pid  7326] +++ exited with 0 +++
[pid  7325] +++ exited with 0 +++
[pid  7324] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2242, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[  171.268859][ T7325] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./747", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./747", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./747/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./747/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./747/binderfs")    = 0
[pid  5067] umount2("./747/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./747/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./747/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./747/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./747/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./747/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./747")              = 0
[pid  5067] mkdir("./748", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2245
./strace-static-x86_64: Process 7327 attached
[pid  7327] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7327] chdir("./748")              = 0
[pid  7327] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7327] setpgid(0, 0)               = 0
[pid  7327] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7327] write(3, "1000", 4)         = 4
[pid  7327] close(3)                    = 0
[pid  7327] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7327] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7327] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7327] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7327] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2246], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2246
[pid  7327] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7328 attached
[pid  7327] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7328] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7328] memfd_create("syzkaller", 0) = 3
[pid  7328] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7328] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7328] munmap(0x7ff042e09000, 2097152) = 0
[pid  7328] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7328] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7328] close(3)                    = 0
[pid  7328] mkdir("./file0", 0777)      = 0
[pid  7328] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7328] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7328] chdir("./file0")            = 0
[pid  7328] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7328] close(4)                    = 0
[pid  7328] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7327] <... futex resumed>)        = 0
[pid  7327] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7327] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7327] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7327] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7327] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2247], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2247
[pid  7327] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7327] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7328] <... futex resumed>)        = 1
[pid  7328] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7328] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7328] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7329 attached
 <unfinished ...>
[pid  7329] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7329] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7329] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7327] <... futex resumed>)        = 0
[pid  7327] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7329] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7327] <... futex resumed>)        = 1
[pid  7328] <... futex resumed>)        = 0
[pid  7327] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[  171.402675][ T7328] loop0: detected capacity change from 0 to 4096
[pid  7328] creat("./file0", 0406)      = 4
[pid  7328] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7327] <... futex resumed>)        = 0
[pid  7328] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7327] close(3)                    = 0
[pid  7327] close(4)                    = 0
[pid  7327] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7327] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7327] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7327] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7327] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7327] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7327] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7327] exit_group(0 <unfinished ...>
[pid  7329] <... futex resumed>)        = ?
[pid  7328] <... futex resumed>)        = ?
[pid  7327] <... exit_group resumed>)   = ?
[pid  7329] +++ exited with 0 +++
[pid  7328] +++ exited with 0 +++
[pid  7327] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2245, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./748", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./748", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./748/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./748/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./748/binderfs")    = 0
[pid  5067] umount2("./748/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./748/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./748/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./748/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./748/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./748/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./748")              = 0
[pid  5067] mkdir("./749", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2248
./strace-static-x86_64: Process 7330 attached
[pid  7330] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7330] chdir("./749")              = 0
[pid  7330] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7330] setpgid(0, 0)               = 0
[pid  7330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7330] write(3, "1000", 4)         = 4
[pid  7330] close(3)                    = 0
[pid  7330] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7330] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7330] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7330] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7331 attached
, parent_tid=[2249], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2249
[pid  7331] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7331] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7330] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7331] <... futex resumed>)        = 0
[pid  7330] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7331] memfd_create("syzkaller", 0) = 3
[pid  7331] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7331] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7331] munmap(0x7ff042e09000, 2097152) = 0
[pid  7331] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7331] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7331] close(3)                    = 0
[pid  7331] mkdir("./file0", 0777)      = 0
[pid  7331] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7331] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7331] chdir("./file0")            = 0
[pid  7331] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7331] close(4)                    = 0
[pid  7331] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7330] <... futex resumed>)        = 0
[pid  7330] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7330] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7330] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7330] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2250], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2250
[pid  7330] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7330] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7331] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7332 attached
 <unfinished ...>
[pid  7332] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7332] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7331] <... mkdirat resumed>)      = 0
[pid  7331] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7331] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7332] <... chdir resumed>)        = 0
[pid  7332] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7330] <... futex resumed>)        = 0
[pid  7330] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7330] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7332] <... futex resumed>)        = 1
[pid  7332] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7331] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7331] creat("./file0", 0406)      = 4
[pid  7331] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7330] <... futex resumed>)        = 0
[pid  7330] close(3)                    = 0
[pid  7330] close(4)                    = 0
[pid  7330] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7330] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7330] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7330] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7330] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7330] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7330] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7330] exit_group(0 <unfinished ...>
[pid  7332] <... futex resumed>)        = ?
[pid  7330] <... exit_group resumed>)   = ?
[pid  7332] +++ exited with 0 +++
[pid  7331] <... futex resumed>)        = ?
[pid  7331] +++ exited with 0 +++
[pid  7330] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2248, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[  171.562414][ T7331] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./749", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./749", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./749/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./749/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./749/binderfs")    = 0
[pid  5067] umount2("./749/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./749/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./749/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./749/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./749/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./749/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./749")              = 0
[pid  5067] mkdir("./750", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2251
./strace-static-x86_64: Process 7333 attached
[pid  7333] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7333] chdir("./750")              = 0
[pid  7333] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7333] setpgid(0, 0)               = 0
[pid  7333] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7333] write(3, "1000", 4)         = 4
[pid  7333] close(3)                    = 0
[pid  7333] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7333] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7333] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7333] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7333] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2252], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2252
[pid  7333] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7333] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7334 attached
 <unfinished ...>
[pid  7334] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7334] memfd_create("syzkaller", 0) = 3
[pid  7334] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7334] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7334] munmap(0x7ff042e09000, 2097152) = 0
[pid  7334] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7334] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7334] close(3)                    = 0
[pid  7334] mkdir("./file0", 0777)      = 0
[pid  7334] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7334] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7334] chdir("./file0")            = 0
[pid  7334] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7334] close(4)                    = 0
[pid  7334] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7333] <... futex resumed>)        = 0
[pid  7333] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7333] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7333] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7333] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7333] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2253], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2253
./strace-static-x86_64: Process 7335 attached
[pid  7333] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7335] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7333] <... futex resumed>)        = 0
[pid  7335] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7333] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7334] <... futex resumed>)        = 1
[pid  7334] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7335] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7335] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7333] <... futex resumed>)        = 0
[pid  7335] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7333] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7335] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7333] <... futex resumed>)        = 0
[pid  7335] creat("./file0", 0406 <unfinished ...>
[pid  7333] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7335] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7335] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7333] <... futex resumed>)        = 0
[pid  7335] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7334] <... mkdirat resumed>)      = 0
[pid  7334] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7334] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7333] close(3)                    = 0
[pid  7333] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7333] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7333] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7333] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7333] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7333] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7333] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(23)                   = -1 EBADF (Bad file descriptor)
[  171.712432][ T7334] loop0: detected capacity change from 0 to 4096
[pid  7333] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7333] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7333] exit_group(0 <unfinished ...>
[pid  7334] <... futex resumed>)        = ?
[pid  7335] <... futex resumed>)        = ?
[pid  7333] <... exit_group resumed>)   = ?
[pid  7334] +++ exited with 0 +++
[pid  7335] +++ exited with 0 +++
[pid  7333] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2251, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./750", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./750", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./750/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./750/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./750/binderfs")    = 0
[pid  5067] umount2("./750/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./750/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./750/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./750/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./750/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./750/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./750")              = 0
[pid  5067] mkdir("./751", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2254
./strace-static-x86_64: Process 7336 attached
[pid  7336] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7336] chdir("./751")              = 0
[pid  7336] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7336] setpgid(0, 0)               = 0
[pid  7336] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7336] write(3, "1000", 4)         = 4
[pid  7336] close(3)                    = 0
[pid  7336] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7336] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7336] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7336] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7336] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7337 attached
 <unfinished ...>
[pid  7337] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7337] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7336] <... clone resumed>, parent_tid=[2255], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2255
[pid  7336] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7337] <... futex resumed>)        = 0
[pid  7336] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7337] memfd_create("syzkaller", 0) = 3
[pid  7337] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7337] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7337] munmap(0x7ff042e09000, 2097152) = 0
[pid  7337] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7337] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7337] close(3)                    = 0
[pid  7337] mkdir("./file0", 0777)      = 0
[pid  7337] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7337] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7337] chdir("./file0")            = 0
[pid  7337] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7337] close(4)                    = 0
[pid  7337] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7336] <... futex resumed>)        = 0
[pid  7336] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7336] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7336] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7336] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7336] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2256], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2256
[pid  7336] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7336] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7337] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7337] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7337] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7338 attached
 <unfinished ...>
[pid  7338] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7338] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7338] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7336] <... futex resumed>)        = 0
[pid  7336] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7338] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7336] <... futex resumed>)        = 1
[pid  7336] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7337] <... futex resumed>)        = 0
[pid  7337] creat("./file0", 0406)      = 4
[pid  7337] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7336] <... futex resumed>)        = 0
[pid  7336] close(3)                    = 0
[pid  7336] close(4)                    = 0
[pid  7336] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7336] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7336] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7336] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7336] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7336] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(12 <unfinished ...>
[pid  7337] <... futex resumed>)        = 1
[pid  7336] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7337] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7336] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7336] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7336] exit_group(0 <unfinished ...>
[pid  7338] <... futex resumed>)        = ?
[pid  7337] <... futex resumed>)        = ?
[pid  7336] <... exit_group resumed>)   = ?
[  171.868324][ T7337] loop0: detected capacity change from 0 to 4096
[pid  7338] +++ exited with 0 +++
[pid  7337] +++ exited with 0 +++
[pid  7336] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2254, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./751", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./751", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./751/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./751/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./751/binderfs")    = 0
[pid  5067] umount2("./751/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./751/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./751/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./751/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./751/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./751/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./751")              = 0
[pid  5067] mkdir("./752", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2257
./strace-static-x86_64: Process 7339 attached
[pid  7339] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7339] chdir("./752")              = 0
[pid  7339] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7339] setpgid(0, 0)               = 0
[pid  7339] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7339] write(3, "1000", 4)         = 4
[pid  7339] close(3)                    = 0
[pid  7339] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7339] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7339] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7339] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7339] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7340 attached
 <unfinished ...>
[pid  7340] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7339] <... clone resumed>, parent_tid=[2258], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2258
[pid  7340] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7339] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7339] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7340] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7340] memfd_create("syzkaller", 0) = 3
[pid  7340] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7340] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7340] munmap(0x7ff042e09000, 2097152) = 0
[pid  7340] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7340] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7340] close(3)                    = 0
[pid  7340] mkdir("./file0", 0777)      = 0
[pid  7340] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7340] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7340] chdir("./file0")            = 0
[pid  7340] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7340] close(4)                    = 0
[pid  7340] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7339] <... futex resumed>)        = 0
[pid  7339] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7339] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7339] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7339] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7340] <... futex resumed>)        = 1
[pid  7339] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7340] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7339] <... clone resumed>, parent_tid=[2259], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2259
[pid  7339] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7339] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7340] <... mkdirat resumed>)      = 0
[pid  7340] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7340] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7341 attached
 <unfinished ...>
[pid  7341] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7341] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7341] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7339] <... futex resumed>)        = 0
[pid  7339] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7340] <... futex resumed>)        = 0
[pid  7339] <... futex resumed>)        = 1
[pid  7340] creat("./file0", 0406 <unfinished ...>
[pid  7339] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7341] <... futex resumed>)        = 1
[pid  7341] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7340] <... creat resumed>)        = 4
[pid  7340] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7339] <... futex resumed>)        = 0
[pid  7340] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7339] close(3)                    = 0
[pid  7339] close(4)                    = 0
[pid  7339] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7339] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7339] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7339] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7339] close(9)                    = -1 EBADF (Bad file descriptor)
[  172.030082][ T7340] loop0: detected capacity change from 0 to 4096
[pid  7339] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7339] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7339] exit_group(0 <unfinished ...>
[pid  7341] <... futex resumed>)        = ?
[pid  7340] <... futex resumed>)        = ?
[pid  7339] <... exit_group resumed>)   = ?
[pid  7341] +++ exited with 0 +++
[pid  7340] +++ exited with 0 +++
[pid  7339] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2257, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./752", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./752", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./752/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./752/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./752/binderfs")    = 0
[pid  5067] umount2("./752/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./752/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./752/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./752/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./752/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./752/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./752")              = 0
[pid  5067] mkdir("./753", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2260
./strace-static-x86_64: Process 7342 attached
[pid  7342] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7342] chdir("./753")              = 0
[pid  7342] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7342] setpgid(0, 0)               = 0
[pid  7342] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7342] write(3, "1000", 4)         = 4
[pid  7342] close(3)                    = 0
[pid  7342] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7342] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7342] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7342] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7342] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2261], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2261
[pid  7342] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7343 attached
[pid  7342] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7343] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7343] memfd_create("syzkaller", 0) = 3
[pid  7343] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7343] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7343] munmap(0x7ff042e09000, 2097152) = 0
[pid  7343] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7343] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7343] close(3)                    = 0
[pid  7343] mkdir("./file0", 0777)      = 0
[pid  7343] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7343] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7343] chdir("./file0")            = 0
[pid  7343] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7343] close(4)                    = 0
[pid  7343] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7342] <... futex resumed>)        = 0
[pid  7343] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7342] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7342] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7342] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7343] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7342] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7342] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7342] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2262], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2262
[pid  7342] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7342] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7343] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7344 attached
 <unfinished ...>
[pid  7344] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7343] <... mkdirat resumed>)      = 0
[pid  7343] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7343] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7344] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7344] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7342] <... futex resumed>)        = 0
[pid  7342] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7342] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7343] <... futex resumed>)        = 0
[pid  7343] creat("./file0", 0406 <unfinished ...>
[pid  7344] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7343] <... creat resumed>)        = 4
[  172.182593][ T7343] loop0: detected capacity change from 0 to 4096
[pid  7343] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7342] <... futex resumed>)        = 0
[pid  7342] close(3 <unfinished ...>
[pid  7343] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7342] <... close resumed>)        = 0
[pid  7342] close(4)                    = 0
[pid  7342] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7342] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7342] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7342] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7342] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7342] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7342] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7342] exit_group(0 <unfinished ...>
[pid  7344] <... futex resumed>)        = ?
[pid  7342] <... exit_group resumed>)   = ?
[pid  7344] +++ exited with 0 +++
[pid  7343] <... futex resumed>)        = ?
[pid  7343] +++ exited with 0 +++
[pid  7342] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2260, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./753", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./753", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./753/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./753/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./753/binderfs")    = 0
[pid  5067] umount2("./753/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./753/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./753/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./753/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./753/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./753/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./753")              = 0
[pid  5067] mkdir("./754", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2263
./strace-static-x86_64: Process 7345 attached
[pid  7345] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7345] chdir("./754")              = 0
[pid  7345] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7345] setpgid(0, 0)               = 0
[pid  7345] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7345] write(3, "1000", 4)         = 4
[pid  7345] close(3)                    = 0
[pid  7345] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7345] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7345] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7345] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7345] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7346 attached
 <unfinished ...>
[pid  7346] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7346] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7345] <... clone resumed>, parent_tid=[2264], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2264
[pid  7345] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7346] <... futex resumed>)        = 0
[pid  7346] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7345] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7346] <... memfd_create resumed>) = 3
[pid  7346] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7346] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7346] munmap(0x7ff042e09000, 2097152) = 0
[pid  7346] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7346] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7346] close(3)                    = 0
[pid  7346] mkdir("./file0", 0777)      = 0
[pid  7346] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7346] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7346] chdir("./file0")            = 0
[pid  7346] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7346] close(4)                    = 0
[pid  7346] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7345] <... futex resumed>)        = 0
[pid  7345] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7345] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7345] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7346] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7345] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7345] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7345] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2265], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2265
[pid  7345] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7345] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7347 attached
 <unfinished ...>
[pid  7347] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7347] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7347] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7345] <... futex resumed>)        = 0
[pid  7347] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7345] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7347] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7345] <... futex resumed>)        = 0
[pid  7347] creat("./file0", 0406 <unfinished ...>
[pid  7345] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7346] <... mkdirat resumed>)      = 0
[pid  7346] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7347] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7347] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7345] <... futex resumed>)        = 0
[pid  7347] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7345] close(3)                    = 0
[pid  7345] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7346] <... futex resumed>)        = 0
[pid  7345] close(5 <unfinished ...>
[pid  7346] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7345] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7345] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7345] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7345] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7345] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7345] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(23)                   = -1 EBADF (Bad file descriptor)
[  172.350747][ T7346] loop0: detected capacity change from 0 to 4096
[pid  7345] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7345] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7345] exit_group(0 <unfinished ...>
[pid  7346] <... futex resumed>)        = ?
[pid  7345] <... exit_group resumed>)   = ?
[pid  7347] <... futex resumed>)        = ?
[pid  7346] +++ exited with 0 +++
[pid  7347] +++ exited with 0 +++
[pid  7345] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2263, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./754", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./754", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./754/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./754/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./754/binderfs")    = 0
[pid  5067] umount2("./754/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./754/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./754/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./754/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./754/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./754/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./754")              = 0
[pid  5067] mkdir("./755", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2266
./strace-static-x86_64: Process 7348 attached
[pid  7348] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7348] chdir("./755")              = 0
[pid  7348] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7348] setpgid(0, 0)               = 0
[pid  7348] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7348] write(3, "1000", 4)         = 4
[pid  7348] close(3)                    = 0
[pid  7348] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7348] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7348] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7348] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7348] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7349 attached
, parent_tid=[2267], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2267
[pid  7349] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7349] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7348] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7349] <... futex resumed>)        = 0
[pid  7348] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7349] memfd_create("syzkaller", 0) = 3
[pid  7349] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7349] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7349] munmap(0x7ff042e09000, 2097152) = 0
[pid  7349] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7349] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7349] close(3)                    = 0
[pid  7349] mkdir("./file0", 0777)      = 0
[pid  7349] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7349] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7349] chdir("./file0")            = 0
[pid  7349] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7349] close(4)                    = 0
[pid  7349] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7348] <... futex resumed>)        = 0
[pid  7348] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7348] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7348] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7349] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7348] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7348] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7348] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2268], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2268
[pid  7348] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7348] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7350 attached
 <unfinished ...>
[pid  7350] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7349] <... mkdirat resumed>)      = 0
[pid  7349] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7349] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7350] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7350] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7348] <... futex resumed>)        = 0
[pid  7348] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7349] <... futex resumed>)        = 0
[pid  7348] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7349] creat("./file0", 0406 <unfinished ...>
[pid  7350] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7349] <... creat resumed>)        = 4
[pid  7349] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7348] <... futex resumed>)        = 0
[pid  7349] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7348] close(3)                    = 0
[pid  7348] close(4)                    = 0
[pid  7348] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7348] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7348] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7348] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7348] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7348] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(19)                   = -1 EBADF (Bad file descriptor)
[  172.506168][ T7349] loop0: detected capacity change from 0 to 4096
[pid  7348] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7348] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7348] exit_group(0 <unfinished ...>
[pid  7350] <... futex resumed>)        = ?
[pid  7349] <... futex resumed>)        = ?
[pid  7348] <... exit_group resumed>)   = ?
[pid  7350] +++ exited with 0 +++
[pid  7349] +++ exited with 0 +++
[pid  7348] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2266, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./755", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./755", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./755/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./755/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./755/binderfs")    = 0
[pid  5067] umount2("./755/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./755/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./755/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./755/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./755/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./755/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./755")              = 0
[pid  5067] mkdir("./756", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2269
./strace-static-x86_64: Process 7351 attached
[pid  7351] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7351] chdir("./756")              = 0
[pid  7351] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7351] setpgid(0, 0)               = 0
[pid  7351] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7351] write(3, "1000", 4)         = 4
[pid  7351] close(3)                    = 0
[pid  7351] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7351] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7351] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7351] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7351] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7352 attached
, parent_tid=[2270], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2270
[pid  7351] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7352] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7351] <... futex resumed>)        = 0
[pid  7351] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7352] memfd_create("syzkaller", 0) = 3
[pid  7352] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7352] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7352] munmap(0x7ff042e09000, 2097152) = 0
[pid  7352] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7352] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7352] close(3)                    = 0
[pid  7352] mkdir("./file0", 0777)      = 0
[pid  7352] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7352] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7352] chdir("./file0")            = 0
[pid  7352] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7352] close(4)                    = 0
[pid  7352] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7351] <... futex resumed>)        = 0
[pid  7351] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7351] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7351] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7351] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7351] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2271], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2271
[pid  7351] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7351] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7353 attached
 <unfinished ...>
[pid  7353] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7353] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7352] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7353] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7353] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7351] <... futex resumed>)        = 0
[pid  7353] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7351] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7353] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7351] <... futex resumed>)        = 0
[pid  7353] creat("./file0", 0406 <unfinished ...>
[pid  7351] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7352] <... mkdirat resumed>)      = 0
[pid  7352] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7353] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7352] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7353] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7351] <... futex resumed>)        = 0
[pid  7351] close(3)                    = 0
[pid  7351] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7351] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7351] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7351] close(7)                    = -1 EBADF (Bad file descriptor)
[  172.663943][ T7352] loop0: detected capacity change from 0 to 4096
[pid  7351] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7353] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7351] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7351] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7351] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7351] exit_group(0 <unfinished ...>
[pid  7352] <... futex resumed>)        = ?
[pid  7351] <... exit_group resumed>)   = ?
[pid  7353] <... futex resumed>)        = ?
[pid  7352] +++ exited with 0 +++
[pid  7353] +++ exited with 0 +++
[pid  7351] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2269, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./756", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./756", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./756/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./756/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./756/binderfs")    = 0
[pid  5067] umount2("./756/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./756/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./756/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./756/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./756/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./756/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./756")              = 0
[pid  5067] mkdir("./757", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2272
./strace-static-x86_64: Process 7354 attached
[pid  7354] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7354] chdir("./757")              = 0
[pid  7354] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7354] setpgid(0, 0)               = 0
[pid  7354] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7354] write(3, "1000", 4)         = 4
[pid  7354] close(3)                    = 0
[pid  7354] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7354] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7354] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7354] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7354] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7355 attached
, parent_tid=[2273], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2273
[pid  7355] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7354] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7354] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7355] memfd_create("syzkaller", 0) = 3
[pid  7355] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7355] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7355] munmap(0x7ff042e09000, 2097152) = 0
[pid  7355] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7355] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7355] close(3)                    = 0
[pid  7355] mkdir("./file0", 0777)      = 0
[pid  7355] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7355] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7355] chdir("./file0")            = 0
[pid  7355] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7355] close(4)                    = 0
[pid  7355] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7354] <... futex resumed>)        = 0
[pid  7354] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7354] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7354] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7354] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7354] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2274], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2274
[pid  7354] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7354] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7355] <... futex resumed>)        = 1
[pid  7355] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7355] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7355] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7356 attached
 <unfinished ...>
[pid  7356] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7356] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7356] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7354] <... futex resumed>)        = 0
[pid  7354] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7354] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7355] <... futex resumed>)        = 0
[pid  7355] creat("./file0", 0406)      = 4
[pid  7355] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7354] <... futex resumed>)        = 0
[pid  7354] close(3)                    = 0
[pid  7354] close(4)                    = 0
[pid  7354] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7354] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7354] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7354] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7354] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7354] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7355] <... futex resumed>)        = 1
[pid  7354] close(19 <unfinished ...>
[pid  7355] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7354] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7354] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7354] close(28 <unfinished ...>
[pid  7356] <... futex resumed>)        = 1
[pid  7354] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7356] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7354] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7354] exit_group(0 <unfinished ...>
[pid  7356] <... futex resumed>)        = ?
[pid  7355] <... futex resumed>)        = ?
[pid  7354] <... exit_group resumed>)   = ?
[pid  7356] +++ exited with 0 +++
[pid  7355] +++ exited with 0 +++
[pid  7354] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2272, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./757", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./757", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./757/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./757/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[  172.816834][ T7355] loop0: detected capacity change from 0 to 4096
[pid  5067] unlink("./757/binderfs")    = 0
[pid  5067] umount2("./757/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./757/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./757/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./757/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./757/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./757/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./757")              = 0
[pid  5067] mkdir("./758", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2275
./strace-static-x86_64: Process 7357 attached
[pid  7357] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7357] chdir("./758")              = 0
[pid  7357] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7357] setpgid(0, 0)               = 0
[pid  7357] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7357] write(3, "1000", 4)         = 4
[pid  7357] close(3)                    = 0
[pid  7357] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7357] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7357] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7357] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7357] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2276], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2276
[pid  7357] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7357] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7358 attached
 <unfinished ...>
[pid  7358] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7358] memfd_create("syzkaller", 0) = 3
[pid  7358] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7358] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7358] munmap(0x7ff042e09000, 2097152) = 0
[pid  7358] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7358] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7358] close(3)                    = 0
[pid  7358] mkdir("./file0", 0777)      = 0
[pid  7358] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7358] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7358] chdir("./file0")            = 0
[pid  7358] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7358] close(4)                    = 0
[pid  7358] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7357] <... futex resumed>)        = 0
[pid  7357] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7357] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7357] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7357] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7357] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2277], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2277
[pid  7357] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7357] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7358] <... futex resumed>)        = 1
[pid  7358] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7358] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7358] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7359 attached
 <unfinished ...>
[pid  7359] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7359] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7359] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7357] <... futex resumed>)        = 0
[pid  7357] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7357] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7358] <... futex resumed>)        = 0
[pid  7358] creat("./file0", 0406)      = 4
[pid  7358] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7357] <... futex resumed>)        = 0
[pid  7357] close(3)                    = 0
[pid  7357] close(4)                    = 0
[pid  7357] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7357] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7357] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7357] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7357] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7357] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(22 <unfinished ...>
[pid  7358] <... futex resumed>)        = 1
[pid  7357] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7358] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7357] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7357] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7357] exit_group(0 <unfinished ...>
[pid  7358] <... futex resumed>)        = ?
[pid  7357] <... exit_group resumed>)   = ?
[pid  7358] +++ exited with 0 +++
[pid  7359] <... futex resumed>)        = ?
[pid  7359] +++ exited with 0 +++
[pid  7357] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2275, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./758", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./758", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./758/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./758/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./758/binderfs")    = 0
[  172.958396][ T7358] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./758/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./758/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./758/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./758/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./758/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./758/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./758")              = 0
[pid  5067] mkdir("./759", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2278
./strace-static-x86_64: Process 7360 attached
[pid  7360] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7360] chdir("./759")              = 0
[pid  7360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7360] setpgid(0, 0)               = 0
[pid  7360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7360] write(3, "1000", 4)         = 4
[pid  7360] close(3)                    = 0
[pid  7360] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7360] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7360] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7360] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7360] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7361 attached
 <unfinished ...>
[pid  7361] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7360] <... clone resumed>, parent_tid=[2279], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2279
[pid  7361] <... set_robust_list resumed>) = 0
[pid  7360] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7360] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7361] memfd_create("syzkaller", 0) = 3
[pid  7361] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7361] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7361] munmap(0x7ff042e09000, 2097152) = 0
[pid  7361] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7361] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7361] close(3)                    = 0
[pid  7361] mkdir("./file0", 0777)      = 0
[pid  7361] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7361] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7361] chdir("./file0")            = 0
[pid  7361] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7361] close(4)                    = 0
[pid  7361] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7360] <... futex resumed>)        = 0
[pid  7361] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7360] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7361] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7360] <... futex resumed>)        = 0
[pid  7361] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7360] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7360] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[  173.098642][ T7361] loop0: detected capacity change from 0 to 4096
[pid  7360] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7360] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2280], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2280
[pid  7360] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7360] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7362 attached
 <unfinished ...>
[pid  7362] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7361] <... mkdirat resumed>)      = 0
[pid  7361] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7361] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7362] <... set_robust_list resumed>) = 0
[pid  7362] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7362] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7362] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7360] <... futex resumed>)        = 0
[pid  7360] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7361] <... futex resumed>)        = 0
[pid  7360] <... futex resumed>)        = 1
[pid  7361] creat("./file0", 0406 <unfinished ...>
[pid  7360] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7361] <... creat resumed>)        = 4
[pid  7361] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7360] <... futex resumed>)        = 0
[pid  7360] close(3)                    = 0
[pid  7360] close(4)                    = 0
[pid  7360] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7361] <... futex resumed>)        = 1
[pid  7360] close(6 <unfinished ...>
[pid  7361] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7360] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7360] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7360] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7360] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7360] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7360] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7360] exit_group(0 <unfinished ...>
[pid  7362] <... futex resumed>)        = ?
[pid  7361] <... futex resumed>)        = ?
[pid  7360] <... exit_group resumed>)   = ?
[pid  7362] +++ exited with 0 +++
[pid  7361] +++ exited with 0 +++
[pid  7360] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2278, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[pid  5067] umount2("./759", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./759", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./759/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./759/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./759/binderfs")    = 0
[pid  5067] umount2("./759/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./759/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./759/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./759/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./759/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./759/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./759")              = 0
[pid  5067] mkdir("./760", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2281
./strace-static-x86_64: Process 7363 attached
[pid  7363] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7363] chdir("./760")              = 0
[pid  7363] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7363] setpgid(0, 0)               = 0
[pid  7363] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7363] write(3, "1000", 4)         = 4
[pid  7363] close(3)                    = 0
[pid  7363] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7363] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7363] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7363] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7363] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2282], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2282
[pid  7363] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7364 attached
[pid  7363] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7364] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7364] memfd_create("syzkaller", 0) = 3
[pid  7364] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7364] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7364] munmap(0x7ff042e09000, 2097152) = 0
[pid  7364] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7364] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7364] close(3)                    = 0
[pid  7364] mkdir("./file0", 0777)      = 0
[pid  7364] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7364] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7364] chdir("./file0")            = 0
[pid  7364] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7364] close(4)                    = 0
[pid  7364] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7363] <... futex resumed>)        = 0
[pid  7364] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7363] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7363] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7363] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7363] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7363] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2283], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2283
[pid  7363] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7363] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7364] <... mkdirat resumed>)      = 0
[pid  7364] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7364] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7365 attached
 <unfinished ...>
[pid  7365] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7365] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7365] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7363] <... futex resumed>)        = 0
[pid  7363] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7363] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7365] <... futex resumed>)        = 1
[pid  7365] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7364] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7364] creat("./file0", 0406)      = 4
[  173.258927][ T7364] loop0: detected capacity change from 0 to 4096
[pid  7364] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7363] <... futex resumed>)        = 0
[pid  7363] close(3)                    = 0
[pid  7363] close(4)                    = 0
[pid  7363] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7363] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7363] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7363] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7363] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7363] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(14 <unfinished ...>
[pid  7364] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7363] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7363] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7363] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7363] exit_group(0 <unfinished ...>
[pid  7365] <... futex resumed>)        = ?
[pid  7364] <... futex resumed>)        = ?
[pid  7363] <... exit_group resumed>)   = ?
[pid  7365] +++ exited with 0 +++
[pid  7364] +++ exited with 0 +++
[pid  7363] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2281, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./760", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./760", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./760/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./760/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./760/binderfs")    = 0
[pid  5067] umount2("./760/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./760/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./760/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./760/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./760/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./760/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./760")              = 0
[pid  5067] mkdir("./761", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2284
./strace-static-x86_64: Process 7366 attached
[pid  7366] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7366] chdir("./761")              = 0
[pid  7366] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7366] setpgid(0, 0)               = 0
[pid  7366] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7366] write(3, "1000", 4)         = 4
[pid  7366] close(3)                    = 0
[pid  7366] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7366] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7366] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7366] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7366] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7367 attached
, parent_tid=[2285], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2285
[pid  7367] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7367] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7366] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7367] <... futex resumed>)        = 0
[pid  7366] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7367] memfd_create("syzkaller", 0) = 3
[pid  7367] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7367] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7367] munmap(0x7ff042e09000, 2097152) = 0
[pid  7367] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7367] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7367] close(3)                    = 0
[pid  7367] mkdir("./file0", 0777)      = 0
[pid  7367] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7367] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7367] chdir("./file0")            = 0
[pid  7367] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7367] close(4)                    = 0
[pid  7367] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7367] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7366] <... futex resumed>)        = 0
[pid  7366] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7366] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7366] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7366] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7366] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2286], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2286
./strace-static-x86_64: Process 7368 attached
[pid  7366] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7368] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7366] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7367] <... futex resumed>)        = 0
[pid  7367] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7368] <... set_robust_list resumed>) = 0
[pid  7368] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7367] <... mkdirat resumed>)      = 0
[pid  7368] <... chdir resumed>)        = 0
[pid  7367] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7368] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7366] <... futex resumed>)        = 0
[pid  7368] <... futex resumed>)        = 1
[pid  7367] <... futex resumed>)        = 0
[pid  7366] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7368] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7367] creat("./file0", 0406 <unfinished ...>
[pid  7366] <... futex resumed>)        = 0
[pid  7366] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7367] <... creat resumed>)        = 4
[  173.421746][ T7367] loop0: detected capacity change from 0 to 4096
[pid  7367] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7366] <... futex resumed>)        = 0
[pid  7367] <... futex resumed>)        = 1
[pid  7366] close(3 <unfinished ...>
[pid  7367] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7366] <... close resumed>)        = 0
[pid  7366] close(4)                    = 0
[pid  7366] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7366] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7366] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7366] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7366] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7366] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7366] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7366] exit_group(0 <unfinished ...>
[pid  7368] <... futex resumed>)        = ?
[pid  7366] <... exit_group resumed>)   = ?
[pid  7368] +++ exited with 0 +++
[pid  7367] <... futex resumed>)        = ?
[pid  7367] +++ exited with 0 +++
[pid  7366] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2284, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./761", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./761", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./761/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./761/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./761/binderfs")    = 0
[pid  5067] umount2("./761/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./761/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./761/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./761/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./761/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./761/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./761")              = 0
[pid  5067] mkdir("./762", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7369 attached
, child_tidptr=0x5555570e75d0) = 2287
[pid  7369] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7369] chdir("./762")              = 0
[pid  7369] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7369] setpgid(0, 0)               = 0
[pid  7369] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7369] write(3, "1000", 4)         = 4
[pid  7369] close(3)                    = 0
[pid  7369] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7369] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7369] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7369] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7369] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7370 attached
 <unfinished ...>
[pid  7370] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7370] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7369] <... clone resumed>, parent_tid=[2288], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2288
[pid  7369] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7370] <... futex resumed>)        = 0
[pid  7369] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7370] memfd_create("syzkaller", 0) = 3
[pid  7370] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7370] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7370] munmap(0x7ff042e09000, 2097152) = 0
[pid  7370] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7370] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7370] close(3)                    = 0
[pid  7370] mkdir("./file0", 0777)      = 0
[pid  7370] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7370] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7370] chdir("./file0")            = 0
[pid  7370] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7370] close(4)                    = 0
[pid  7370] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7369] <... futex resumed>)        = 0
[pid  7369] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7369] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7369] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7369] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7370] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7369] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2289], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2289
[pid  7369] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7369] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7370] <... mkdirat resumed>)      = 0
./strace-static-x86_64: Process 7371 attached
[pid  7371] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7371] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7370] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7371] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7369] <... futex resumed>)        = 0
[pid  7371] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7369] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7369] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7370] <... futex resumed>)        = 1
[pid  7369] <... futex resumed>)        = 0
[pid  7370] creat("./file0", 0406 <unfinished ...>
[pid  7369] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7370] <... creat resumed>)        = 4
[pid  7370] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7369] <... futex resumed>)        = 0
[pid  7369] close(3)                    = 0
[pid  7369] close(4)                    = 0
[pid  7369] close(5 <unfinished ...>
[pid  7370] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7369] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7369] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7369] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7369] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7369] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7369] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(18)                   = -1 EBADF (Bad file descriptor)
[  173.584112][ T7370] loop0: detected capacity change from 0 to 4096
[pid  7369] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7369] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7369] exit_group(0 <unfinished ...>
[pid  7371] <... futex resumed>)        = ?
[pid  7370] <... futex resumed>)        = ?
[pid  7369] <... exit_group resumed>)   = ?
[pid  7371] +++ exited with 0 +++
[pid  7370] +++ exited with 0 +++
[pid  7369] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2287, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./762", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./762", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./762/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./762/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./762/binderfs")    = 0
[pid  5067] umount2("./762/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./762/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./762/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./762/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./762/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./762/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./762")              = 0
[pid  5067] mkdir("./763", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2290
./strace-static-x86_64: Process 7372 attached
[pid  7372] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7372] chdir("./763")              = 0
[pid  7372] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7372] setpgid(0, 0)               = 0
[pid  7372] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7372] write(3, "1000", 4)         = 4
[pid  7372] close(3)                    = 0
[pid  7372] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7372] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7372] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7372] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7372] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2291], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2291
[pid  7372] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7372] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7373 attached
 <unfinished ...>
[pid  7373] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7373] memfd_create("syzkaller", 0) = 3
[pid  7373] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7373] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7373] munmap(0x7ff042e09000, 2097152) = 0
[pid  7373] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7373] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7373] close(3)                    = 0
[pid  7373] mkdir("./file0", 0777)      = 0
[pid  7373] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7373] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7373] chdir("./file0")            = 0
[pid  7373] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7373] close(4)                    = 0
[pid  7373] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7372] <... futex resumed>)        = 0
[pid  7373] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7372] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7373] <... futex resumed>)        = 0
[pid  7372] <... futex resumed>)        = 1
[pid  7373] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7372] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7372] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7372] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7373] <... mkdirat resumed>)      = 0
[pid  7372] <... mprotect resumed>)     = 0
[pid  7373] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7372] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7373] <... futex resumed>)        = 0
[pid  7373] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7372] <... clone resumed>, parent_tid=[2292], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2292
[pid  7372] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7372] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7374 attached
 <unfinished ...>
[pid  7374] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7374] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7374] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7372] <... futex resumed>)        = 0
[pid  7374] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7372] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7373] <... futex resumed>)        = 0
[pid  7372] <... futex resumed>)        = 1
[pid  7373] creat("./file0", 0406 <unfinished ...>
[pid  7372] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7373] <... creat resumed>)        = 4
[pid  7373] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7372] <... futex resumed>)        = 0
[  173.730484][ T7373] loop0: detected capacity change from 0 to 4096
[pid  7373] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7372] close(3)                    = 0
[pid  7372] close(4)                    = 0
[pid  7372] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7372] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7372] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7372] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7372] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7372] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7372] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7372] exit_group(0 <unfinished ...>
[pid  7374] <... futex resumed>)        = ?
[pid  7373] <... futex resumed>)        = ?
[pid  7372] <... exit_group resumed>)   = ?
[pid  7374] +++ exited with 0 +++
[pid  7373] +++ exited with 0 +++
[pid  7372] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2290, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./763", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./763", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./763/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./763/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./763/binderfs")    = 0
[pid  5067] umount2("./763/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./763/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./763/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./763/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./763/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./763/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./763")              = 0
[pid  5067] mkdir("./764", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2293
./strace-static-x86_64: Process 7375 attached
[pid  7375] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7375] chdir("./764")              = 0
[pid  7375] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7375] setpgid(0, 0)               = 0
[pid  7375] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7375] write(3, "1000", 4)         = 4
[pid  7375] close(3)                    = 0
[pid  7375] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7375] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7375] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7375] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7375] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2294], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2294
[pid  7375] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7375] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7376 attached
 <unfinished ...>
[pid  7376] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7376] memfd_create("syzkaller", 0) = 3
[pid  7376] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7376] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7376] munmap(0x7ff042e09000, 2097152) = 0
[pid  7376] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7376] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7376] close(3)                    = 0
[pid  7376] mkdir("./file0", 0777)      = 0
[pid  7376] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7376] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7376] chdir("./file0")            = 0
[pid  7376] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7376] close(4)                    = 0
[pid  7376] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7376] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7375] <... futex resumed>)        = 0
[pid  7375] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7376] <... futex resumed>)        = 0
[pid  7375] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7376] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7375] <... futex resumed>)        = 0
[pid  7375] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7375] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7376] <... mkdirat resumed>)      = 0
[pid  7375] <... mprotect resumed>)     = 0
[pid  7376] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7375] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7376] <... futex resumed>)        = 0
[pid  7375] <... clone resumed>, parent_tid=[2295], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2295
[pid  7375] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7376] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7375] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7377 attached
 <unfinished ...>
[pid  7377] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7377] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7377] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7375] <... futex resumed>)        = 0
[  173.889157][ T7376] loop0: detected capacity change from 0 to 4096
[pid  7375] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7376] <... futex resumed>)        = 0
[pid  7375] <... futex resumed>)        = 1
[pid  7376] creat("./file0", 0406 <unfinished ...>
[pid  7375] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7377] <... futex resumed>)        = 1
[pid  7377] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7376] <... creat resumed>)        = 4
[pid  7376] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7375] <... futex resumed>)        = 0
[pid  7376] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7375] close(3)                    = 0
[pid  7375] close(4)                    = 0
[pid  7375] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7375] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7375] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7375] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7375] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7375] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7375] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7375] exit_group(0 <unfinished ...>
[pid  7377] <... futex resumed>)        = ?
[pid  7376] <... futex resumed>)        = ?
[pid  7375] <... exit_group resumed>)   = ?
[pid  7377] +++ exited with 0 +++
[pid  7376] +++ exited with 0 +++
[pid  7375] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2293, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./764", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./764", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./764/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./764/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./764/binderfs")    = 0
[pid  5067] umount2("./764/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./764/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./764/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./764/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./764/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./764/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./764")              = 0
[pid  5067] mkdir("./765", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7378 attached
, child_tidptr=0x5555570e75d0) = 2296
[pid  7378] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7378] chdir("./765")              = 0
[pid  7378] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7378] setpgid(0, 0)               = 0
[pid  7378] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7378] write(3, "1000", 4)         = 4
[pid  7378] close(3)                    = 0
[pid  7378] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7378] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7378] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7378] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7378] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7379 attached
 <unfinished ...>
[pid  7379] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7379] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7378] <... clone resumed>, parent_tid=[2297], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2297
[pid  7378] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7379] <... futex resumed>)        = 0
[pid  7378] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7379] memfd_create("syzkaller", 0) = 3
[pid  7379] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7379] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7379] munmap(0x7ff042e09000, 2097152) = 0
[pid  7379] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7379] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7379] close(3)                    = 0
[pid  7379] mkdir("./file0", 0777)      = 0
[pid  7379] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7379] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7379] chdir("./file0")            = 0
[pid  7379] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7379] close(4)                    = 0
[pid  7379] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7379] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7378] <... futex resumed>)        = 0
[pid  7378] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7378] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7378] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7378] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7378] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2298], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2298
[pid  7378] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7378] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7380 attached
 <unfinished ...>
[pid  7380] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7379] <... futex resumed>)        = 0
[pid  7379] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7380] <... set_robust_list resumed>) = 0
[pid  7380] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7379] <... mkdirat resumed>)      = 0
[pid  7380] <... chdir resumed>)        = 0
[pid  7380] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7380] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7378] <... futex resumed>)        = 0
[pid  7378] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7378] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7380] <... futex resumed>)        = 0
[pid  7380] creat("./file0", 0406 <unfinished ...>
[pid  7379] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[  174.042668][ T7379] loop0: detected capacity change from 0 to 4096
[pid  7380] <... creat resumed>)        = 4
[pid  7380] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7378] <... futex resumed>)        = 0
[pid  7378] close(3)                    = 0
[pid  7378] close(4 <unfinished ...>
[pid  7379] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7378] <... close resumed>)        = 0
[pid  7378] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7378] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7378] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7378] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7378] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7378] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(17 <unfinished ...>
[pid  7380] <... futex resumed>)        = 1
[pid  7378] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7380] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7378] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7378] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7378] exit_group(0 <unfinished ...>
[pid  7380] <... futex resumed>)        = ?
[pid  7378] <... exit_group resumed>)   = ?
[pid  7380] +++ exited with 0 +++
[pid  7379] <... futex resumed>)        = ?
[pid  7379] +++ exited with 0 +++
[pid  7378] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2296, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./765", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./765", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./765/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./765/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./765/binderfs")    = 0
[pid  5067] umount2("./765/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./765/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./765/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./765/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./765/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./765/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./765")              = 0
[pid  5067] mkdir("./766", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2299
./strace-static-x86_64: Process 7381 attached
[pid  7381] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7381] chdir("./766")              = 0
[pid  7381] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7381] setpgid(0, 0)               = 0
[pid  7381] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7381] write(3, "1000", 4)         = 4
[pid  7381] close(3)                    = 0
[pid  7381] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7381] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7381] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7381] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7381] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2300], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2300
[pid  7381] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7381] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7382 attached
 <unfinished ...>
[pid  7382] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7382] memfd_create("syzkaller", 0) = 3
[pid  7382] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7382] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7382] munmap(0x7ff042e09000, 2097152) = 0
[pid  7382] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7382] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7382] close(3)                    = 0
[pid  7382] mkdir("./file0", 0777)      = 0
[pid  7382] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7382] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7382] chdir("./file0")            = 0
[pid  7382] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7382] close(4)                    = 0
[pid  7382] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7381] <... futex resumed>)        = 0
[pid  7381] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7381] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7381] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7381] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7381] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2301], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2301
[pid  7381] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7381] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7382] <... futex resumed>)        = 1
[pid  7382] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7382] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7382] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7383 attached
 <unfinished ...>
[pid  7383] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7383] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7383] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7381] <... futex resumed>)        = 0
[pid  7381] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7381] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7382] <... futex resumed>)        = 0
[pid  7382] creat("./file0", 0406 <unfinished ...>
[pid  7383] <... futex resumed>)        = 1
[pid  7383] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7382] <... creat resumed>)        = 4
[pid  7382] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7381] <... futex resumed>)        = 0
[pid  7382] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7381] close(3)                    = 0
[pid  7381] close(4)                    = 0
[pid  7381] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7381] close(6)                    = -1 EBADF (Bad file descriptor)
[  174.198984][ T7382] loop0: detected capacity change from 0 to 4096
[pid  7381] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7381] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7381] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7381] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7381] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7381] exit_group(0 <unfinished ...>
[pid  7383] <... futex resumed>)        = ?
[pid  7382] <... futex resumed>)        = ?
[pid  7381] <... exit_group resumed>)   = ?
[pid  7383] +++ exited with 0 +++
[pid  7382] +++ exited with 0 +++
[pid  7381] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2299, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./766", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./766", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./766/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./766/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./766/binderfs")    = 0
[pid  5067] umount2("./766/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./766/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./766/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./766/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./766/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./766/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./766")              = 0
[pid  5067] mkdir("./767", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2302
./strace-static-x86_64: Process 7384 attached
[pid  7384] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7384] chdir("./767")              = 0
[pid  7384] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7384] setpgid(0, 0)               = 0
[pid  7384] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7384] write(3, "1000", 4)         = 4
[pid  7384] close(3)                    = 0
[pid  7384] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7384] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7384] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7384] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7384] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7385 attached
, parent_tid=[2303], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2303
[pid  7385] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7384] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7385] <... set_robust_list resumed>) = 0
[pid  7384] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7385] memfd_create("syzkaller", 0) = 3
[pid  7385] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7385] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7385] munmap(0x7ff042e09000, 2097152) = 0
[pid  7385] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7385] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7385] close(3)                    = 0
[pid  7385] mkdir("./file0", 0777)      = 0
[pid  7385] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7385] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7385] chdir("./file0")            = 0
[pid  7385] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7385] close(4)                    = 0
[pid  7385] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7384] <... futex resumed>)        = 0
[pid  7385] <... futex resumed>)        = 1
[pid  7384] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7384] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7384] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7384] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7384] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7386 attached
, parent_tid=[2304], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2304
[pid  7386] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7384] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7386] <... set_robust_list resumed>) = 0
[pid  7384] <... futex resumed>)        = 0
[pid  7384] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7386] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7386] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7384] <... futex resumed>)        = 0
[pid  7384] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7384] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7386] <... futex resumed>)        = 1
[pid  7386] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7386] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7384] <... futex resumed>)        = 0
[pid  7386] <... futex resumed>)        = 1
[pid  7386] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7385] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7385] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[  174.356524][ T7385] loop0: detected capacity change from 0 to 4096
[pid  7385] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7384] close(3)                    = 0
[pid  7384] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7384] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7384] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7384] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7384] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7384] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7384] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7384] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7384] exit_group(0 <unfinished ...>
[pid  7386] <... futex resumed>)        = ?
[pid  7385] <... futex resumed>)        = ?
[pid  7384] <... exit_group resumed>)   = ?
[pid  7386] +++ exited with 0 +++
[pid  7385] +++ exited with 0 +++
[pid  7384] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2302, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=1 /* 0.01 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./767", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./767", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./767/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./767/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./767/binderfs")    = 0
[pid  5067] umount2("./767/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./767/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./767/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./767/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./767/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./767/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./767")              = 0
[pid  5067] mkdir("./768", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2305
./strace-static-x86_64: Process 7387 attached
[pid  7387] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7387] chdir("./768")              = 0
[pid  7387] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7387] setpgid(0, 0)               = 0
[pid  7387] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7387] write(3, "1000", 4)         = 4
[pid  7387] close(3)                    = 0
[pid  7387] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7387] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7387] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7387] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7387] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2306], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2306
[pid  7387] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7387] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7388 attached
 <unfinished ...>
[pid  7388] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7388] memfd_create("syzkaller", 0) = 3
[pid  7388] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7388] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7388] munmap(0x7ff042e09000, 2097152) = 0
[pid  7388] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7388] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7388] close(3)                    = 0
[pid  7388] mkdir("./file0", 0777)      = 0
[pid  7388] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7388] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7388] chdir("./file0")            = 0
[pid  7388] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7388] close(4)                    = 0
[pid  7388] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7388] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7387] <... futex resumed>)        = 0
[pid  7387] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7388] <... futex resumed>)        = 0
[pid  7387] <... futex resumed>)        = 1
[pid  7388] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7387] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7387] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7387] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7387] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7389 attached
 <unfinished ...>
[pid  7388] <... mkdirat resumed>)      = 0
[pid  7387] <... clone resumed>, parent_tid=[2307], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2307
[pid  7387] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7387] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7389] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7389] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7389] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7387] <... futex resumed>)        = 0
[pid  7387] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7389] <... futex resumed>)        = 1
[pid  7387] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7389] creat("./file0", 0406 <unfinished ...>
[pid  7388] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7388] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7389] <... creat resumed>)        = 4
[pid  7389] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7387] <... futex resumed>)        = 0
[pid  7387] close(3)                    = 0
[pid  7387] close(4)                    = 0
[pid  7387] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7389] <... futex resumed>)        = 1
[pid  7387] close(6 <unfinished ...>
[pid  7389] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7387] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7387] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7387] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7387] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7387] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7387] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7387] exit_group(0 <unfinished ...>
[pid  7389] <... futex resumed>)        = ?
[pid  7388] <... futex resumed>)        = ?
[pid  7387] <... exit_group resumed>)   = ?
[pid  7389] +++ exited with 0 +++
[pid  7388] +++ exited with 0 +++
[pid  7387] +++ exited with 0 +++
[  174.502510][ T7388] loop0: detected capacity change from 0 to 4096
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2305, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./768", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./768", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./768/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./768/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./768/binderfs")    = 0
[pid  5067] umount2("./768/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./768/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./768/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./768/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./768/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./768/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./768")              = 0
[pid  5067] mkdir("./769", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2308
./strace-static-x86_64: Process 7390 attached
[pid  7390] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7390] chdir("./769")              = 0
[pid  7390] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7390] setpgid(0, 0)               = 0
[pid  7390] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7390] write(3, "1000", 4)         = 4
[pid  7390] close(3)                    = 0
[pid  7390] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7390] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7390] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7390] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7390] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7391 attached
, parent_tid=[2309], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2309
[pid  7391] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7390] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7390] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7391] memfd_create("syzkaller", 0) = 3
[pid  7391] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7391] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7391] munmap(0x7ff042e09000, 2097152) = 0
[pid  7391] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7391] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7391] close(3)                    = 0
[pid  7391] mkdir("./file0", 0777)      = 0
[pid  7391] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7391] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7391] chdir("./file0")            = 0
[pid  7391] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7391] close(4)                    = 0
[pid  7391] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7390] <... futex resumed>)        = 0
[pid  7390] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7390] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7390] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7390] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7390] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2310], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2310
[pid  7390] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7390] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7391] <... futex resumed>)        = 1
[pid  7391] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7391] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7391] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7392 attached
 <unfinished ...>
[pid  7392] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7392] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7392] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7390] <... futex resumed>)        = 0
[pid  7390] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7390] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7391] <... futex resumed>)        = 0
[pid  7391] creat("./file0", 0406 <unfinished ...>
[pid  7392] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7391] <... creat resumed>)        = 4
[pid  7391] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7390] <... futex resumed>)        = 0
[pid  7390] close(3)                    = 0
[pid  7390] close(4)                    = 0
[pid  7390] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7390] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7390] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7390] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7390] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7390] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7390] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7390] exit_group(0 <unfinished ...>
[pid  7391] <... futex resumed>)        = ?
[pid  7390] <... exit_group resumed>)   = ?
[pid  7391] +++ exited with 0 +++
[  174.641063][ T7391] loop0: detected capacity change from 0 to 4096
[pid  7392] <... futex resumed>)        = ?
[pid  7392] +++ exited with 0 +++
[pid  7390] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2308, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./769", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./769", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./769/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./769/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./769/binderfs")    = 0
[pid  5067] umount2("./769/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./769/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./769/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./769/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./769/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./769/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./769")              = 0
[pid  5067] mkdir("./770", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2311
./strace-static-x86_64: Process 7393 attached
[pid  7393] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7393] chdir("./770")              = 0
[pid  7393] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7393] setpgid(0, 0)               = 0
[pid  7393] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7393] write(3, "1000", 4)         = 4
[pid  7393] close(3)                    = 0
[pid  7393] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7393] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7393] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7393] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7393] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7394 attached
, parent_tid=[2312], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2312
[pid  7393] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7394] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7393] <... futex resumed>)        = 0
[pid  7394] <... set_robust_list resumed>) = 0
[pid  7393] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7394] memfd_create("syzkaller", 0) = 3
[pid  7394] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7394] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7394] munmap(0x7ff042e09000, 2097152) = 0
[pid  7394] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7394] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7394] close(3)                    = 0
[pid  7394] mkdir("./file0", 0777)      = 0
[pid  7394] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7394] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7394] chdir("./file0")            = 0
[pid  7394] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7394] close(4)                    = 0
[pid  7394] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7393] <... futex resumed>)        = 0
[pid  7393] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7393] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7393] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7393] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7393] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2313], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2313
[pid  7393] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7393] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7394] <... futex resumed>)        = 1
[pid  7394] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7394] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7394] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7395 attached
 <unfinished ...>
[pid  7395] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7395] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7395] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7393] <... futex resumed>)        = 0
[pid  7393] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7393] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7395] <... futex resumed>)        = 1
[pid  7395] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7394] <... futex resumed>)        = 0
[  174.810729][ T7394] loop0: detected capacity change from 0 to 4096
[pid  7394] creat("./file0", 0406)      = 4
[pid  7394] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7393] <... futex resumed>)        = 0
[pid  7393] close(3 <unfinished ...>
[pid  7394] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7393] <... close resumed>)        = 0
[pid  7393] close(4)                    = 0
[pid  7393] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7393] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7393] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7393] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7393] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7393] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7393] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7393] exit_group(0 <unfinished ...>
[pid  7395] <... futex resumed>)        = ?
[pid  7394] <... futex resumed>)        = ?
[pid  7393] <... exit_group resumed>)   = ?
[pid  7395] +++ exited with 0 +++
[pid  7394] +++ exited with 0 +++
[pid  7393] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2311, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./770", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./770", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./770/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./770/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./770/binderfs")    = 0
[pid  5067] umount2("./770/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./770/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./770/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./770/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./770/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./770/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./770")              = 0
[pid  5067] mkdir("./771", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2314
./strace-static-x86_64: Process 7396 attached
[pid  7396] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7396] chdir("./771")              = 0
[pid  7396] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7396] setpgid(0, 0)               = 0
[pid  7396] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7396] write(3, "1000", 4)         = 4
[pid  7396] close(3)                    = 0
[pid  7396] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7396] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7396] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7396] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7396] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7397 attached
, parent_tid=[2315], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2315
[pid  7397] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7396] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7397] <... set_robust_list resumed>) = 0
[pid  7396] <... futex resumed>)        = 0
[pid  7396] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7397] memfd_create("syzkaller", 0) = 3
[pid  7397] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7397] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7397] munmap(0x7ff042e09000, 2097152) = 0
[pid  7397] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7397] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7397] close(3)                    = 0
[pid  7397] mkdir("./file0", 0777)      = 0
[pid  7397] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7397] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7397] chdir("./file0")            = 0
[pid  7397] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7397] close(4)                    = 0
[pid  7397] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7397] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7396] <... futex resumed>)        = 0
[pid  7396] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7397] <... futex resumed>)        = 0
[pid  7396] <... futex resumed>)        = 1
[pid  7396] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7396] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7397] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7396] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7396] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7396] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2316], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2316
[pid  7396] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7396] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7398 attached
 <unfinished ...>
[pid  7398] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7398] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7398] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7396] <... futex resumed>)        = 0
[pid  7396] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7397] <... mkdirat resumed>)      = 0
[pid  7398] creat("./file0", 0406 <unfinished ...>
[pid  7396] <... futex resumed>)        = 0
[pid  7396] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7397] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7397] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7398] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7398] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7396] <... futex resumed>)        = 0
[pid  7398] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7396] close(3)                    = 0
[pid  7396] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7396] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7396] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7396] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7396] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7396] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7396] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(15)                   = -1 EBADF (Bad file descriptor)
[  174.975074][ T7397] loop0: detected capacity change from 0 to 4096
[pid  7396] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7396] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7396] exit_group(0 <unfinished ...>
[pid  7398] <... futex resumed>)        = ?
[pid  7397] <... futex resumed>)        = ?
[pid  7396] <... exit_group resumed>)   = ?
[pid  7397] +++ exited with 0 +++
[pid  7398] +++ exited with 0 +++
[pid  7396] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2314, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./771", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./771", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./771/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./771/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./771/binderfs")    = 0
[pid  5067] umount2("./771/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./771/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./771/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./771/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./771/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./771/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./771")              = 0
[pid  5067] mkdir("./772", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2317
./strace-static-x86_64: Process 7399 attached
[pid  7399] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7399] chdir("./772")              = 0
[pid  7399] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7399] setpgid(0, 0)               = 0
[pid  7399] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7399] write(3, "1000", 4)         = 4
[pid  7399] close(3)                    = 0
[pid  7399] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7399] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7399] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7399] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7399] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2318], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2318
[pid  7399] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7400 attached
) = 0
[pid  7399] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7400] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7400] memfd_create("syzkaller", 0) = 3
[pid  7400] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7400] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7400] munmap(0x7ff042e09000, 2097152) = 0
[pid  7400] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7400] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7400] close(3)                    = 0
[pid  7400] mkdir("./file0", 0777)      = 0
[pid  7400] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7400] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7400] chdir("./file0")            = 0
[pid  7400] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7400] close(4)                    = 0
[pid  7400] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7399] <... futex resumed>)        = 0
[pid  7400] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7399] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7400] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7399] <... futex resumed>)        = 0
[pid  7400] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7399] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7399] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7399] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7399] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2319], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2319
[pid  7399] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7399] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7401 attached
 <unfinished ...>
[pid  7401] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7400] <... mkdirat resumed>)      = 0
[pid  7400] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7400] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7401] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7401] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7399] <... futex resumed>)        = 0
[pid  7399] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7400] <... futex resumed>)        = 0
[pid  7399] <... futex resumed>)        = 1
[pid  7400] creat("./file0", 0406 <unfinished ...>
[pid  7399] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7401] <... futex resumed>)        = 1
[pid  7401] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7400] <... creat resumed>)        = 4
[pid  7400] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7399] <... futex resumed>)        = 0
[pid  7400] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7399] close(3)                    = 0
[pid  7399] close(4)                    = 0
[pid  7399] close(5)                    = -1 EBADF (Bad file descriptor)
[  175.107472][ T7400] loop0: detected capacity change from 0 to 4096
[pid  7399] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7399] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7399] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7399] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7399] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7399] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7399] exit_group(0 <unfinished ...>
[pid  7401] <... futex resumed>)        = ?
[pid  7400] <... futex resumed>)        = ?
[pid  7399] <... exit_group resumed>)   = ?
[pid  7401] +++ exited with 0 +++
[pid  7400] +++ exited with 0 +++
[pid  7399] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2317, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./772", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./772", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./772/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./772/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./772/binderfs")    = 0
[pid  5067] umount2("./772/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./772/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./772/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./772/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./772/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./772/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./772")              = 0
[pid  5067] mkdir("./773", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7402 attached
, child_tidptr=0x5555570e75d0) = 2320
[pid  7402] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7402] chdir("./773")              = 0
[pid  7402] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7402] setpgid(0, 0)               = 0
[pid  7402] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7402] write(3, "1000", 4)         = 4
[pid  7402] close(3)                    = 0
[pid  7402] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7402] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7402] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7402] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7402] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7403 attached
, parent_tid=[2321], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2321
[pid  7402] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7402] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7403] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7403] memfd_create("syzkaller", 0) = 3
[pid  7403] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7403] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7403] munmap(0x7ff042e09000, 2097152) = 0
[pid  7403] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7403] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7403] close(3)                    = 0
[pid  7403] mkdir("./file0", 0777)      = 0
[pid  7403] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7403] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7403] chdir("./file0")            = 0
[pid  7403] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7403] close(4)                    = 0
[pid  7403] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7402] <... futex resumed>)        = 0
[pid  7402] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7402] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7402] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7402] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7402] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2322], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2322
[pid  7402] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7402] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7403] <... futex resumed>)        = 1
[pid  7403] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7404 attached
 <unfinished ...>
[pid  7404] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7404] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7403] <... mkdirat resumed>)      = 0
[pid  7404] <... chdir resumed>)        = 0
[pid  7404] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7402] <... futex resumed>)        = 0
[pid  7402] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7402] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7403] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7404] <... futex resumed>)        = 1
[pid  7404] creat("./file0", 0406 <unfinished ...>
[pid  7403] <... futex resumed>)        = 0
[pid  7403] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7404] <... creat resumed>)        = 4
[pid  7404] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7402] <... futex resumed>)        = 0
[pid  7402] close(3)                    = 0
[pid  7402] close(4)                    = 0
[pid  7402] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7402] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7402] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7402] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7402] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7402] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(26 <unfinished ...>
[pid  7404] <... futex resumed>)        = 1
[pid  7402] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7404] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7402] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7402] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7402] exit_group(0 <unfinished ...>
[pid  7404] <... futex resumed>)        = ?
[  175.267219][ T7403] loop0: detected capacity change from 0 to 4096
[pid  7403] <... futex resumed>)        = ?
[pid  7402] <... exit_group resumed>)   = ?
[pid  7404] +++ exited with 0 +++
[pid  7403] +++ exited with 0 +++
[pid  7402] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2320, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./773", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./773", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./773/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./773/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./773/binderfs")    = 0
[pid  5067] umount2("./773/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./773/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./773/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./773/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./773/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./773/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./773")              = 0
[pid  5067] mkdir("./774", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2323
./strace-static-x86_64: Process 7405 attached
[pid  7405] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7405] chdir("./774")              = 0
[pid  7405] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7405] setpgid(0, 0)               = 0
[pid  7405] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7405] write(3, "1000", 4)         = 4
[pid  7405] close(3)                    = 0
[pid  7405] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7405] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7405] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7405] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7405] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7406 attached
, parent_tid=[2324], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2324
[pid  7406] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7405] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7406] <... set_robust_list resumed>) = 0
[pid  7405] <... futex resumed>)        = 0
[pid  7405] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7406] memfd_create("syzkaller", 0) = 3
[pid  7406] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7406] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7406] munmap(0x7ff042e09000, 2097152) = 0
[pid  7406] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7406] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7406] close(3)                    = 0
[pid  7406] mkdir("./file0", 0777)      = 0
[pid  7406] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7406] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7406] chdir("./file0")            = 0
[pid  7406] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7406] close(4)                    = 0
[pid  7406] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7406] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7405] <... futex resumed>)        = 0
[pid  7405] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7405] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7405] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7405] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7405] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7407 attached
, parent_tid=[2325], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2325
[pid  7407] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7405] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7407] <... set_robust_list resumed>) = 0
[pid  7406] <... futex resumed>)        = 0
[pid  7405] <... futex resumed>)        = 0
[pid  7406] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7407] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7405] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7407] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7407] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7406] <... mkdirat resumed>)      = 0
[pid  7405] <... futex resumed>)        = 0
[  175.405031][ T7406] loop0: detected capacity change from 0 to 4096
[pid  7406] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7406] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7407] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7405] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7406] <... futex resumed>)        = 0
[pid  7405] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7406] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7406] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7405] <... futex resumed>)        = 0
[pid  7406] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7405] close(3)                    = 0
[pid  7405] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7405] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7405] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7405] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7405] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7405] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7405] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7405] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7405] exit_group(0 <unfinished ...>
[pid  7406] <... futex resumed>)        = ?
[pid  7405] <... exit_group resumed>)   = ?
[pid  7407] <... futex resumed>)        = ?
[pid  7406] +++ exited with 0 +++
[pid  7407] +++ exited with 0 +++
[pid  7405] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2323, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./774", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./774", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./774/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./774/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./774/binderfs")    = 0
[pid  5067] umount2("./774/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./774/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./774/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./774/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./774/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./774/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./774")              = 0
[pid  5067] mkdir("./775", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2326
./strace-static-x86_64: Process 7408 attached
[pid  7408] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7408] chdir("./775")              = 0
[pid  7408] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7408] setpgid(0, 0)               = 0
[pid  7408] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7408] write(3, "1000", 4)         = 4
[pid  7408] close(3)                    = 0
[pid  7408] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7408] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7408] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7408] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7408] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7409 attached
, parent_tid=[2327], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2327
[pid  7408] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7408] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7409] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7409] memfd_create("syzkaller", 0) = 3
[pid  7409] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7409] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7409] munmap(0x7ff042e09000, 2097152) = 0
[pid  7409] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7409] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7409] close(3)                    = 0
[pid  7409] mkdir("./file0", 0777)      = 0
[pid  7409] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7409] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7409] chdir("./file0")            = 0
[pid  7409] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7409] close(4)                    = 0
[pid  7409] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7408] <... futex resumed>)        = 0
[pid  7409] <... futex resumed>)        = 1
[pid  7408] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7409] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7408] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7408] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7408] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7408] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7410 attached
 <unfinished ...>
[pid  7410] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7410] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7408] <... clone resumed>, parent_tid=[2328], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2328
[pid  7408] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7410] <... futex resumed>)        = 0
[pid  7408] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7410] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7409] <... mkdirat resumed>)      = 0
[pid  7410] <... chdir resumed>)        = 0
[pid  7410] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7408] <... futex resumed>)        = 0
[pid  7410] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7408] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7408] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7410] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7410] creat("./file0", 0406 <unfinished ...>
[pid  7409] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7409] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7410] <... creat resumed>)        = 4
[pid  7410] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7408] <... futex resumed>)        = 0
[pid  7410] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7408] close(3)                    = 0
[pid  7408] close(4)                    = 0
[pid  7408] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7408] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7408] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7408] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7408] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7408] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(19)                   = -1 EBADF (Bad file descriptor)
[  175.571751][ T7409] loop0: detected capacity change from 0 to 4096
[pid  7408] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7408] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7408] exit_group(0 <unfinished ...>
[pid  7410] <... futex resumed>)        = ?
[pid  7409] <... futex resumed>)        = ?
[pid  7408] <... exit_group resumed>)   = ?
[pid  7409] +++ exited with 0 +++
[pid  7410] +++ exited with 0 +++
[pid  7408] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2326, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./775", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./775", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./775/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./775/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./775/binderfs")    = 0
[pid  5067] umount2("./775/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./775/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./775/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./775/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./775/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./775/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./775")              = 0
[pid  5067] mkdir("./776", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2329
./strace-static-x86_64: Process 7411 attached
[pid  7411] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7411] chdir("./776")              = 0
[pid  7411] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7411] setpgid(0, 0)               = 0
[pid  7411] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7411] write(3, "1000", 4)         = 4
[pid  7411] close(3)                    = 0
[pid  7411] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7411] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7411] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7411] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7411] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2330], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2330
[pid  7411] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7411] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7412 attached
 <unfinished ...>
[pid  7412] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7412] memfd_create("syzkaller", 0) = 3
[pid  7412] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7412] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7412] munmap(0x7ff042e09000, 2097152) = 0
[pid  7412] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7412] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7412] close(3)                    = 0
[pid  7412] mkdir("./file0", 0777)      = 0
[pid  7412] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7412] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7412] chdir("./file0")            = 0
[pid  7412] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7412] close(4)                    = 0
[pid  7412] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7411] <... futex resumed>)        = 0
[pid  7412] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7411] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7411] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7411] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7412] <... mkdirat resumed>)      = 0
[pid  7411] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7411] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7412] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7411] <... clone resumed>, parent_tid=[2331], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2331
[pid  7412] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7411] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7411] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7413 attached
 <unfinished ...>
[pid  7413] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7413] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7413] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7411] <... futex resumed>)        = 0
[pid  7411] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7411] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7412] <... futex resumed>)        = 0
[pid  7412] creat("./file0", 0406 <unfinished ...>
[pid  7413] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7412] <... creat resumed>)        = 4
[pid  7412] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7411] <... futex resumed>)        = 0
[pid  7412] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7411] close(3)                    = 0
[pid  7411] close(4)                    = 0
[pid  7411] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7411] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7411] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7411] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7411] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7411] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(23)                   = -1 EBADF (Bad file descriptor)
[  175.717532][ T7412] loop0: detected capacity change from 0 to 4096
[pid  7411] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7411] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7411] exit_group(0 <unfinished ...>
[pid  7413] <... futex resumed>)        = ?
[pid  7412] <... futex resumed>)        = ?
[pid  7411] <... exit_group resumed>)   = ?
[pid  7413] +++ exited with 0 +++
[pid  7412] +++ exited with 0 +++
[pid  7411] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2329, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./776", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./776", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./776/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./776/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./776/binderfs")    = 0
[pid  5067] umount2("./776/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./776/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./776/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./776/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./776/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./776/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./776")              = 0
[pid  5067] mkdir("./777", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2332
./strace-static-x86_64: Process 7414 attached
[pid  7414] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7414] chdir("./777")              = 0
[pid  7414] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7414] setpgid(0, 0)               = 0
[pid  7414] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7414] write(3, "1000", 4)         = 4
[pid  7414] close(3)                    = 0
[pid  7414] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7414] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7414] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7414] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7414] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7415 attached
, parent_tid=[2333], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2333
[pid  7415] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7414] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7414] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7415] <... set_robust_list resumed>) = 0
[pid  7415] memfd_create("syzkaller", 0) = 3
[pid  7415] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7415] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7415] munmap(0x7ff042e09000, 2097152) = 0
[pid  7415] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7415] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7415] close(3)                    = 0
[pid  7415] mkdir("./file0", 0777)      = 0
[pid  7415] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7415] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7415] chdir("./file0")            = 0
[pid  7415] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7415] close(4)                    = 0
[pid  7415] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7414] <... futex resumed>)        = 0
[pid  7414] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7414] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7414] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7414] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7414] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2334], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2334
[pid  7414] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7414] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7415] <... futex resumed>)        = 1
[pid  7415] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7416 attached
 <unfinished ...>
[pid  7416] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7416] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7416] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7415] <... mkdirat resumed>)      = 0
[  175.868448][ T7415] loop0: detected capacity change from 0 to 4096
[pid  7414] <... futex resumed>)        = 0
[pid  7416] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7415] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7414] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7414] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7415] <... futex resumed>)        = 1
[pid  7414] <... futex resumed>)        = 0
[pid  7415] creat("./file0", 0406 <unfinished ...>
[pid  7414] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7415] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7415] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7414] <... futex resumed>)        = 0
[pid  7415] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7414] close(3)                    = 0
[pid  7414] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7414] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7414] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7414] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7414] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7414] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7414] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7414] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7414] exit_group(0 <unfinished ...>
[pid  7416] <... futex resumed>)        = ?
[pid  7415] <... futex resumed>)        = ?
[pid  7414] <... exit_group resumed>)   = ?
[pid  7416] +++ exited with 0 +++
[pid  7415] +++ exited with 0 +++
[pid  7414] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2332, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./777", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./777", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./777/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./777/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./777/binderfs")    = 0
[pid  5067] umount2("./777/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./777/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./777/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./777/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./777/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./777/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./777")              = 0
[pid  5067] mkdir("./778", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2335
./strace-static-x86_64: Process 7417 attached
[pid  7417] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7417] chdir("./778")              = 0
[pid  7417] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7417] setpgid(0, 0)               = 0
[pid  7417] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7417] write(3, "1000", 4)         = 4
[pid  7417] close(3)                    = 0
[pid  7417] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7417] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7417] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7417] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7417] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7418 attached
 <unfinished ...>
[pid  7418] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7417] <... clone resumed>, parent_tid=[2336], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2336
[pid  7417] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7417] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7418] memfd_create("syzkaller", 0) = 3
[pid  7418] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7418] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7418] munmap(0x7ff042e09000, 2097152) = 0
[pid  7418] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7418] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7418] close(3)                    = 0
[pid  7418] mkdir("./file0", 0777)      = 0
[pid  7418] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7418] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7418] chdir("./file0")            = 0
[pid  7418] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7418] close(4)                    = 0
[pid  7418] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7417] <... futex resumed>)        = 0
[pid  7417] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7417] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7417] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7417] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7417] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2337], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2337
[pid  7418] <... futex resumed>)        = 1
[pid  7417] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7418] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7417] <... futex resumed>)        = 0
[pid  7417] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7418] <... mkdirat resumed>)      = 0
./strace-static-x86_64: Process 7419 attached
[pid  7419] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7419] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7418] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7418] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7419] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7417] <... futex resumed>)        = 0
[pid  7419] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7417] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7418] <... futex resumed>)        = 0
[pid  7417] <... futex resumed>)        = 1
[pid  7418] creat("./file0", 0406 <unfinished ...>
[pid  7417] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7418] <... creat resumed>)        = 4
[pid  7418] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7417] <... futex resumed>)        = 0
[pid  7417] close(3 <unfinished ...>
[pid  7418] <... futex resumed>)        = 1
[pid  7417] <... close resumed>)        = 0
[pid  7418] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7417] close(4)                    = 0
[pid  7417] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7417] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7417] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7417] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7417] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7417] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7417] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7417] exit_group(0 <unfinished ...>
[pid  7419] <... futex resumed>)        = ?
[pid  7418] <... futex resumed>)        = ?
[pid  7417] <... exit_group resumed>)   = ?
[pid  7419] +++ exited with 0 +++
[pid  7418] +++ exited with 0 +++
[pid  7417] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2335, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./778", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  176.024889][ T7418] loop0: detected capacity change from 0 to 4096
[pid  5067] openat(AT_FDCWD, "./778", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./778/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./778/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./778/binderfs")    = 0
[pid  5067] umount2("./778/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./778/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./778/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./778/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./778/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./778/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./778")              = 0
[pid  5067] mkdir("./779", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2338
./strace-static-x86_64: Process 7420 attached
[pid  7420] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7420] chdir("./779")              = 0
[pid  7420] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7420] setpgid(0, 0)               = 0
[pid  7420] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7420] write(3, "1000", 4)         = 4
[pid  7420] close(3)                    = 0
[pid  7420] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7420] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7420] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7420] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7420] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2339], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2339
[pid  7420] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7420] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7421 attached
 <unfinished ...>
[pid  7421] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7421] memfd_create("syzkaller", 0) = 3
[pid  7421] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7421] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7421] munmap(0x7ff042e09000, 2097152) = 0
[pid  7421] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7421] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7421] close(3)                    = 0
[pid  7421] mkdir("./file0", 0777)      = 0
[pid  7421] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7421] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7421] chdir("./file0")            = 0
[pid  7421] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7421] close(4)                    = 0
[pid  7421] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7420] <... futex resumed>)        = 0
[pid  7421] <... futex resumed>)        = 1
[pid  7420] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7420] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7420] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7420] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7420] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7422 attached
, parent_tid=[2340], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2340
[pid  7420] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7422] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7420] <... futex resumed>)        = 0
[pid  7420] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7422] <... set_robust_list resumed>) = 0
[pid  7422] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7421] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7422] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7420] <... futex resumed>)        = 0
[pid  7420] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7421] <... mkdirat resumed>)      = 0
[pid  7420] <... futex resumed>)        = 0
[pid  7420] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7422] <... futex resumed>)        = 1
[pid  7421] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7421] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7422] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7422] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7420] <... futex resumed>)        = 0
[pid  7420] close(3)                    = 0
[pid  7420] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7420] close(5 <unfinished ...>
[pid  7422] <... futex resumed>)        = 1
[pid  7420] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7422] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7420] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7420] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7420] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7420] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7420] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(16)                   = -1 EBADF (Bad file descriptor)
[  176.155980][ T7421] loop0: detected capacity change from 0 to 4096
[pid  7420] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7420] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7420] exit_group(0 <unfinished ...>
[pid  7422] <... futex resumed>)        = ?
[pid  7421] <... futex resumed>)        = ?
[pid  7420] <... exit_group resumed>)   = ?
[pid  7422] +++ exited with 0 +++
[pid  7421] +++ exited with 0 +++
[pid  7420] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2338, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./779", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./779", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./779/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./779/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./779/binderfs")    = 0
[pid  5067] umount2("./779/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./779/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./779/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./779/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./779/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./779/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./779")              = 0
[pid  5067] mkdir("./780", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2341
./strace-static-x86_64: Process 7423 attached
[pid  7423] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7423] chdir("./780")              = 0
[pid  7423] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7423] setpgid(0, 0)               = 0
[pid  7423] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7423] write(3, "1000", 4)         = 4
[pid  7423] close(3)                    = 0
[pid  7423] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7423] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7423] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7423] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7423] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2342], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2342
[pid  7423] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7424 attached
 <unfinished ...>
[pid  7424] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7423] <... futex resumed>)        = 0
[pid  7424] <... set_robust_list resumed>) = 0
[pid  7423] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7424] memfd_create("syzkaller", 0) = 3
[pid  7424] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7424] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7424] munmap(0x7ff042e09000, 2097152) = 0
[pid  7424] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7424] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7424] close(3)                    = 0
[pid  7424] mkdir("./file0", 0777)      = 0
[pid  7424] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7424] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7424] chdir("./file0")            = 0
[pid  7424] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7424] close(4)                    = 0
[pid  7424] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7423] <... futex resumed>)        = 0
[pid  7423] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7423] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7423] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7423] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7423] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2343], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2343
[pid  7423] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7423] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7424] <... futex resumed>)        = 1
[pid  7424] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7424] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7424] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7425 attached
 <unfinished ...>
[pid  7425] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7425] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7425] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7423] <... futex resumed>)        = 0
[pid  7423] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7424] <... futex resumed>)        = 0
[pid  7423] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7425] <... futex resumed>)        = 1
[pid  7425] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7424] creat("./file0", 0406)      = 4
[pid  7424] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7423] <... futex resumed>)        = 0
[pid  7423] close(3)                    = 0
[pid  7423] close(4)                    = 0
[pid  7423] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7423] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7423] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7423] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7423] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7423] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7424] <... futex resumed>)        = 1
[pid  7423] close(19 <unfinished ...>
[pid  7424] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7423] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7423] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7423] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7423] exit_group(0)               = ?
[pid  7425] <... futex resumed>)        = ?
[pid  7425] +++ exited with 0 +++
[pid  7424] <... futex resumed>)        = ?
[  176.298827][ T7424] loop0: detected capacity change from 0 to 4096
[pid  7424] +++ exited with 0 +++
[pid  7423] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2341, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./780", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./780", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./780/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./780/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./780/binderfs")    = 0
[pid  5067] umount2("./780/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./780/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./780/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./780/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./780/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./780/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./780")              = 0
[pid  5067] mkdir("./781", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2344
./strace-static-x86_64: Process 7426 attached
[pid  7426] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7426] chdir("./781")              = 0
[pid  7426] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7426] setpgid(0, 0)               = 0
[pid  7426] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7426] write(3, "1000", 4)         = 4
[pid  7426] close(3)                    = 0
[pid  7426] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7426] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7426] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7426] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7426] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7427 attached
, parent_tid=[2345], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2345
[pid  7426] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7426] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7427] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7427] memfd_create("syzkaller", 0) = 3
[pid  7427] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7427] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7427] munmap(0x7ff042e09000, 2097152) = 0
[pid  7427] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7427] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7427] close(3)                    = 0
[pid  7427] mkdir("./file0", 0777)      = 0
[pid  7427] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7427] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7427] chdir("./file0")            = 0
[pid  7427] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7427] close(4)                    = 0
[pid  7427] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7426] <... futex resumed>)        = 0
[pid  7426] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7426] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7426] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7426] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7426] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2346], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2346
[pid  7426] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7426] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7427] <... futex resumed>)        = 1
[pid  7427] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7428 attached
) = 0
[pid  7428] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7427] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7428] <... set_robust_list resumed>) = 0
[pid  7427] <... futex resumed>)        = 0
[pid  7428] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7427] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7428] <... chdir resumed>)        = 0
[pid  7428] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7426] <... futex resumed>)        = 0
[pid  7426] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7426] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7427] <... futex resumed>)        = 0
[  176.450982][ T7427] loop0: detected capacity change from 0 to 4096
[pid  7427] creat("./file0", 0406 <unfinished ...>
[pid  7428] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7427] <... creat resumed>)        = 4
[pid  7427] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7426] <... futex resumed>)        = 0
[pid  7427] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7426] close(3)                    = 0
[pid  7426] close(4)                    = 0
[pid  7426] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7426] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7426] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7426] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7426] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7426] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7426] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7426] exit_group(0 <unfinished ...>
[pid  7428] <... futex resumed>)        = ?
[pid  7427] <... futex resumed>)        = ?
[pid  7426] <... exit_group resumed>)   = ?
[pid  7428] +++ exited with 0 +++
[pid  7427] +++ exited with 0 +++
[pid  7426] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2344, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./781", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./781", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./781/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./781/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./781/binderfs")    = 0
[pid  5067] umount2("./781/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./781/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./781/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./781/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./781/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./781/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./781")              = 0
[pid  5067] mkdir("./782", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7429 attached
, child_tidptr=0x5555570e75d0) = 2347
[pid  7429] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7429] chdir("./782")              = 0
[pid  7429] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7429] setpgid(0, 0)               = 0
[pid  7429] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7429] write(3, "1000", 4)         = 4
[pid  7429] close(3)                    = 0
[pid  7429] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7429] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7429] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7429] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7429] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7430 attached
, parent_tid=[2348], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2348
[pid  7430] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7429] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7430] <... set_robust_list resumed>) = 0
[pid  7429] <... futex resumed>)        = 0
[pid  7429] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7430] memfd_create("syzkaller", 0) = 3
[pid  7430] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7430] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7430] munmap(0x7ff042e09000, 2097152) = 0
[pid  7430] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7430] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7430] close(3)                    = 0
[pid  7430] mkdir("./file0", 0777)      = 0
[pid  7430] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7430] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7430] chdir("./file0")            = 0
[pid  7430] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7430] close(4)                    = 0
[pid  7430] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7429] <... futex resumed>)        = 0
[pid  7429] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7430] <... futex resumed>)        = 1
[pid  7429] <... futex resumed>)        = 0
[pid  7430] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7429] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7429] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7429] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7429] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2349], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2349
[pid  7429] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7431 attached
[pid  7430] <... mkdirat resumed>)      = 0
[pid  7429] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7430] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7431] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7430] <... futex resumed>)        = 0
[pid  7430] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7431] <... set_robust_list resumed>) = 0
[pid  7431] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7431] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7429] <... futex resumed>)        = 0
[pid  7429] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7430] <... futex resumed>)        = 0
[pid  7429] <... futex resumed>)        = 1
[  176.613749][ T7430] loop0: detected capacity change from 0 to 4096
[pid  7430] creat("./file0", 0406 <unfinished ...>
[pid  7429] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7431] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7430] <... creat resumed>)        = 4
[pid  7430] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7429] <... futex resumed>)        = 0
[pid  7429] close(3)                    = 0
[pid  7429] close(4)                    = 0
[pid  7429] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7429] close(6 <unfinished ...>
[pid  7430] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7429] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7429] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7429] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7429] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7429] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7429] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7429] exit_group(0 <unfinished ...>
[pid  7430] <... futex resumed>)        = ?
[pid  7431] <... futex resumed>)        = ?
[pid  7429] <... exit_group resumed>)   = ?
[pid  7430] +++ exited with 0 +++
[pid  7431] +++ exited with 0 +++
[pid  7429] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2347, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./782", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./782", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./782/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./782/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./782/binderfs")    = 0
[pid  5067] umount2("./782/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./782/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./782/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./782/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./782/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./782/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./782")              = 0
[pid  5067] mkdir("./783", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2350
./strace-static-x86_64: Process 7432 attached
[pid  7432] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7432] chdir("./783")              = 0
[pid  7432] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7432] setpgid(0, 0)               = 0
[pid  7432] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7432] write(3, "1000", 4)         = 4
[pid  7432] close(3)                    = 0
[pid  7432] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7432] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7432] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7432] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7432] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7433 attached
, parent_tid=[2351], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2351
[pid  7432] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7432] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7433] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7433] memfd_create("syzkaller", 0) = 3
[pid  7433] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7433] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7433] munmap(0x7ff042e09000, 2097152) = 0
[pid  7433] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7433] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7433] close(3)                    = 0
[pid  7433] mkdir("./file0", 0777)      = 0
[pid  7433] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7433] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7433] chdir("./file0")            = 0
[pid  7433] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7433] close(4)                    = 0
[pid  7433] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7432] <... futex resumed>)        = 0
[pid  7433] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7432] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7433] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7432] <... futex resumed>)        = 0
[pid  7433] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7432] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7432] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7433] <... mkdirat resumed>)      = 0
[pid  7432] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7433] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7432] <... mprotect resumed>)     = 0
[pid  7433] <... futex resumed>)        = 0
[pid  7432] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7433] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7434 attached
 <unfinished ...>
[pid  7432] <... clone resumed>, parent_tid=[2352], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2352
[pid  7432] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7432] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7434] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7434] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7434] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7432] <... futex resumed>)        = 0
[pid  7432] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7434] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7433] <... futex resumed>)        = 0
[pid  7432] <... futex resumed>)        = 1
[pid  7433] creat("./file0", 0406 <unfinished ...>
[pid  7432] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7433] <... creat resumed>)        = 4
[pid  7433] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7432] <... futex resumed>)        = 0
[pid  7433] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7432] close(3)                    = 0
[pid  7432] close(4)                    = 0
[pid  7432] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7432] close(6)                    = -1 EBADF (Bad file descriptor)
[  176.766329][ T7433] loop0: detected capacity change from 0 to 4096
[pid  7432] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7432] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7432] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7432] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7432] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7432] exit_group(0 <unfinished ...>
[pid  7434] <... futex resumed>)        = ?
[pid  7433] <... futex resumed>)        = ?
[pid  7432] <... exit_group resumed>)   = ?
[pid  7434] +++ exited with 0 +++
[pid  7433] +++ exited with 0 +++
[pid  7432] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2350, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./783", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./783", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./783/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./783/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./783/binderfs")    = 0
[pid  5067] umount2("./783/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./783/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./783/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./783/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./783/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./783/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./783")              = 0
[pid  5067] mkdir("./784", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2353
./strace-static-x86_64: Process 7435 attached
[pid  7435] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7435] chdir("./784")              = 0
[pid  7435] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7435] setpgid(0, 0)               = 0
[pid  7435] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7435] write(3, "1000", 4)         = 4
[pid  7435] close(3)                    = 0
[pid  7435] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7435] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7435] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7435] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7435] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2354], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2354
[pid  7435] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7435] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7436 attached
 <unfinished ...>
[pid  7436] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7436] memfd_create("syzkaller", 0) = 3
[pid  7436] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7436] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7436] munmap(0x7ff042e09000, 2097152) = 0
[pid  7436] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7436] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7436] close(3)                    = 0
[pid  7436] mkdir("./file0", 0777)      = 0
[pid  7436] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7436] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7436] chdir("./file0")            = 0
[pid  7436] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7436] close(4)                    = 0
[pid  7436] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7435] <... futex resumed>)        = 0
[pid  7435] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7435] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7435] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7435] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7435] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2355], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2355
[pid  7435] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7435] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7436] <... futex resumed>)        = 1
[pid  7436] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7437 attached
 <unfinished ...>
[pid  7437] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7437] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7437] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7436] <... mkdirat resumed>)      = 0
[pid  7435] <... futex resumed>)        = 0
[pid  7437] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7436] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7435] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7436] <... futex resumed>)        = 0
[pid  7435] <... futex resumed>)        = 0
[pid  7436] creat("./file0", 0406 <unfinished ...>
[pid  7435] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7436] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7436] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7435] <... futex resumed>)        = 0
[pid  7436] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7435] close(3)                    = 0
[pid  7435] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7435] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7435] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7435] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7435] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7435] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7435] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(23)                   = -1 EBADF (Bad file descriptor)
[  176.901897][ T7436] loop0: detected capacity change from 0 to 4096
[pid  7435] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7435] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7435] exit_group(0 <unfinished ...>
[pid  7437] <... futex resumed>)        = ?
[pid  7436] <... futex resumed>)        = ?
[pid  7435] <... exit_group resumed>)   = ?
[pid  7437] +++ exited with 0 +++
[pid  7436] +++ exited with 0 +++
[pid  7435] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2353, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./784", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./784", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./784/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./784/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./784/binderfs")    = 0
[pid  5067] umount2("./784/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./784/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./784/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./784/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./784/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./784/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./784")              = 0
[pid  5067] mkdir("./785", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2356
./strace-static-x86_64: Process 7438 attached
[pid  7438] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7438] chdir("./785")              = 0
[pid  7438] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7438] setpgid(0, 0)               = 0
[pid  7438] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7438] write(3, "1000", 4)         = 4
[pid  7438] close(3)                    = 0
[pid  7438] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7438] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7438] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7438] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7438] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7439 attached
, parent_tid=[2357], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2357
[pid  7439] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7439] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7438] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7439] <... futex resumed>)        = 0
[pid  7438] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7439] memfd_create("syzkaller", 0) = 3
[pid  7439] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7439] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7439] munmap(0x7ff042e09000, 2097152) = 0
[pid  7439] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7439] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7439] close(3)                    = 0
[pid  7439] mkdir("./file0", 0777)      = 0
[pid  7439] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7439] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7439] chdir("./file0")            = 0
[pid  7439] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7439] close(4)                    = 0
[pid  7439] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7438] <... futex resumed>)        = 0
[pid  7438] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7438] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7439] <... futex resumed>)        = 1
[pid  7438] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7439] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7438] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7438] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7438] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2358], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2358
[pid  7438] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7438] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7439] <... mkdirat resumed>)      = 0
[pid  7439] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7439] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7440 attached
 <unfinished ...>
[pid  7440] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7440] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7440] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7438] <... futex resumed>)        = 0
[pid  7440] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7438] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7439] <... futex resumed>)        = 0
[pid  7438] <... futex resumed>)        = 1
[pid  7439] creat("./file0", 0406 <unfinished ...>
[pid  7438] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7439] <... creat resumed>)        = 4
[pid  7439] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7438] <... futex resumed>)        = 0
[pid  7439] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7438] close(3)                    = 0
[pid  7438] close(4)                    = 0
[pid  7438] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7438] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7438] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7438] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7438] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7438] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(16)                   = -1 EBADF (Bad file descriptor)
[  177.054955][ T7439] loop0: detected capacity change from 0 to 4096
[pid  7438] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7438] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7438] exit_group(0 <unfinished ...>
[pid  7440] <... futex resumed>)        = ?
[pid  7439] <... futex resumed>)        = ?
[pid  7438] <... exit_group resumed>)   = ?
[pid  7440] +++ exited with 0 +++
[pid  7439] +++ exited with 0 +++
[pid  7438] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2356, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./785", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./785", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./785/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./785/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./785/binderfs")    = 0
[pid  5067] umount2("./785/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./785/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./785/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./785/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./785/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./785/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./785")              = 0
[pid  5067] mkdir("./786", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2359
./strace-static-x86_64: Process 7441 attached
[pid  7441] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7441] chdir("./786")              = 0
[pid  7441] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7441] setpgid(0, 0)               = 0
[pid  7441] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7441] write(3, "1000", 4)         = 4
[pid  7441] close(3)                    = 0
[pid  7441] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7441] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7441] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7441] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7441] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7442 attached
, parent_tid=[2360], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2360
[pid  7442] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7441] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7441] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7442] <... set_robust_list resumed>) = 0
[pid  7442] memfd_create("syzkaller", 0) = 3
[pid  7442] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7442] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7442] munmap(0x7ff042e09000, 2097152) = 0
[pid  7442] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7442] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7442] close(3)                    = 0
[pid  7442] mkdir("./file0", 0777)      = 0
[pid  7442] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7442] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7442] chdir("./file0")            = 0
[pid  7442] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7442] close(4)                    = 0
[pid  7442] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7442] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7441] <... futex resumed>)        = 0
[pid  7441] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7441] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7442] <... futex resumed>)        = 0
[pid  7441] <... futex resumed>)        = 0
[pid  7441] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7441] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7442] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7441] <... mprotect resumed>)     = 0
[pid  7441] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2361], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2361
./strace-static-x86_64: Process 7443 attached
[pid  7441] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7443] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7441] <... futex resumed>)        = 0
[pid  7441] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7443] <... set_robust_list resumed>) = 0
[pid  7442] <... mkdirat resumed>)      = 0
[pid  7442] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7442] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7443] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7443] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7441] <... futex resumed>)        = 0
[pid  7441] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7442] <... futex resumed>)        = 0
[pid  7441] <... futex resumed>)        = 1
[pid  7442] creat("./file0", 0406 <unfinished ...>
[pid  7441] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7443] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7442] <... creat resumed>)        = 4
[pid  7442] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7441] <... futex resumed>)        = 0
[pid  7442] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7441] close(3)                    = 0
[pid  7441] close(4)                    = 0
[pid  7441] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7441] close(6)                    = -1 EBADF (Bad file descriptor)
[  177.205755][ T7442] loop0: detected capacity change from 0 to 4096
[pid  7441] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7441] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7441] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7441] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7441] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7441] exit_group(0 <unfinished ...>
[pid  7442] <... futex resumed>)        = ?
[pid  7443] <... futex resumed>)        = ?
[pid  7441] <... exit_group resumed>)   = ?
[pid  7442] +++ exited with 0 +++
[pid  7443] +++ exited with 0 +++
[pid  7441] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2359, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./786", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./786", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./786/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./786/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./786/binderfs")    = 0
[pid  5067] umount2("./786/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./786/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./786/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./786/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./786/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./786/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./786")              = 0
[pid  5067] mkdir("./787", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2362
./strace-static-x86_64: Process 7444 attached
[pid  7444] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7444] chdir("./787")              = 0
[pid  7444] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7444] setpgid(0, 0)               = 0
[pid  7444] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7444] write(3, "1000", 4)         = 4
[pid  7444] close(3)                    = 0
[pid  7444] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7444] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7444] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7444] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7444] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2363], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2363
[pid  7444] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7444] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7445 attached
 <unfinished ...>
[pid  7445] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7445] memfd_create("syzkaller", 0) = 3
[pid  7445] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7445] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7445] munmap(0x7ff042e09000, 2097152) = 0
[pid  7445] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7445] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7445] close(3)                    = 0
[pid  7445] mkdir("./file0", 0777)      = 0
[pid  7445] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7445] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7445] chdir("./file0")            = 0
[pid  7445] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7445] close(4)                    = 0
[pid  7445] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7444] <... futex resumed>)        = 0
[pid  7444] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7444] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7444] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7445] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7444] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7444] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2364], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2364
[pid  7444] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7444] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7446 attached
 <unfinished ...>
[pid  7446] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7446] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7445] <... mkdirat resumed>)      = 0
[pid  7446] <... chdir resumed>)        = 0
[pid  7446] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7444] <... futex resumed>)        = 0
[pid  7446] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7444] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7446] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7444] <... futex resumed>)        = 0
[pid  7446] creat("./file0", 0406 <unfinished ...>
[pid  7444] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7445] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7446] <... creat resumed>)        = 4
[pid  7446] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7444] <... futex resumed>)        = 0
[pid  7446] <... futex resumed>)        = 1
[pid  7444] close(3 <unfinished ...>
[pid  7446] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7444] <... close resumed>)        = 0
[pid  7444] close(4 <unfinished ...>
[pid  7445] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7444] <... close resumed>)        = 0
[pid  7444] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7444] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7444] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7444] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7444] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7444] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7444] close(29)                   = -1 EBADF (Bad file descriptor)
[  177.378931][ T7445] loop0: detected capacity change from 0 to 4096
[pid  7444] exit_group(0 <unfinished ...>
[pid  7446] <... futex resumed>)        = ?
[pid  7445] <... futex resumed>)        = ?
[pid  7444] <... exit_group resumed>)   = ?
[pid  7445] +++ exited with 0 +++
[pid  7446] +++ exited with 0 +++
[pid  7444] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2362, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./787", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./787", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./787/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./787/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./787/binderfs")    = 0
[pid  5067] umount2("./787/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./787/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./787/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./787/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./787/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./787/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./787")              = 0
[pid  5067] mkdir("./788", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2365
./strace-static-x86_64: Process 7447 attached
[pid  7447] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7447] chdir("./788")              = 0
[pid  7447] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7447] setpgid(0, 0)               = 0
[pid  7447] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7447] write(3, "1000", 4)         = 4
[pid  7447] close(3)                    = 0
[pid  7447] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7447] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7447] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7447] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7447] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7448 attached
, parent_tid=[2366], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2366
[pid  7447] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7447] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7448] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7448] memfd_create("syzkaller", 0) = 3
[pid  7448] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7448] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7448] munmap(0x7ff042e09000, 2097152) = 0
[pid  7448] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7448] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7448] close(3)                    = 0
[pid  7448] mkdir("./file0", 0777)      = 0
[pid  7448] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7448] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7448] chdir("./file0")            = 0
[pid  7448] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7448] close(4)                    = 0
[pid  7448] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7447] <... futex resumed>)        = 0
[pid  7447] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7447] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7447] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7447] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7447] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2367], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2367
[pid  7447] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7447] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7448] <... futex resumed>)        = 1
[pid  7448] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7449 attached
 <unfinished ...>
[pid  7449] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7449] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7448] <... mkdirat resumed>)      = 0
[pid  7449] <... chdir resumed>)        = 0
[pid  7449] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7447] <... futex resumed>)        = 0
[pid  7447] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7447] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7449] <... futex resumed>)        = 1
[pid  7449] creat("./file0", 0406 <unfinished ...>
[pid  7448] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7448] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7449] <... creat resumed>)        = 4
[pid  7449] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7447] <... futex resumed>)        = 0
[pid  7447] close(3)                    = 0
[pid  7447] close(4)                    = 0
[pid  7447] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7447] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7447] close(7 <unfinished ...>
[pid  7449] <... futex resumed>)        = 1
[pid  7447] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7447] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7447] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7447] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7447] close(29 <unfinished ...>
[pid  7449] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7447] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7447] exit_group(0 <unfinished ...>
[pid  7448] <... futex resumed>)        = ?
[pid  7447] <... exit_group resumed>)   = ?
[pid  7449] <... futex resumed>)        = ?
[pid  7448] +++ exited with 0 +++
[pid  7449] +++ exited with 0 +++
[pid  7447] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2365, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[  177.538586][ T7448] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./788", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./788", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./788/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./788/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./788/binderfs")    = 0
[pid  5067] umount2("./788/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./788/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./788/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./788/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./788/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./788/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./788")              = 0
[pid  5067] mkdir("./789", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2368
./strace-static-x86_64: Process 7450 attached
[pid  7450] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7450] chdir("./789")              = 0
[pid  7450] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7450] setpgid(0, 0)               = 0
[pid  7450] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7450] write(3, "1000", 4)         = 4
[pid  7450] close(3)                    = 0
[pid  7450] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7450] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7450] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7450] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7450] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2369], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2369
./strace-static-x86_64: Process 7451 attached
[pid  7450] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7451] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7450] <... futex resumed>)        = 0
[pid  7450] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7451] memfd_create("syzkaller", 0) = 3
[pid  7451] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7451] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7451] munmap(0x7ff042e09000, 2097152) = 0
[pid  7451] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7451] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7451] close(3)                    = 0
[pid  7451] mkdir("./file0", 0777)      = 0
[pid  7451] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7451] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7451] chdir("./file0")            = 0
[pid  7451] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7451] close(4)                    = 0
[pid  7451] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7450] <... futex resumed>)        = 0
[pid  7451] <... futex resumed>)        = 1
[pid  7450] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7451] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7450] <... futex resumed>)        = 0
[pid  7450] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7450] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7450] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7450] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7452 attached
 <unfinished ...>
[pid  7452] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7450] <... clone resumed>, parent_tid=[2370], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2370
[pid  7450] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7452] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7450] <... futex resumed>)        = 0
[pid  7450] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7452] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7452] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7450] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7452] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7450] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7452] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7450] <... futex resumed>)        = 0
[pid  7450] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7452] creat("./file0", 0406 <unfinished ...>
[pid  7451] <... mkdirat resumed>)      = 0
[pid  7451] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7451] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7452] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7452] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7450] <... futex resumed>)        = 0
[pid  7450] close(3 <unfinished ...>
[pid  7452] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7450] <... close resumed>)        = 0
[pid  7450] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7450] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7450] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7450] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7450] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7450] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7450] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(14)                   = -1 EBADF (Bad file descriptor)
[  177.688183][ T7451] loop0: detected capacity change from 0 to 4096
[pid  7450] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7450] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7450] exit_group(0 <unfinished ...>
[pid  7451] <... futex resumed>)        = ?
[pid  7450] <... exit_group resumed>)   = ?
[pid  7452] <... futex resumed>)        = ?
[pid  7451] +++ exited with 0 +++
[pid  7452] +++ exited with 0 +++
[pid  7450] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2368, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./789", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./789", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./789/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./789/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./789/binderfs")    = 0
[pid  5067] umount2("./789/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./789/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./789/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./789/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./789/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./789/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./789")              = 0
[pid  5067] mkdir("./790", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2371
./strace-static-x86_64: Process 7453 attached
[pid  7453] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7453] chdir("./790")              = 0
[pid  7453] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7453] setpgid(0, 0)               = 0
[pid  7453] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7453] write(3, "1000", 4)         = 4
[pid  7453] close(3)                    = 0
[pid  7453] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7453] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7453] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7453] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7453] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2372], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2372
[pid  7453] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7453] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7454 attached
 <unfinished ...>
[pid  7454] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7454] memfd_create("syzkaller", 0) = 3
[pid  7454] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7454] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7454] munmap(0x7ff042e09000, 2097152) = 0
[pid  7454] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7454] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7454] close(3)                    = 0
[pid  7454] mkdir("./file0", 0777)      = 0
[pid  7454] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7454] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7454] chdir("./file0")            = 0
[pid  7454] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7454] close(4)                    = 0
[pid  7454] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7453] <... futex resumed>)        = 0
[pid  7453] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7453] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7453] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7453] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7453] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2373], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2373
[pid  7453] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7453] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7454] <... futex resumed>)        = 1
[pid  7454] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7454] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7454] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7455 attached
 <unfinished ...>
[pid  7455] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7455] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7455] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7453] <... futex resumed>)        = 0
[pid  7453] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7453] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7454] <... futex resumed>)        = 0
[pid  7454] creat("./file0", 0406 <unfinished ...>
[pid  7455] <... futex resumed>)        = 1
[pid  7455] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7454] <... creat resumed>)        = 4
[pid  7454] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7453] <... futex resumed>)        = 0
[pid  7454] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7453] close(3)                    = 0
[pid  7453] close(4)                    = 0
[pid  7453] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7453] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7453] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7453] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7453] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7453] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7453] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7453] exit_group(0 <unfinished ...>
[pid  7455] <... futex resumed>)        = ?
[  177.838600][ T7454] loop0: detected capacity change from 0 to 4096
[pid  7454] <... futex resumed>)        = ?
[pid  7453] <... exit_group resumed>)   = ?
[pid  7455] +++ exited with 0 +++
[pid  7454] +++ exited with 0 +++
[pid  7453] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2371, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./790", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./790", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./790/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./790/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./790/binderfs")    = 0
[pid  5067] umount2("./790/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./790/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./790/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./790/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./790/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./790/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./790")              = 0
[pid  5067] mkdir("./791", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2374
./strace-static-x86_64: Process 7456 attached
[pid  7456] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7456] chdir("./791")              = 0
[pid  7456] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7456] setpgid(0, 0)               = 0
[pid  7456] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7456] write(3, "1000", 4)         = 4
[pid  7456] close(3)                    = 0
[pid  7456] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7456] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7456] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7456] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7456] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7457 attached
 <unfinished ...>
[pid  7457] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7456] <... clone resumed>, parent_tid=[2375], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2375
[pid  7457] <... set_robust_list resumed>) = 0
[pid  7456] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7456] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7457] memfd_create("syzkaller", 0) = 3
[pid  7457] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7457] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7457] munmap(0x7ff042e09000, 2097152) = 0
[pid  7457] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7457] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7457] close(3)                    = 0
[pid  7457] mkdir("./file0", 0777)      = 0
[pid  7457] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7457] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7457] chdir("./file0")            = 0
[pid  7457] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7457] close(4)                    = 0
[pid  7457] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7456] <... futex resumed>)        = 0
[pid  7457] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7456] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7456] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7456] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7456] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7456] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2376], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2376
[pid  7456] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7456] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7458 attached
 <unfinished ...>
[pid  7458] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7458] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7457] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7457] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7458] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7458] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7456] <... futex resumed>)        = 0
[pid  7456] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7456] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7458] <... futex resumed>)        = 1
[pid  7458] creat("./file0", 0406 <unfinished ...>
[pid  7457] <... mkdirat resumed>)      = 0
[pid  7457] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7457] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7458] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7458] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7456] <... futex resumed>)        = 0
[pid  7456] close(3)                    = 0
[pid  7456] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7456] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7456] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7456] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7456] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7456] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7456] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(21)                   = -1 EBADF (Bad file descriptor)
[  177.977464][ T7457] loop0: detected capacity change from 0 to 4096
[pid  7456] close(22 <unfinished ...>
[pid  7458] <... futex resumed>)        = 1
[pid  7456] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7456] close(23 <unfinished ...>
[pid  7458] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7456] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7456] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7456] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7456] exit_group(0 <unfinished ...>
[pid  7458] <... futex resumed>)        = ?
[pid  7457] <... futex resumed>)        = ?
[pid  7456] <... exit_group resumed>)   = ?
[pid  7458] +++ exited with 0 +++
[pid  7457] +++ exited with 0 +++
[pid  7456] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2374, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./791", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./791", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./791/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./791/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./791/binderfs")    = 0
[pid  5067] umount2("./791/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./791/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./791/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./791/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./791/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./791/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./791")              = 0
[pid  5067] mkdir("./792", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2377
./strace-static-x86_64: Process 7459 attached
[pid  7459] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7459] chdir("./792")              = 0
[pid  7459] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7459] setpgid(0, 0)               = 0
[pid  7459] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7459] write(3, "1000", 4)         = 4
[pid  7459] close(3)                    = 0
[pid  7459] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7459] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7459] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7459] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7459] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7460 attached
, parent_tid=[2378], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2378
[pid  7459] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7459] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7460] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7460] memfd_create("syzkaller", 0) = 3
[pid  7460] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7460] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7460] munmap(0x7ff042e09000, 2097152) = 0
[pid  7460] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7460] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7460] close(3)                    = 0
[pid  7460] mkdir("./file0", 0777)      = 0
[pid  7460] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7460] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7460] chdir("./file0")            = 0
[pid  7460] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7460] close(4)                    = 0
[pid  7460] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7459] <... futex resumed>)        = 0
[pid  7459] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7459] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7459] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7459] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7459] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2379], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2379
[pid  7459] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7459] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7460] <... futex resumed>)        = 1
[pid  7460] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7461 attached
 <unfinished ...>
[pid  7461] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7461] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7461] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7459] <... futex resumed>)        = 0
[pid  7461] <... futex resumed>)        = 1
[pid  7459] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7459] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7461] creat("./file0", 0406 <unfinished ...>
[pid  7460] <... mkdirat resumed>)      = 0
[pid  7460] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7460] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7461] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7461] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7459] <... futex resumed>)        = 0
[pid  7459] close(3)                    = 0
[pid  7459] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7459] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7459] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7459] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7459] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7459] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7459] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(21 <unfinished ...>
[pid  7461] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7459] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7459] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7459] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7459] exit_group(0 <unfinished ...>
[pid  7460] <... futex resumed>)        = ?
[pid  7459] <... exit_group resumed>)   = ?
[pid  7460] +++ exited with 0 +++
[pid  7461] <... futex resumed>)        = ?
[pid  7461] +++ exited with 0 +++
[pid  7459] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2377, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[  178.126488][ T7460] loop0: detected capacity change from 0 to 4096
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./792", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./792", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./792/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./792/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./792/binderfs")    = 0
[pid  5067] umount2("./792/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./792/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./792/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./792/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./792/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./792/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./792")              = 0
[pid  5067] mkdir("./793", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2380
./strace-static-x86_64: Process 7462 attached
[pid  7462] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7462] chdir("./793")              = 0
[pid  7462] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7462] setpgid(0, 0)               = 0
[pid  7462] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7462] write(3, "1000", 4)         = 4
[pid  7462] close(3)                    = 0
[pid  7462] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7462] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7462] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7462] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7462] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7463 attached
, parent_tid=[2381], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2381
[pid  7462] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7462] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7463] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7463] memfd_create("syzkaller", 0) = 3
[pid  7463] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7463] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7463] munmap(0x7ff042e09000, 2097152) = 0
[pid  7463] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7463] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7463] close(3)                    = 0
[pid  7463] mkdir("./file0", 0777)      = 0
[pid  7463] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7463] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7463] chdir("./file0")            = 0
[pid  7463] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7463] close(4)                    = 0
[pid  7463] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7463] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7462] <... futex resumed>)        = 0
[pid  7462] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7463] <... futex resumed>)        = 0
[pid  7462] <... futex resumed>)        = 1
[pid  7462] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7462] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7463] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7462] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7462] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7462] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2382], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2382
[pid  7462] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7462] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7463] <... mkdirat resumed>)      = 0
./strace-static-x86_64: Process 7464 attached
[pid  7463] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7463] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7464] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7464] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7464] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7462] <... futex resumed>)        = 0
[pid  7462] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7462] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7464] <... futex resumed>)        = 1
[pid  7463] <... futex resumed>)        = 0
[pid  7464] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7463] creat("./file0", 0406)      = 4
[pid  7463] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7462] <... futex resumed>)        = 0
[pid  7462] close(3)                    = 0
[pid  7462] close(4)                    = 0
[pid  7462] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7462] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7462] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7462] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7462] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7462] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7462] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7462] exit_group(0 <unfinished ...>
[pid  7464] <... futex resumed>)        = ?
[pid  7462] <... exit_group resumed>)   = ?
[pid  7464] +++ exited with 0 +++
[pid  7463] <... futex resumed>)        = ?
[pid  7463] +++ exited with 0 +++
[pid  7462] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2380, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./793", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./793", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./793/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  178.272377][ T7463] loop0: detected capacity change from 0 to 4096
[pid  5067] lstat("./793/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./793/binderfs")    = 0
[pid  5067] umount2("./793/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./793/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./793/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./793/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./793/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./793/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./793")              = 0
[pid  5067] mkdir("./794", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2383
./strace-static-x86_64: Process 7465 attached
[pid  7465] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7465] chdir("./794")              = 0
[pid  7465] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7465] setpgid(0, 0)               = 0
[pid  7465] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7465] write(3, "1000", 4)         = 4
[pid  7465] close(3)                    = 0
[pid  7465] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7465] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7465] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7465] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7465] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7466 attached
, parent_tid=[2384], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2384
[pid  7466] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7465] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7465] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7466] <... set_robust_list resumed>) = 0
[pid  7466] memfd_create("syzkaller", 0) = 3
[pid  7466] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7466] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7466] munmap(0x7ff042e09000, 2097152) = 0
[pid  7466] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7466] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7466] close(3)                    = 0
[pid  7466] mkdir("./file0", 0777)      = 0
[pid  7466] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7466] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7466] chdir("./file0")            = 0
[pid  7466] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7466] close(4)                    = 0
[pid  7466] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7465] <... futex resumed>)        = 0
[pid  7465] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7465] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7465] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7465] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7465] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2385], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2385
[pid  7465] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7465] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7467 attached
 <unfinished ...>
[pid  7467] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7467] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7466] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7467] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7465] <... futex resumed>)        = 0
[pid  7465] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7465] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7467] <... futex resumed>)        = 1
[pid  7467] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7467] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7465] <... futex resumed>)        = 0
[pid  7467] <... futex resumed>)        = 1
[pid  7467] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7466] <... mkdirat resumed>)      = 0
[pid  7466] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7465] close(3)                    = 0
[pid  7465] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7465] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7465] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7465] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7465] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7465] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7465] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(15 <unfinished ...>
[pid  7466] <... futex resumed>)        = 0
[pid  7465] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7465] close(16 <unfinished ...>
[pid  7466] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7465] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7465] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7465] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7465] exit_group(0 <unfinished ...>
[pid  7467] <... futex resumed>)        = ?
[  178.414108][ T7466] loop0: detected capacity change from 0 to 4096
[pid  7466] <... futex resumed>)        = ?
[pid  7465] <... exit_group resumed>)   = ?
[pid  7467] +++ exited with 0 +++
[pid  7466] +++ exited with 0 +++
[pid  7465] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2383, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./794", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./794", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./794/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./794/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./794/binderfs")    = 0
[pid  5067] umount2("./794/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./794/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./794/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./794/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./794/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./794/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./794")              = 0
[pid  5067] mkdir("./795", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2386
./strace-static-x86_64: Process 7468 attached
[pid  7468] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7468] chdir("./795")              = 0
[pid  7468] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7468] setpgid(0, 0)               = 0
[pid  7468] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7468] write(3, "1000", 4)         = 4
[pid  7468] close(3)                    = 0
[pid  7468] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7468] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7468] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7468] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7468] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2387], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2387
[pid  7468] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7468] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7469 attached
 <unfinished ...>
[pid  7469] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7469] memfd_create("syzkaller", 0) = 3
[pid  7469] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7469] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7469] munmap(0x7ff042e09000, 2097152) = 0
[pid  7469] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7469] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7469] close(3)                    = 0
[pid  7469] mkdir("./file0", 0777)      = 0
[pid  7469] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7469] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7469] chdir("./file0")            = 0
[pid  7469] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7469] close(4)                    = 0
[pid  7469] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7469] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7468] <... futex resumed>)        = 0
[pid  7468] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7468] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7468] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7468] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7468] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2388], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2388
[pid  7468] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7468] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7469] <... futex resumed>)        = 0
[pid  7469] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7470 attached
) = 0
[pid  7470] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7469] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7470] <... set_robust_list resumed>) = 0
[pid  7469] <... futex resumed>)        = 0
[pid  7470] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7469] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7470] <... chdir resumed>)        = 0
[pid  7470] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7468] <... futex resumed>)        = 0
[pid  7470] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7468] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7469] <... futex resumed>)        = 0
[pid  7468] <... futex resumed>)        = 1
[pid  7469] creat("./file0", 0406 <unfinished ...>
[pid  7468] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7469] <... creat resumed>)        = 4
[pid  7469] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7468] <... futex resumed>)        = 0
[pid  7469] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7468] close(3)                    = 0
[pid  7468] close(4)                    = 0
[pid  7468] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7468] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7468] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7468] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7468] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7468] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(19)                   = -1 EBADF (Bad file descriptor)
[  178.546472][ T7469] loop0: detected capacity change from 0 to 4096
[pid  7468] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7468] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7468] exit_group(0)               = ?
[pid  7470] <... futex resumed>)        = ?
[pid  7469] <... futex resumed>)        = ?
[pid  7470] +++ exited with 0 +++
[pid  7469] +++ exited with 0 +++
[pid  7468] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2386, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./795", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./795", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./795/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./795/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./795/binderfs")    = 0
[pid  5067] umount2("./795/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./795/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./795/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./795/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./795/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./795/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./795")              = 0
[pid  5067] mkdir("./796", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7471 attached
, child_tidptr=0x5555570e75d0) = 2389
[pid  7471] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7471] chdir("./796")              = 0
[pid  7471] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7471] setpgid(0, 0)               = 0
[pid  7471] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7471] write(3, "1000", 4)         = 4
[pid  7471] close(3)                    = 0
[pid  7471] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7471] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7471] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7471] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7471] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7472 attached
 <unfinished ...>
[pid  7472] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7471] <... clone resumed>, parent_tid=[2390], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2390
[pid  7472] <... set_robust_list resumed>) = 0
[pid  7471] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7472] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7471] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7472] <... memfd_create resumed>) = 3
[pid  7472] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7472] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7472] munmap(0x7ff042e09000, 2097152) = 0
[pid  7472] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7472] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7472] close(3)                    = 0
[pid  7472] mkdir("./file0", 0777)      = 0
[pid  7472] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7472] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7472] chdir("./file0")            = 0
[pid  7472] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7472] close(4)                    = 0
[pid  7472] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7472] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7471] <... futex resumed>)        = 0
[pid  7471] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7472] <... futex resumed>)        = 0
[pid  7471] <... futex resumed>)        = 1
[pid  7472] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7471] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7471] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7471] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7472] <... mkdirat resumed>)      = 0
[pid  7471] <... mprotect resumed>)     = 0
[pid  7472] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7471] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7473 attached
 <unfinished ...>
[pid  7472] <... futex resumed>)        = 0
[pid  7472] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7471] <... clone resumed>, parent_tid=[2391], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2391
[pid  7471] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7471] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7473] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7473] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7473] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7471] <... futex resumed>)        = 0
[pid  7473] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7471] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7472] <... futex resumed>)        = 0
[pid  7471] <... futex resumed>)        = 1
[pid  7472] creat("./file0", 0406 <unfinished ...>
[pid  7471] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7472] <... creat resumed>)        = 4
[pid  7472] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7471] <... futex resumed>)        = 0
[pid  7471] close(3)                    = 0
[pid  7471] close(4)                    = 0
[pid  7471] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7471] close(6)                    = -1 EBADF (Bad file descriptor)
[  178.683758][ T7472] loop0: detected capacity change from 0 to 4096
[pid  7471] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7471] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7471] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7471] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7472] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7471] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7471] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7471] exit_group(0)               = ?
[pid  7473] <... futex resumed>)        = ?
[pid  7472] <... futex resumed>)        = ?
[pid  7473] +++ exited with 0 +++
[pid  7472] +++ exited with 0 +++
[pid  7471] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2389, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./796", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./796", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./796/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./796/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./796/binderfs")    = 0
[pid  5067] umount2("./796/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./796/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./796/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./796/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./796/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./796/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./796")              = 0
[pid  5067] mkdir("./797", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2392
./strace-static-x86_64: Process 7474 attached
[pid  7474] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7474] chdir("./797")              = 0
[pid  7474] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7474] setpgid(0, 0)               = 0
[pid  7474] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7474] write(3, "1000", 4)         = 4
[pid  7474] close(3)                    = 0
[pid  7474] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7474] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7474] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7474] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7474] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7475 attached
, parent_tid=[2393], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2393
[pid  7475] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7475] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7474] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7475] <... futex resumed>)        = 0
[pid  7474] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7475] memfd_create("syzkaller", 0) = 3
[pid  7475] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7475] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7475] munmap(0x7ff042e09000, 2097152) = 0
[pid  7475] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7475] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7475] close(3)                    = 0
[pid  7475] mkdir("./file0", 0777)      = 0
[pid  7475] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7475] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7475] chdir("./file0")            = 0
[pid  7475] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7475] close(4)                    = 0
[pid  7475] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7474] <... futex resumed>)        = 0
[pid  7474] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7475] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7474] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7474] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7474] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7474] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7476 attached
 <unfinished ...>
[pid  7476] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7474] <... clone resumed>, parent_tid=[2394], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2394
[pid  7476] <... set_robust_list resumed>) = 0
[pid  7474] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7476] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7474] <... futex resumed>)        = 0
[pid  7474] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7475] <... mkdirat resumed>)      = 0
[pid  7476] <... chdir resumed>)        = 0
[pid  7475] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7476] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7475] <... futex resumed>)        = 0
[pid  7476] <... futex resumed>)        = 1
[pid  7474] <... futex resumed>)        = 0
[pid  7475] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7476] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7474] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7475] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7475] creat("./file0", 0406 <unfinished ...>
[pid  7474] <... futex resumed>)        = 0
[pid  7474] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7475] <... creat resumed>)        = 4
[pid  7475] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7475] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7474] <... futex resumed>)        = 0
[pid  7474] close(3)                    = 0
[pid  7474] close(4)                    = 0
[pid  7474] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7474] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7474] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7474] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7474] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7474] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(22)                   = -1 EBADF (Bad file descriptor)
[  178.822950][ T7475] loop0: detected capacity change from 0 to 4096
[pid  7474] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7474] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7474] exit_group(0 <unfinished ...>
[pid  7476] <... futex resumed>)        = ?
[pid  7475] <... futex resumed>)        = ?
[pid  7474] <... exit_group resumed>)   = ?
[pid  7476] +++ exited with 0 +++
[pid  7475] +++ exited with 0 +++
[pid  7474] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2392, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./797", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./797", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./797/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./797/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./797/binderfs")    = 0
[pid  5067] umount2("./797/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./797/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./797/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./797/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./797/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./797/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./797")              = 0
[pid  5067] mkdir("./798", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2395
./strace-static-x86_64: Process 7477 attached
[pid  7477] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7477] chdir("./798")              = 0
[pid  7477] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7477] setpgid(0, 0)               = 0
[pid  7477] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7477] write(3, "1000", 4)         = 4
[pid  7477] close(3)                    = 0
[pid  7477] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7477] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7477] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7477] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7477] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7478 attached
 <unfinished ...>
[pid  7478] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7478] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7477] <... clone resumed>, parent_tid=[2396], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2396
[pid  7477] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7477] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7478] <... futex resumed>)        = 0
[pid  7478] memfd_create("syzkaller", 0) = 3
[pid  7478] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7478] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7478] munmap(0x7ff042e09000, 2097152) = 0
[pid  7478] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7478] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7478] close(3)                    = 0
[pid  7478] mkdir("./file0", 0777)      = 0
[pid  7478] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7478] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7478] chdir("./file0")            = 0
[pid  7478] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7478] close(4)                    = 0
[pid  7478] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7477] <... futex resumed>)        = 0
[pid  7477] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7477] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7477] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7477] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7477] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2397], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2397
[pid  7477] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7477] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7478] <... futex resumed>)        = 1
[pid  7478] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7479 attached
 <unfinished ...>
[pid  7479] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7478] <... mkdirat resumed>)      = 0
[pid  7478] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7478] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7479] <... set_robust_list resumed>) = 0
[pid  7479] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7479] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7477] <... futex resumed>)        = 0
[pid  7477] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7477] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7478] <... futex resumed>)        = 0
[pid  7478] creat("./file0", 0406 <unfinished ...>
[pid  7479] <... futex resumed>)        = 1
[  178.987400][ T7478] loop0: detected capacity change from 0 to 4096
[pid  7479] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7478] <... creat resumed>)        = 4
[pid  7478] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7477] <... futex resumed>)        = 0
[pid  7477] close(3)                    = 0
[pid  7477] close(4)                    = 0
[pid  7477] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7477] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7477] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7477] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7477] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7477] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(18 <unfinished ...>
[pid  7478] <... futex resumed>)        = 1
[pid  7477] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7477] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(22 <unfinished ...>
[pid  7478] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7477] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7477] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7477] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7477] exit_group(0 <unfinished ...>
[pid  7479] <... futex resumed>)        = ?
[pid  7477] <... exit_group resumed>)   = ?
[pid  7479] +++ exited with 0 +++
[pid  7478] <... futex resumed>)        = ?
[pid  7478] +++ exited with 0 +++
[pid  7477] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2395, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./798", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./798", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./798/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./798/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./798/binderfs")    = 0
[pid  5067] umount2("./798/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./798/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./798/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./798/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./798/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./798/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./798")              = 0
[pid  5067] mkdir("./799", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2398
./strace-static-x86_64: Process 7480 attached
[pid  7480] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7480] chdir("./799")              = 0
[pid  7480] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7480] setpgid(0, 0)               = 0
[pid  7480] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7480] write(3, "1000", 4)         = 4
[pid  7480] close(3)                    = 0
[pid  7480] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7480] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7480] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7480] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7480] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2399], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2399
[pid  7480] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7480] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7481 attached
 <unfinished ...>
[pid  7481] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7481] memfd_create("syzkaller", 0) = 3
[pid  7481] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7481] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7481] munmap(0x7ff042e09000, 2097152) = 0
[pid  7481] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7481] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7481] close(3)                    = 0
[pid  7481] mkdir("./file0", 0777)      = 0
[pid  7481] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7481] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7481] chdir("./file0")            = 0
[pid  7481] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7481] close(4)                    = 0
[pid  7481] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7481] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7480] <... futex resumed>)        = 0
[pid  7480] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7480] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7480] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7481] <... futex resumed>)        = 0
[pid  7480] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7481] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7480] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7480] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2400], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2400
[pid  7480] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7480] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7482 attached
 <unfinished ...>
[pid  7482] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7482] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7482] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7480] <... futex resumed>)        = 0
[pid  7480] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7480] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7482] <... futex resumed>)        = 1
[pid  7482] creat("./file0", 0406 <unfinished ...>
[pid  7481] <... mkdirat resumed>)      = 0
[pid  7481] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7481] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7482] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7482] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7480] <... futex resumed>)        = 0
[pid  7480] close(3)                    = 0
[pid  7480] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7480] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7480] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7480] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7480] close(8 <unfinished ...>
[pid  7482] <... futex resumed>)        = 1
[pid  7480] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7482] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7480] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7480] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(20)                   = -1 EBADF (Bad file descriptor)
[  179.142996][ T7481] loop0: detected capacity change from 0 to 4096
[pid  7480] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7480] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7480] exit_group(0 <unfinished ...>
[pid  7482] <... futex resumed>)        = ?
[pid  7481] <... futex resumed>)        = ?
[pid  7480] <... exit_group resumed>)   = ?
[pid  7482] +++ exited with 0 +++
[pid  7481] +++ exited with 0 +++
[pid  7480] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2398, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./799", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./799", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./799/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./799/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./799/binderfs")    = 0
[pid  5067] umount2("./799/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./799/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./799/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./799/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./799/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./799/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./799")              = 0
[pid  5067] mkdir("./800", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2401
./strace-static-x86_64: Process 7483 attached
[pid  7483] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7483] chdir("./800")              = 0
[pid  7483] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7483] setpgid(0, 0)               = 0
[pid  7483] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7483] write(3, "1000", 4)         = 4
[pid  7483] close(3)                    = 0
[pid  7483] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7483] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7483] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7483] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7483] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2402], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2402
[pid  7483] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7483] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7484 attached
 <unfinished ...>
[pid  7484] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7484] memfd_create("syzkaller", 0) = 3
[pid  7484] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7484] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7484] munmap(0x7ff042e09000, 2097152) = 0
[pid  7484] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7484] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7484] close(3)                    = 0
[pid  7484] mkdir("./file0", 0777)      = 0
[pid  7484] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7484] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7484] chdir("./file0")            = 0
[pid  7484] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7484] close(4)                    = 0
[pid  7484] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7483] <... futex resumed>)        = 0
[pid  7483] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7483] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7483] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7483] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7483] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2403], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2403
[pid  7483] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7483] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7484] <... futex resumed>)        = 1
[pid  7484] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7485 attached
 <unfinished ...>
[pid  7485] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7485] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7484] <... mkdirat resumed>)      = 0
[pid  7485] <... chdir resumed>)        = 0
[pid  7485] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7483] <... futex resumed>)        = 0
[pid  7485] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7484] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7484] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7483] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7483] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7484] <... futex resumed>)        = 0
[pid  7484] creat("./file0", 0406)      = 4
[pid  7484] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7483] <... futex resumed>)        = 0
[pid  7484] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7483] close(3)                    = 0
[pid  7483] close(4)                    = 0
[pid  7483] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7483] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7483] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7483] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7483] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7483] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7483] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7483] exit_group(0 <unfinished ...>
[pid  7484] <... futex resumed>)        = ?
[pid  7485] <... futex resumed>)        = ?
[pid  7483] <... exit_group resumed>)   = ?
[pid  7484] +++ exited with 0 +++
[pid  7485] +++ exited with 0 +++
[pid  7483] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2401, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./800", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./800", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[  179.293814][ T7484] loop0: detected capacity change from 0 to 4096
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./800/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./800/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./800/binderfs")    = 0
[pid  5067] umount2("./800/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./800/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./800/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./800/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./800/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./800/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./800")              = 0
[pid  5067] mkdir("./801", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2404
./strace-static-x86_64: Process 7486 attached
[pid  7486] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7486] chdir("./801")              = 0
[pid  7486] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7486] setpgid(0, 0)               = 0
[pid  7486] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7486] write(3, "1000", 4)         = 4
[pid  7486] close(3)                    = 0
[pid  7486] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7486] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7486] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7486] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7486] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7487 attached
 <unfinished ...>
[pid  7487] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7486] <... clone resumed>, parent_tid=[2405], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2405
[pid  7487] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7486] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7487] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7486] <... futex resumed>)        = 0
[pid  7486] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7487] memfd_create("syzkaller", 0) = 3
[pid  7487] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7487] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7487] munmap(0x7ff042e09000, 2097152) = 0
[pid  7487] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7487] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7487] close(3)                    = 0
[pid  7487] mkdir("./file0", 0777)      = 0
[pid  7487] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7487] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7487] chdir("./file0")            = 0
[pid  7487] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7487] close(4)                    = 0
[pid  7487] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7486] <... futex resumed>)        = 0
[pid  7487] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7486] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7487] <... futex resumed>)        = 0
[pid  7486] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7486] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7487] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7486] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7486] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7486] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2406], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2406
./strace-static-x86_64: Process 7488 attached
[pid  7486] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7488] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7486] <... futex resumed>)        = 0
[pid  7488] <... set_robust_list resumed>) = 0
[pid  7486] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7487] <... mkdirat resumed>)      = 0
[pid  7487] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7487] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7488] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7488] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7488] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7486] <... futex resumed>)        = 0
[pid  7486] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7487] <... futex resumed>)        = 0
[pid  7487] creat("./file0", 0406 <unfinished ...>
[pid  7486] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7487] <... creat resumed>)        = 4
[pid  7487] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7487] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7486] <... futex resumed>)        = 0
[pid  7486] close(3)                    = 0
[pid  7486] close(4)                    = 0
[pid  7486] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7486] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7486] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7486] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7486] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7486] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7486] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7486] exit_group(0 <unfinished ...>
[pid  7488] <... futex resumed>)        = ?
[pid  7487] <... futex resumed>)        = ?
[pid  7486] <... exit_group resumed>)   = ?
[  179.426684][ T7487] loop0: detected capacity change from 0 to 4096
[pid  7488] +++ exited with 0 +++
[pid  7487] +++ exited with 0 +++
[pid  7486] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2404, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./801", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./801", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./801/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./801/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./801/binderfs")    = 0
[pid  5067] umount2("./801/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./801/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./801/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./801/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./801/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./801/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./801")              = 0
[pid  5067] mkdir("./802", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2407
./strace-static-x86_64: Process 7489 attached
[pid  7489] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7489] chdir("./802")              = 0
[pid  7489] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7489] setpgid(0, 0)               = 0
[pid  7489] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7489] write(3, "1000", 4)         = 4
[pid  7489] close(3)                    = 0
[pid  7489] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7489] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7489] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7489] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7489] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7490 attached
, parent_tid=[2408], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2408
[pid  7489] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7489] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7490] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7490] memfd_create("syzkaller", 0) = 3
[pid  7490] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7490] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7490] munmap(0x7ff042e09000, 2097152) = 0
[pid  7490] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7490] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7490] close(3)                    = 0
[pid  7490] mkdir("./file0", 0777)      = 0
[pid  7490] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7490] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7490] chdir("./file0")            = 0
[pid  7490] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7490] close(4)                    = 0
[pid  7490] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7490] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7489] <... futex resumed>)        = 0
[pid  7489] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7489] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7489] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7490] <... futex resumed>)        = 0
[pid  7489] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7490] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7489] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7489] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2409], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2409
[pid  7489] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7489] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7490] <... mkdirat resumed>)      = 0
[pid  7490] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7490] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7491 attached
 <unfinished ...>
[pid  7491] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7491] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7491] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7489] <... futex resumed>)        = 0
[pid  7489] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7491] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7489] <... futex resumed>)        = 1
[pid  7490] <... futex resumed>)        = 0
[pid  7490] creat("./file0", 0406)      = 4
[pid  7490] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[  179.583621][ T7490] loop0: detected capacity change from 0 to 4096
[pid  7490] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7489] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable)
[pid  7489] close(3)                    = 0
[pid  7489] close(4)                    = 0
[pid  7489] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7489] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7489] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7489] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7489] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7489] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7489] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7489] exit_group(0)               = ?
[pid  7490] <... futex resumed>)        = ?
[pid  7491] <... futex resumed>)        = ?
[pid  7490] +++ exited with 0 +++
[pid  7491] +++ exited with 0 +++
[pid  7489] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2407, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./802", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./802", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./802/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./802/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./802/binderfs")    = 0
[pid  5067] umount2("./802/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./802/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./802/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./802/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./802/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./802/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./802")              = 0
[pid  5067] mkdir("./803", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2410
./strace-static-x86_64: Process 7492 attached
[pid  7492] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7492] chdir("./803")              = 0
[pid  7492] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7492] setpgid(0, 0)               = 0
[pid  7492] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7492] write(3, "1000", 4)         = 4
[pid  7492] close(3)                    = 0
[pid  7492] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7492] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7492] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7492] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7492] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7493 attached
, parent_tid=[2411], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2411
[pid  7492] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7492] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7493] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7493] memfd_create("syzkaller", 0) = 3
[pid  7493] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7493] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7493] munmap(0x7ff042e09000, 2097152) = 0
[pid  7493] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7493] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7493] close(3)                    = 0
[pid  7493] mkdir("./file0", 0777)      = 0
[pid  7493] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7493] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7493] chdir("./file0")            = 0
[pid  7493] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7493] close(4)                    = 0
[pid  7493] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7493] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7492] <... futex resumed>)        = 0
[pid  7492] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7492] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7492] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7492] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7492] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2412], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2412
./strace-static-x86_64: Process 7494 attached
[pid  7492] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7494] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7492] <... futex resumed>)        = 0
[pid  7494] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7492] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7493] <... futex resumed>)        = 0
[pid  7493] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7494] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7494] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7492] <... futex resumed>)        = 0
[pid  7492] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7492] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7493] <... mkdirat resumed>)      = 0
[pid  7494] creat("./file0", 0406 <unfinished ...>
[pid  7493] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7493] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7494] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7494] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7492] <... futex resumed>)        = 0
[pid  7494] <... futex resumed>)        = 1
[pid  7492] close(3 <unfinished ...>
[  179.730428][ T7493] loop0: detected capacity change from 0 to 4096
[pid  7494] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7492] <... close resumed>)        = 0
[pid  7492] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7492] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7492] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7492] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7492] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7492] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7492] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7492] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7492] exit_group(0 <unfinished ...>
[pid  7494] <... futex resumed>)        = ?
[pid  7493] <... futex resumed>)        = ?
[pid  7492] <... exit_group resumed>)   = ?
[pid  7494] +++ exited with 0 +++
[pid  7493] +++ exited with 0 +++
[pid  7492] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2410, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./803", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./803", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./803/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./803/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./803/binderfs")    = 0
[pid  5067] umount2("./803/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./803/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./803/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./803/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./803/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./803/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./803")              = 0
[pid  5067] mkdir("./804", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2413
./strace-static-x86_64: Process 7495 attached
[pid  7495] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7495] chdir("./804")              = 0
[pid  7495] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7495] setpgid(0, 0)               = 0
[pid  7495] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7495] write(3, "1000", 4)         = 4
[pid  7495] close(3)                    = 0
[pid  7495] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7495] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7495] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7495] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7495] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2414], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2414
[pid  7495] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7495] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7496 attached
 <unfinished ...>
[pid  7496] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7496] memfd_create("syzkaller", 0) = 3
[pid  7496] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7496] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7496] munmap(0x7ff042e09000, 2097152) = 0
[pid  7496] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7496] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7496] close(3)                    = 0
[pid  7496] mkdir("./file0", 0777)      = 0
[pid  7496] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7496] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7496] chdir("./file0")            = 0
[pid  7496] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7496] close(4)                    = 0
[pid  7496] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7495] <... futex resumed>)        = 0
[pid  7496] <... futex resumed>)        = 1
[pid  7495] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7496] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7495] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7495] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7495] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7495] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7497 attached
, parent_tid=[2415], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2415
[pid  7497] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7495] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7497] <... set_robust_list resumed>) = 0
[pid  7497] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7495] <... futex resumed>)        = 0
[pid  7495] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7496] <... mkdirat resumed>)      = 0
[pid  7496] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7497] <... chdir resumed>)        = 0
[pid  7496] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7497] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7495] <... futex resumed>)        = 0
[pid  7497] <... futex resumed>)        = 1
[pid  7495] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7497] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7496] <... futex resumed>)        = 0
[pid  7495] <... futex resumed>)        = 1
[pid  7496] creat("./file0", 0406 <unfinished ...>
[pid  7495] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7496] <... creat resumed>)        = 4
[pid  7496] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7495] <... futex resumed>)        = 0
[pid  7495] close(3 <unfinished ...>
[pid  7496] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7495] <... close resumed>)        = 0
[pid  7495] close(4)                    = 0
[pid  7495] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7495] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7495] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7495] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7495] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7495] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(11)                   = -1 EBADF (Bad file descriptor)
[  179.878562][ T7496] loop0: detected capacity change from 0 to 4096
[pid  7495] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7495] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7495] exit_group(0 <unfinished ...>
[pid  7497] <... futex resumed>)        = ?
[pid  7496] <... futex resumed>)        = ?
[pid  7495] <... exit_group resumed>)   = ?
[pid  7497] +++ exited with 0 +++
[pid  7496] +++ exited with 0 +++
[pid  7495] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2413, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./804", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./804", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./804/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./804/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./804/binderfs")    = 0
[pid  5067] umount2("./804/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./804/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./804/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./804/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./804/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./804/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./804")              = 0
[pid  5067] mkdir("./805", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2416
./strace-static-x86_64: Process 7498 attached
[pid  7498] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7498] chdir("./805")              = 0
[pid  7498] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7498] setpgid(0, 0)               = 0
[pid  7498] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7498] write(3, "1000", 4)         = 4
[pid  7498] close(3)                    = 0
[pid  7498] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7498] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7498] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7498] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7498] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7499 attached
, parent_tid=[2417], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2417
[pid  7498] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7499] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7498] <... futex resumed>)        = 0
[pid  7498] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7499] <... set_robust_list resumed>) = 0
[pid  7499] memfd_create("syzkaller", 0) = 3
[pid  7499] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7499] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7499] munmap(0x7ff042e09000, 2097152) = 0
[pid  7499] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7499] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7499] close(3)                    = 0
[pid  7499] mkdir("./file0", 0777)      = 0
[pid  7499] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7499] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7499] chdir("./file0")            = 0
[pid  7499] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7499] close(4)                    = 0
[pid  7499] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7498] <... futex resumed>)        = 0
[pid  7498] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7498] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7498] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7498] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7498] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2418], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2418
[pid  7498] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7498] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7499] <... futex resumed>)        = 1
[pid  7499] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7500 attached
 <unfinished ...>
[pid  7500] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7500] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7499] <... mkdirat resumed>)      = 0
[pid  7499] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7499] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7500] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7498] <... futex resumed>)        = 0
[pid  7498] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7498] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7499] <... futex resumed>)        = 0
[pid  7499] creat("./file0", 0406 <unfinished ...>
[pid  7500] <... futex resumed>)        = 1
[pid  7499] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7499] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7498] <... futex resumed>)        = 0
[pid  7498] close(3)                    = 0
[pid  7498] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7498] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7498] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7498] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7498] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7499] <... futex resumed>)        = 1
[pid  7498] close(9 <unfinished ...>
[pid  7499] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7498] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7498] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7500] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7498] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7498] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7498] exit_group(0 <unfinished ...>
[pid  7500] <... futex resumed>)        = ?
[pid  7499] <... futex resumed>)        = ?
[pid  7498] <... exit_group resumed>)   = ?
[pid  7500] +++ exited with 0 +++
[pid  7499] +++ exited with 0 +++
[pid  7498] +++ exited with 0 +++
[  180.031561][ T7499] loop0: detected capacity change from 0 to 4096
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2416, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./805", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./805", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./805/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./805/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./805/binderfs")    = 0
[pid  5067] umount2("./805/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./805/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./805/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./805/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./805/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./805/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./805")              = 0
[pid  5067] mkdir("./806", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2419
./strace-static-x86_64: Process 7501 attached
[pid  7501] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7501] chdir("./806")              = 0
[pid  7501] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7501] setpgid(0, 0)               = 0
[pid  7501] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7501] write(3, "1000", 4)         = 4
[pid  7501] close(3)                    = 0
[pid  7501] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7501] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7501] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7501] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7501] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2420], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2420
[pid  7501] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7501] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7502 attached
 <unfinished ...>
[pid  7502] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7502] memfd_create("syzkaller", 0) = 3
[pid  7502] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7502] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7502] munmap(0x7ff042e09000, 2097152) = 0
[pid  7502] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7502] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7502] close(3)                    = 0
[pid  7502] mkdir("./file0", 0777)      = 0
[pid  7502] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7502] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7502] chdir("./file0")            = 0
[pid  7502] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7502] close(4)                    = 0
[pid  7502] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7502] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7501] <... futex resumed>)        = 0
[pid  7501] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7501] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7501] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7501] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7502] <... futex resumed>)        = 0
[pid  7501] <... mprotect resumed>)     = 0
[pid  7501] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2421], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2421
[pid  7501] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7501] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7502] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7503 attached
 <unfinished ...>
[pid  7503] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7502] <... mkdirat resumed>)      = 0
[pid  7503] <... set_robust_list resumed>) = 0
[pid  7503] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7503] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7502] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7501] <... futex resumed>)        = 0
[pid  7501] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7501] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7503] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7501] <... futex resumed>)        = 0
[pid  7501] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=49000000} <unfinished ...>
[pid  7502] <... futex resumed>)        = 1
[pid  7502] creat("./file0", 0406)      = 4
[pid  7502] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7501] <... futex resumed>)        = 0
[pid  7501] close(3)                    = 0
[pid  7501] close(4)                    = 0
[pid  7501] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7501] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7501] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7501] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7501] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7501] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(13 <unfinished ...>
[pid  7502] <... futex resumed>)        = 1
[pid  7501] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7502] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7501] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(22)                   = -1 EBADF (Bad file descriptor)
[  180.170298][ T7502] loop0: detected capacity change from 0 to 4096
[pid  7501] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7501] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7501] exit_group(0 <unfinished ...>
[pid  7503] <... futex resumed>)        = ?
[pid  7502] <... futex resumed>)        = ?
[pid  7501] <... exit_group resumed>)   = ?
[pid  7503] +++ exited with 0 +++
[pid  7502] +++ exited with 0 +++
[pid  7501] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2419, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./806", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./806", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./806/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./806/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./806/binderfs")    = 0
[pid  5067] umount2("./806/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./806/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./806/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./806/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./806/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./806/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./806")              = 0
[pid  5067] mkdir("./807", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2422
./strace-static-x86_64: Process 7504 attached
[pid  7504] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7504] chdir("./807")              = 0
[pid  7504] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7504] setpgid(0, 0)               = 0
[pid  7504] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7504] write(3, "1000", 4)         = 4
[pid  7504] close(3)                    = 0
[pid  7504] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7504] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7504] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7504] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7504] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7505 attached
, parent_tid=[2423], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2423
[pid  7504] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7504] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7505] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7505] memfd_create("syzkaller", 0) = 3
[pid  7505] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7505] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7505] munmap(0x7ff042e09000, 2097152) = 0
[pid  7505] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7505] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7505] close(3)                    = 0
[pid  7505] mkdir("./file0", 0777)      = 0
[pid  7505] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7505] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7505] chdir("./file0")            = 0
[pid  7505] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7505] close(4)                    = 0
[pid  7505] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7504] <... futex resumed>)        = 0
[pid  7504] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7504] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7505] <... futex resumed>)        = 1
[pid  7504] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7505] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7504] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7504] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7504] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2424], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2424
[pid  7504] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7504] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7505] <... mkdirat resumed>)      = 0
[pid  7505] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7505] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7506 attached
 <unfinished ...>
[pid  7506] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7506] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7506] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7504] <... futex resumed>)        = 0
[pid  7506] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7504] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7505] <... futex resumed>)        = 0
[pid  7504] <... futex resumed>)        = 1
[pid  7505] creat("./file0", 0406 <unfinished ...>
[pid  7504] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7505] <... creat resumed>)        = 4
[pid  7505] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7504] <... futex resumed>)        = 0
[pid  7505] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7504] close(3)                    = 0
[pid  7504] close(4)                    = 0
[pid  7504] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7504] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7504] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7504] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7504] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7504] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(15)                   = -1 EBADF (Bad file descriptor)
[  180.314866][ T7505] loop0: detected capacity change from 0 to 4096
[pid  7504] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7504] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7504] exit_group(0 <unfinished ...>
[pid  7506] <... futex resumed>)        = ?
[pid  7505] <... futex resumed>)        = ?
[pid  7504] <... exit_group resumed>)   = ?
[pid  7506] +++ exited with 0 +++
[pid  7505] +++ exited with 0 +++
[pid  7504] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2422, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=1 /* 0.01 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./807", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./807", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./807/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./807/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./807/binderfs")    = 0
[pid  5067] umount2("./807/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./807/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./807/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./807/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./807/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./807/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./807")              = 0
[pid  5067] mkdir("./808", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2425
./strace-static-x86_64: Process 7507 attached
[pid  7507] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7507] chdir("./808")              = 0
[pid  7507] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7507] setpgid(0, 0)               = 0
[pid  7507] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7507] write(3, "1000", 4)         = 4
[pid  7507] close(3)                    = 0
[pid  7507] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7507] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7507] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7507] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7507] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7508 attached
, parent_tid=[2426], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2426
[pid  7507] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7507] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7508] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7508] memfd_create("syzkaller", 0) = 3
[pid  7508] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7508] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7508] munmap(0x7ff042e09000, 2097152) = 0
[pid  7508] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7508] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7508] close(3)                    = 0
[pid  7508] mkdir("./file0", 0777)      = 0
[pid  7508] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7508] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7508] chdir("./file0")            = 0
[pid  7508] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7508] close(4)                    = 0
[pid  7508] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7507] <... futex resumed>)        = 0
[pid  7507] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7507] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7507] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7507] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7507] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2427], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2427
[pid  7507] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7507] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7508] <... futex resumed>)        = 1
[pid  7508] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7509 attached
 <unfinished ...>
[pid  7509] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7509] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7508] <... mkdirat resumed>)      = 0
[pid  7508] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7508] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7509] <... chdir resumed>)        = 0
[pid  7509] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7507] <... futex resumed>)        = 0
[pid  7507] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7508] <... futex resumed>)        = 0
[pid  7507] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7508] creat("./file0", 0406 <unfinished ...>
[pid  7509] <... futex resumed>)        = 1
[pid  7509] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7508] <... creat resumed>)        = 4
[pid  7508] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7507] <... futex resumed>)        = 0
[pid  7508] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7507] close(3)                    = 0
[pid  7507] close(4)                    = 0
[pid  7507] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7507] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7507] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7507] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7507] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7507] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(21)                   = -1 EBADF (Bad file descriptor)
[  180.473735][ T7508] loop0: detected capacity change from 0 to 4096
[pid  7507] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7507] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7507] exit_group(0 <unfinished ...>
[pid  7509] <... futex resumed>)        = ?
[pid  7508] <... futex resumed>)        = ?
[pid  7507] <... exit_group resumed>)   = ?
[pid  7509] +++ exited with 0 +++
[pid  7508] +++ exited with 0 +++
[pid  7507] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2425, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./808", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./808", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./808/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./808/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./808/binderfs")    = 0
[pid  5067] umount2("./808/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./808/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./808/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./808/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./808/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./808/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./808")              = 0
[pid  5067] mkdir("./809", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7510 attached
, child_tidptr=0x5555570e75d0) = 2428
[pid  7510] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7510] chdir("./809")              = 0
[pid  7510] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7510] setpgid(0, 0)               = 0
[pid  7510] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7510] write(3, "1000", 4)         = 4
[pid  7510] close(3)                    = 0
[pid  7510] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7510] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7510] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7510] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7510] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7511 attached
 <unfinished ...>
[pid  7511] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7511] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7510] <... clone resumed>, parent_tid=[2429], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2429
[pid  7510] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7511] <... futex resumed>)        = 0
[pid  7510] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7511] memfd_create("syzkaller", 0) = 3
[pid  7511] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7511] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7511] munmap(0x7ff042e09000, 2097152) = 0
[pid  7511] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7511] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7511] close(3)                    = 0
[pid  7511] mkdir("./file0", 0777)      = 0
[pid  7511] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7511] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7511] chdir("./file0")            = 0
[pid  7511] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7511] close(4)                    = 0
[pid  7511] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7510] <... futex resumed>)        = 0
[pid  7510] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7510] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7510] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7511] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7510] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7510] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2430], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2430
[pid  7510] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7510] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7512 attached
 <unfinished ...>
[pid  7512] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7512] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7511] <... mkdirat resumed>)      = 0
[pid  7512] <... chdir resumed>)        = 0
[pid  7512] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7510] <... futex resumed>)        = 0
[pid  7510] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7510] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7512] <... futex resumed>)        = 1
[pid  7512] creat("./file0", 0406 <unfinished ...>
[  180.628912][ T7511] loop0: detected capacity change from 0 to 4096
[pid  7511] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7512] <... creat resumed>)        = 4
[pid  7511] <... futex resumed>)        = 0
[pid  7511] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7512] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7510] <... futex resumed>)        = 0
[pid  7512] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7510] close(3)                    = 0
[pid  7510] close(4)                    = 0
[pid  7510] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7510] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7510] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7510] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7510] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7510] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7510] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7510] exit_group(0 <unfinished ...>
[pid  7512] <... futex resumed>)        = ?
[pid  7511] <... futex resumed>)        = ?
[pid  7510] <... exit_group resumed>)   = ?
[pid  7512] +++ exited with 0 +++
[pid  7511] +++ exited with 0 +++
[pid  7510] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2428, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./809", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./809", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./809/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./809/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./809/binderfs")    = 0
[pid  5067] umount2("./809/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./809/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./809/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./809/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./809/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./809/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./809")              = 0
[pid  5067] mkdir("./810", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2431
./strace-static-x86_64: Process 7513 attached
[pid  7513] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7513] chdir("./810")              = 0
[pid  7513] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7513] setpgid(0, 0)               = 0
[pid  7513] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7513] write(3, "1000", 4)         = 4
[pid  7513] close(3)                    = 0
[pid  7513] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7513] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7513] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7513] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7513] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2432], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2432
[pid  7513] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7513] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7514 attached
 <unfinished ...>
[pid  7514] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7514] memfd_create("syzkaller", 0) = 3
[pid  7514] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7514] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7514] munmap(0x7ff042e09000, 2097152) = 0
[pid  7514] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7514] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7514] close(3)                    = 0
[pid  7514] mkdir("./file0", 0777)      = 0
[pid  7514] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7514] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7514] chdir("./file0")            = 0
[pid  7514] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7514] close(4)                    = 0
[pid  7514] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7513] <... futex resumed>)        = 0
[pid  7513] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7513] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7513] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7513] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7513] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2433], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2433
[pid  7513] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7513] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7515 attached
 <unfinished ...>
[pid  7515] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7514] <... futex resumed>)        = 1
[pid  7515] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7514] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7515] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7515] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7513] <... futex resumed>)        = 0
[pid  7513] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7513] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7515] creat("./file0", 0406 <unfinished ...>
[pid  7514] <... mkdirat resumed>)      = 0
[pid  7515] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7514] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7514] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[  180.787078][ T7514] loop0: detected capacity change from 0 to 4096
[pid  7515] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7513] <... futex resumed>)        = 0
[pid  7513] close(3)                    = 0
[pid  7513] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7513] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7513] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7513] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7513] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7513] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7513] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(14 <unfinished ...>
[pid  7515] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7513] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7513] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7513] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7513] exit_group(0 <unfinished ...>
[pid  7515] <... futex resumed>)        = ?
[pid  7514] <... futex resumed>)        = ?
[pid  7513] <... exit_group resumed>)   = ?
[pid  7515] +++ exited with 0 +++
[pid  7514] +++ exited with 0 +++
[pid  7513] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2431, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./810", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./810", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./810/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./810/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./810/binderfs")    = 0
[pid  5067] umount2("./810/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./810/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./810/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./810/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./810/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./810/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./810")              = 0
[pid  5067] mkdir("./811", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2434
./strace-static-x86_64: Process 7516 attached
[pid  7516] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7516] chdir("./811")              = 0
[pid  7516] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7516] setpgid(0, 0)               = 0
[pid  7516] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7516] write(3, "1000", 4)         = 4
[pid  7516] close(3)                    = 0
[pid  7516] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7516] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7516] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7516] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7516] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2435], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2435
[pid  7516] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7516] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7517 attached
 <unfinished ...>
[pid  7517] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7517] memfd_create("syzkaller", 0) = 3
[pid  7517] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7517] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7517] munmap(0x7ff042e09000, 2097152) = 0
[pid  7517] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7517] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7517] close(3)                    = 0
[pid  7517] mkdir("./file0", 0777)      = 0
[pid  7517] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7517] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7517] chdir("./file0")            = 0
[pid  7517] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7517] close(4)                    = 0
[pid  7517] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7516] <... futex resumed>)        = 0
[pid  7516] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7516] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7516] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7516] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7516] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2436], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2436
[pid  7517] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7516] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7516] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7518 attached
 <unfinished ...>
[pid  7518] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7518] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7518] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7516] <... futex resumed>)        = 0
[pid  7518] <... futex resumed>)        = 1
[pid  7516] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7518] creat("./file0", 0406 <unfinished ...>
[pid  7516] <... futex resumed>)        = 0
[pid  7518] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7517] <... mkdirat resumed>)      = 0
[pid  7516] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7517] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7518] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7517] <... futex resumed>)        = 0
[pid  7518] <... futex resumed>)        = 1
[pid  7517] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7516] <... futex resumed>)        = 0
[pid  7518] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7516] close(3)                    = 0
[pid  7516] close(4)                    = -1 EBADF (Bad file descriptor)
[  180.936929][ T7517] loop0: detected capacity change from 0 to 4096
[pid  7516] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7516] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7516] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7516] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7516] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7516] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7516] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7516] exit_group(0 <unfinished ...>
[pid  7517] <... futex resumed>)        = ?
[pid  7518] <... futex resumed>)        = ?
[pid  7516] <... exit_group resumed>)   = ?
[pid  7517] +++ exited with 0 +++
[pid  7518] +++ exited with 0 +++
[pid  7516] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2434, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./811", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./811", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./811/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./811/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./811/binderfs")    = 0
[pid  5067] umount2("./811/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./811/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./811/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./811/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./811/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./811/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./811")              = 0
[pid  5067] mkdir("./812", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2437
./strace-static-x86_64: Process 7519 attached
[pid  7519] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7519] chdir("./812")              = 0
[pid  7519] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7519] setpgid(0, 0)               = 0
[pid  7519] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7519] write(3, "1000", 4)         = 4
[pid  7519] close(3)                    = 0
[pid  7519] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7519] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7519] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7519] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7519] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7520 attached
 <unfinished ...>
[pid  7520] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7520] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7519] <... clone resumed>, parent_tid=[2438], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2438
[pid  7519] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7520] <... futex resumed>)        = 0
[pid  7519] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7520] memfd_create("syzkaller", 0) = 3
[pid  7520] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7520] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7520] munmap(0x7ff042e09000, 2097152) = 0
[pid  7520] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7520] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7520] close(3)                    = 0
[pid  7520] mkdir("./file0", 0777)      = 0
[pid  7520] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7520] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7520] chdir("./file0")            = 0
[pid  7520] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7520] close(4)                    = 0
[pid  7520] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7519] <... futex resumed>)        = 0
[pid  7520] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7519] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7519] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7519] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7519] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7519] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2439], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2439
[pid  7519] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7520] <... mkdirat resumed>)      = 0
[pid  7519] <... futex resumed>)        = 0
[pid  7519] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7520] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7520] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7521 attached
 <unfinished ...>
[pid  7521] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7521] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7521] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7519] <... futex resumed>)        = 0
[pid  7519] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7520] <... futex resumed>)        = 0
[pid  7519] <... futex resumed>)        = 1
[pid  7520] creat("./file0", 0406 <unfinished ...>
[pid  7519] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7521] <... futex resumed>)        = 1
[pid  7521] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7520] <... creat resumed>)        = 4
[pid  7520] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7519] <... futex resumed>)        = 0
[pid  7520] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7519] close(3)                    = 0
[pid  7519] close(4)                    = 0
[pid  7519] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7519] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7519] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7519] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7519] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7519] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7519] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7519] exit_group(0 <unfinished ...>
[pid  7521] <... futex resumed>)        = ?
[pid  7520] <... futex resumed>)        = ?
[pid  7519] <... exit_group resumed>)   = ?
[pid  7521] +++ exited with 0 +++
[pid  7520] +++ exited with 0 +++
[pid  7519] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2437, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./812", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./812", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./812/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./812/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./812/binderfs")    = 0
[  181.094249][ T7520] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./812/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./812/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./812/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./812/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./812/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./812/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./812")              = 0
[pid  5067] mkdir("./813", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2440
./strace-static-x86_64: Process 7522 attached
[pid  7522] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7522] chdir("./813")              = 0
[pid  7522] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7522] setpgid(0, 0)               = 0
[pid  7522] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7522] write(3, "1000", 4)         = 4
[pid  7522] close(3)                    = 0
[pid  7522] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7522] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7522] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7522] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7522] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7523 attached
, parent_tid=[2441], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2441
[pid  7522] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7522] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7523] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7523] memfd_create("syzkaller", 0) = 3
[pid  7523] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7523] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7523] munmap(0x7ff042e09000, 2097152) = 0
[pid  7523] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7523] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7523] close(3)                    = 0
[pid  7523] mkdir("./file0", 0777)      = 0
[pid  7523] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7523] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7523] chdir("./file0")            = 0
[pid  7523] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7523] close(4)                    = 0
[pid  7523] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7523] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7522] <... futex resumed>)        = 0
[pid  7522] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7523] <... futex resumed>)        = 0
[pid  7522] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7523] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7522] <... futex resumed>)        = 0
[pid  7522] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7522] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7522] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2442], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2442
[pid  7522] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7522] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7523] <... mkdirat resumed>)      = 0
./strace-static-x86_64: Process 7524 attached
[pid  7523] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7524] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7523] <... futex resumed>)        = 0
[pid  7524] <... set_robust_list resumed>) = 0
[pid  7524] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7523] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7524] <... chdir resumed>)        = 0
[pid  7524] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7522] <... futex resumed>)        = 0
[pid  7522] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7522] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7524] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7523] <... futex resumed>)        = 0
[pid  7523] creat("./file0", 0406)      = 4
[pid  7523] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7522] <... futex resumed>)        = 0
[pid  7522] close(3)                    = 0
[pid  7522] close(4)                    = 0
[pid  7522] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7522] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7522] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7523] <... futex resumed>)        = 1
[pid  7522] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7522] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7522] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(11)                   = -1 EBADF (Bad file descriptor)
[  181.240708][ T7523] loop0: detected capacity change from 0 to 4096
[pid  7522] close(12 <unfinished ...>
[pid  7523] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7522] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7522] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7522] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7522] exit_group(0 <unfinished ...>
[pid  7524] <... futex resumed>)        = ?
[pid  7523] <... futex resumed>)        = ?
[pid  7522] <... exit_group resumed>)   = ?
[pid  7524] +++ exited with 0 +++
[pid  7523] +++ exited with 0 +++
[pid  7522] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2440, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./813", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./813", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./813/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./813/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./813/binderfs")    = 0
[pid  5067] umount2("./813/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./813/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./813/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./813/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./813/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./813/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./813")              = 0
[pid  5067] mkdir("./814", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2443
./strace-static-x86_64: Process 7525 attached
[pid  7525] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7525] chdir("./814")              = 0
[pid  7525] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7525] setpgid(0, 0)               = 0
[pid  7525] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7525] write(3, "1000", 4)         = 4
[pid  7525] close(3)                    = 0
[pid  7525] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7525] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7525] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7525] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7525] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2444], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2444
[pid  7525] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7525] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7526 attached
 <unfinished ...>
[pid  7526] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7526] memfd_create("syzkaller", 0) = 3
[pid  7526] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7526] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7526] munmap(0x7ff042e09000, 2097152) = 0
[pid  7526] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7526] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7526] close(3)                    = 0
[pid  7526] mkdir("./file0", 0777)      = 0
[pid  7526] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7526] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7526] chdir("./file0")            = 0
[pid  7526] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7526] close(4)                    = 0
[pid  7526] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7525] <... futex resumed>)        = 0
[pid  7525] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7525] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7525] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7525] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7525] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2445], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2445
[pid  7525] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7525] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7526] <... futex resumed>)        = 1
[pid  7526] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7527 attached
 <unfinished ...>
[pid  7527] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7527] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7526] <... mkdirat resumed>)      = 0
[pid  7526] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7526] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7527] <... chdir resumed>)        = 0
[pid  7527] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7525] <... futex resumed>)        = 0
[pid  7525] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7526] <... futex resumed>)        = 0
[pid  7526] creat("./file0", 0406 <unfinished ...>
[pid  7525] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7527] <... futex resumed>)        = 1
[pid  7527] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7526] <... creat resumed>)        = 4
[pid  7526] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7525] <... futex resumed>)        = 0
[pid  7525] close(3)                    = 0
[pid  7525] close(4)                    = 0
[pid  7525] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7525] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7525] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7525] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7525] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7525] close(10)                   = -1 EBADF (Bad file descriptor)
[  181.379941][ T7526] loop0: detected capacity change from 0 to 4096
[pid  7526] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7525] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7525] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7525] exit_group(0 <unfinished ...>
[pid  7527] <... futex resumed>)        = ?
[pid  7525] <... exit_group resumed>)   = ?
[pid  7527] +++ exited with 0 +++
[pid  7526] <... futex resumed>)        = ?
[pid  7526] +++ exited with 0 +++
[pid  7525] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2443, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./814", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./814", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./814/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./814/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./814/binderfs")    = 0
[pid  5067] umount2("./814/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./814/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./814/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./814/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./814/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./814/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./814")              = 0
[pid  5067] mkdir("./815", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2446
./strace-static-x86_64: Process 7528 attached
[pid  7528] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7528] chdir("./815")              = 0
[pid  7528] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7528] setpgid(0, 0)               = 0
[pid  7528] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7528] write(3, "1000", 4)         = 4
[pid  7528] close(3)                    = 0
[pid  7528] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7528] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7528] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7528] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7528] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2447], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2447
[pid  7528] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7528] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7529 attached
 <unfinished ...>
[pid  7529] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7529] memfd_create("syzkaller", 0) = 3
[pid  7529] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7529] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7529] munmap(0x7ff042e09000, 2097152) = 0
[pid  7529] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7529] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7529] close(3)                    = 0
[pid  7529] mkdir("./file0", 0777)      = 0
[pid  7529] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7529] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7529] chdir("./file0")            = 0
[pid  7529] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7529] close(4)                    = 0
[pid  7529] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7528] <... futex resumed>)        = 0
[pid  7528] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7528] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7528] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7528] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7528] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2448], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2448
[pid  7528] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7528] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7529] <... futex resumed>)        = 1
[pid  7529] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7530 attached
 <unfinished ...>
[pid  7530] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7529] <... mkdirat resumed>)      = 0
[pid  7529] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7529] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7530] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7530] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7528] <... futex resumed>)        = 0
[pid  7528] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7529] <... futex resumed>)        = 0
[pid  7528] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7529] creat("./file0", 0406 <unfinished ...>
[pid  7530] <... futex resumed>)        = 1
[pid  7530] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7529] <... creat resumed>)        = 4
[pid  7529] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7528] <... futex resumed>)        = 0
[pid  7528] close(3)                    = 0
[pid  7528] close(4)                    = 0
[pid  7528] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7528] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7528] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7528] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7528] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7528] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7529] <... futex resumed>)        = 1
[pid  7528] close(22 <unfinished ...>
[pid  7529] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7528] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7528] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(24)                   = -1 EBADF (Bad file descriptor)
[  181.529852][ T7529] loop0: detected capacity change from 0 to 4096
[pid  7528] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7528] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7528] exit_group(0 <unfinished ...>
[pid  7530] <... futex resumed>)        = ?
[pid  7529] <... futex resumed>)        = ?
[pid  7528] <... exit_group resumed>)   = ?
[pid  7530] +++ exited with 0 +++
[pid  7529] +++ exited with 0 +++
[pid  7528] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2446, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./815", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./815", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./815/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./815/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./815/binderfs")    = 0
[pid  5067] umount2("./815/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./815/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./815/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./815/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./815/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./815/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./815")              = 0
[pid  5067] mkdir("./816", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2449
./strace-static-x86_64: Process 7531 attached
[pid  7531] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7531] chdir("./816")              = 0
[pid  7531] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7531] setpgid(0, 0)               = 0
[pid  7531] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7531] write(3, "1000", 4)         = 4
[pid  7531] close(3)                    = 0
[pid  7531] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7531] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7531] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7531] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7531] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7532 attached
, parent_tid=[2450], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2450
[pid  7532] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7532] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7531] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7532] <... futex resumed>)        = 0
[pid  7531] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7532] memfd_create("syzkaller", 0) = 3
[pid  7532] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7532] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7532] munmap(0x7ff042e09000, 2097152) = 0
[pid  7532] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7532] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7532] close(3)                    = 0
[pid  7532] mkdir("./file0", 0777)      = 0
[pid  7532] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7532] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7532] chdir("./file0")            = 0
[pid  7532] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7532] close(4)                    = 0
[pid  7532] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7531] <... futex resumed>)        = 0
[pid  7531] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7531] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7531] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7531] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7531] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7533 attached
, parent_tid=[2451], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2451
[pid  7533] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7531] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7533] <... set_robust_list resumed>) = 0
[pid  7531] <... futex resumed>)        = 0
[pid  7533] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7531] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7532] <... futex resumed>)        = 1
[pid  7533] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7533] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7531] <... futex resumed>)        = 0
[pid  7531] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7533] creat("./file0", 0406 <unfinished ...>
[pid  7531] <... futex resumed>)        = 0
[pid  7531] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7532] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7533] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7533] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7531] <... futex resumed>)        = 0
[pid  7532] <... mkdirat resumed>)      = 0
[pid  7532] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7532] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7531] close(3)                    = 0
[pid  7531] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7531] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7531] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7531] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7531] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7531] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7531] close(10 <unfinished ...>
[pid  7533] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7531] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7531] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(18)                   = -1 EBADF (Bad file descriptor)
[  181.680216][ T7532] loop0: detected capacity change from 0 to 4096
[pid  7531] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7531] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7531] exit_group(0 <unfinished ...>
[pid  7533] <... futex resumed>)        = ?
[pid  7532] <... futex resumed>)        = ?
[pid  7531] <... exit_group resumed>)   = ?
[pid  7533] +++ exited with 0 +++
[pid  7532] +++ exited with 0 +++
[pid  7531] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2449, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./816", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./816", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./816/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./816/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./816/binderfs")    = 0
[pid  5067] umount2("./816/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./816/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./816/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./816/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./816/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./816/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./816")              = 0
[pid  5067] mkdir("./817", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2452
./strace-static-x86_64: Process 7534 attached
[pid  7534] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7534] chdir("./817")              = 0
[pid  7534] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7534] setpgid(0, 0)               = 0
[pid  7534] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7534] write(3, "1000", 4)         = 4
[pid  7534] close(3)                    = 0
[pid  7534] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7534] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7534] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7534] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7534] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2453], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2453
./strace-static-x86_64: Process 7535 attached
[pid  7534] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7534] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7535] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7535] memfd_create("syzkaller", 0) = 3
[pid  7535] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7535] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7535] munmap(0x7ff042e09000, 2097152) = 0
[pid  7535] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7535] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7535] close(3)                    = 0
[pid  7535] mkdir("./file0", 0777)      = 0
[pid  7535] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7535] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7535] chdir("./file0")            = 0
[pid  7535] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7535] close(4)                    = 0
[pid  7535] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7534] <... futex resumed>)        = 0
[pid  7534] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7534] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7534] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7534] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7535] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7534] <... mprotect resumed>)     = 0
[pid  7534] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2454], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2454
[pid  7534] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7534] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7536 attached
 <unfinished ...>
[pid  7536] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7536] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7535] <... mkdirat resumed>)      = 0
[pid  7536] <... chdir resumed>)        = 0
[pid  7536] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7534] <... futex resumed>)        = 0
[pid  7534] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7534] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7535] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7536] <... futex resumed>)        = 1
[pid  7535] <... futex resumed>)        = 0
[pid  7536] creat("./file0", 0406 <unfinished ...>
[  181.830611][ T7535] loop0: detected capacity change from 0 to 4096
[pid  7535] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7536] <... creat resumed>)        = 4
[pid  7536] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7536] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7534] <... futex resumed>)        = 0
[pid  7534] close(3)                    = 0
[pid  7534] close(4)                    = 0
[pid  7534] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7534] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7534] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7534] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7534] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7534] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7534] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7534] exit_group(0 <unfinished ...>
[pid  7535] <... futex resumed>)        = ?
[pid  7536] <... futex resumed>)        = ?
[pid  7534] <... exit_group resumed>)   = ?
[pid  7535] +++ exited with 0 +++
[pid  7536] +++ exited with 0 +++
[pid  7534] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2452, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./817", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./817", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./817/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./817/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./817/binderfs")    = 0
[pid  5067] umount2("./817/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./817/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./817/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./817/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./817/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./817/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./817")              = 0
[pid  5067] mkdir("./818", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2455
./strace-static-x86_64: Process 7537 attached
[pid  7537] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7537] chdir("./818")              = 0
[pid  7537] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7537] setpgid(0, 0)               = 0
[pid  7537] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7537] write(3, "1000", 4)         = 4
[pid  7537] close(3)                    = 0
[pid  7537] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7537] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7537] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7537] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7537] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7538 attached
 <unfinished ...>
[pid  7538] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7537] <... clone resumed>, parent_tid=[2456], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2456
[pid  7538] <... set_robust_list resumed>) = 0
[pid  7538] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)
[pid  7537] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7537] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7538] memfd_create("syzkaller", 0) = 3
[pid  7538] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7538] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7538] munmap(0x7ff042e09000, 2097152) = 0
[pid  7538] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7538] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7538] close(3)                    = 0
[pid  7538] mkdir("./file0", 0777)      = 0
[pid  7538] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7538] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7538] chdir("./file0")            = 0
[pid  7538] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7538] close(4)                    = 0
[pid  7538] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7538] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7537] <... futex resumed>)        = 0
[pid  7537] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7538] <... futex resumed>)        = 0
[pid  7537] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7538] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7537] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7537] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7538] <... mkdirat resumed>)      = 0
[pid  7538] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7538] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7537] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7539 attached
 <unfinished ...>
[pid  7539] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7537] <... clone resumed>, parent_tid=[2457], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2457
[pid  7539] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7537] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7539] <... futex resumed>)        = 0
[pid  7537] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7539] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7539] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7537] <... futex resumed>)        = 0
[pid  7539] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7537] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7538] <... futex resumed>)        = 0
[pid  7537] <... futex resumed>)        = 1
[pid  7538] creat("./file0", 0406 <unfinished ...>
[pid  7537] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7538] <... creat resumed>)        = 4
[pid  7538] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7537] <... futex resumed>)        = 0
[pid  7537] close(3)                    = 0
[pid  7538] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7537] close(4)                    = 0
[pid  7537] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7537] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7537] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7537] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7537] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7537] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(19)                   = -1 EBADF (Bad file descriptor)
[  181.983445][ T7538] loop0: detected capacity change from 0 to 4096
[pid  7537] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7537] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7537] exit_group(0 <unfinished ...>
[pid  7539] <... futex resumed>)        = ?
[pid  7538] <... futex resumed>)        = ?
[pid  7537] <... exit_group resumed>)   = ?
[pid  7539] +++ exited with 0 +++
[pid  7538] +++ exited with 0 +++
[pid  7537] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2455, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./818", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./818", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./818/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./818/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./818/binderfs")    = 0
[pid  5067] umount2("./818/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./818/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./818/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./818/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./818/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./818/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./818")              = 0
[pid  5067] mkdir("./819", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2458
./strace-static-x86_64: Process 7540 attached
[pid  7540] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7540] chdir("./819")              = 0
[pid  7540] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7540] setpgid(0, 0)               = 0
[pid  7540] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7540] write(3, "1000", 4)         = 4
[pid  7540] close(3)                    = 0
[pid  7540] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7540] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7540] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7540] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7540] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2459], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2459
[pid  7540] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7540] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7541 attached
 <unfinished ...>
[pid  7541] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7541] memfd_create("syzkaller", 0) = 3
[pid  7541] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7541] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7541] munmap(0x7ff042e09000, 2097152) = 0
[pid  7541] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7541] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7541] close(3)                    = 0
[pid  7541] mkdir("./file0", 0777)      = 0
[pid  7541] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7541] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7541] chdir("./file0")            = 0
[pid  7541] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7541] close(4)                    = 0
[pid  7541] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7540] <... futex resumed>)        = 0
[pid  7540] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7540] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7540] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7540] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7540] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2460], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2460
[pid  7540] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7540] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7541] <... futex resumed>)        = 1
[pid  7541] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7541] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7541] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7542 attached
 <unfinished ...>
[pid  7542] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7542] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7542] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7540] <... futex resumed>)        = 0
[pid  7540] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7540] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7541] <... futex resumed>)        = 0
[pid  7541] creat("./file0", 0406)      = 4
[pid  7541] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7540] <... futex resumed>)        = 0
[pid  7540] close(3)                    = 0
[pid  7540] close(4)                    = 0
[pid  7540] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7540] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7540] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7540] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7540] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7540] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7541] <... futex resumed>)        = 1
[pid  7540] close(20 <unfinished ...>
[pid  7541] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7540] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7540] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7540] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7540] exit_group(0 <unfinished ...>
[pid  7541] <... futex resumed>)        = ?
[pid  7540] <... exit_group resumed>)   = ?
[pid  7541] +++ exited with 0 +++
[pid  7542] <... futex resumed>)        = ?
[pid  7542] +++ exited with 0 +++
[pid  7540] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2458, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./819", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./819", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./819/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./819/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./819/binderfs")    = 0
[  182.126005][ T7541] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./819/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./819/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./819/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./819/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./819/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./819/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./819")              = 0
[pid  5067] mkdir("./820", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2461
./strace-static-x86_64: Process 7543 attached
[pid  7543] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7543] chdir("./820")              = 0
[pid  7543] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7543] setpgid(0, 0)               = 0
[pid  7543] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7543] write(3, "1000", 4)         = 4
[pid  7543] close(3)                    = 0
[pid  7543] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7543] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7543] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7543] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7543] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7544 attached
 <unfinished ...>
[pid  7544] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7544] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7543] <... clone resumed>, parent_tid=[2462], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2462
[pid  7543] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7544] <... futex resumed>)        = 0
[pid  7543] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7544] memfd_create("syzkaller", 0) = 3
[pid  7544] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7544] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7544] munmap(0x7ff042e09000, 2097152) = 0
[pid  7544] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7544] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7544] close(3)                    = 0
[pid  7544] mkdir("./file0", 0777)      = 0
[pid  7544] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7544] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7544] chdir("./file0")            = 0
[pid  7544] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7544] close(4)                    = 0
[pid  7544] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7543] <... futex resumed>)        = 0
[pid  7543] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7543] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7543] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7543] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7543] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2463], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2463
[pid  7543] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7543] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7544] <... futex resumed>)        = 1
[pid  7544] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7544] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7544] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7545 attached
 <unfinished ...>
[pid  7545] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7545] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7545] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7543] <... futex resumed>)        = 0
[pid  7543] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7543] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7544] <... futex resumed>)        = 0
[pid  7544] creat("./file0", 0406 <unfinished ...>
[pid  7545] <... futex resumed>)        = 1
[pid  7545] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7544] <... creat resumed>)        = 4
[pid  7544] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7543] <... futex resumed>)        = 0
[pid  7543] close(3)                    = 0
[pid  7543] close(4)                    = 0
[pid  7543] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7543] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7543] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7543] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7543] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7543] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7544] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7543] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7543] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7543] exit_group(0 <unfinished ...>
[pid  7545] <... futex resumed>)        = ?
[pid  7544] <... futex resumed>)        = ?
[pid  7543] <... exit_group resumed>)   = ?
[pid  7545] +++ exited with 0 +++
[pid  7544] +++ exited with 0 +++
[pid  7543] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2461, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[  182.265099][ T7544] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./820", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./820", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./820/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./820/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./820/binderfs")    = 0
[pid  5067] umount2("./820/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./820/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./820/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./820/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./820/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./820/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./820")              = 0
[pid  5067] mkdir("./821", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2464
./strace-static-x86_64: Process 7546 attached
[pid  7546] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7546] chdir("./821")              = 0
[pid  7546] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7546] setpgid(0, 0)               = 0
[pid  7546] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7546] write(3, "1000", 4)         = 4
[pid  7546] close(3)                    = 0
[pid  7546] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7546] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7546] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7546] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7546] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7547 attached
, parent_tid=[2465], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2465
[pid  7546] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7547] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7546] <... futex resumed>)        = 0
[pid  7546] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7547] <... set_robust_list resumed>) = 0
[pid  7547] memfd_create("syzkaller", 0) = 3
[pid  7547] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7547] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7547] munmap(0x7ff042e09000, 2097152) = 0
[pid  7547] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7547] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7547] close(3)                    = 0
[pid  7547] mkdir("./file0", 0777)      = 0
[pid  7547] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7547] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7547] chdir("./file0")            = 0
[pid  7547] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7547] close(4)                    = 0
[pid  7547] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7546] <... futex resumed>)        = 0
[pid  7546] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7546] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7546] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7547] <... futex resumed>)        = 1
[pid  7546] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7547] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7546] <... mprotect resumed>)     = 0
[pid  7546] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2466], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2466
./strace-static-x86_64: Process 7548 attached
[pid  7546] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7548] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7546] <... futex resumed>)        = 0
[pid  7546] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7548] <... set_robust_list resumed>) = 0
[pid  7547] <... mkdirat resumed>)      = 0
[pid  7548] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7547] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7548] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7547] <... futex resumed>)        = 0
[pid  7548] <... futex resumed>)        = 1
[pid  7547] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7546] <... futex resumed>)        = 0
[pid  7548] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7547] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7546] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7547] creat("./file0", 0406 <unfinished ...>
[pid  7546] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7547] <... creat resumed>)        = 4
[pid  7547] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7546] <... futex resumed>)        = 0
[pid  7547] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7546] close(3)                    = 0
[pid  7546] close(4)                    = 0
[pid  7546] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7546] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7546] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7546] close(8)                    = -1 EBADF (Bad file descriptor)
[  182.410363][ T7547] loop0: detected capacity change from 0 to 4096
[pid  7546] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7546] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7546] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7546] exit_group(0 <unfinished ...>
[pid  7548] <... futex resumed>)        = ?
[pid  7547] <... futex resumed>)        = ?
[pid  7546] <... exit_group resumed>)   = ?
[pid  7548] +++ exited with 0 +++
[pid  7547] +++ exited with 0 +++
[pid  7546] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2464, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./821", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./821", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./821/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./821/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./821/binderfs")    = 0
[pid  5067] umount2("./821/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./821/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./821/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./821/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./821/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./821/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./821")              = 0
[pid  5067] mkdir("./822", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2467
./strace-static-x86_64: Process 7549 attached
[pid  7549] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7549] chdir("./822")              = 0
[pid  7549] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7549] setpgid(0, 0)               = 0
[pid  7549] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7549] write(3, "1000", 4)         = 4
[pid  7549] close(3)                    = 0
[pid  7549] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7549] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7549] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7549] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7549] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2468], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2468
[pid  7549] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7549] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7550 attached
 <unfinished ...>
[pid  7550] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7550] memfd_create("syzkaller", 0) = 3
[pid  7550] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7550] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7550] munmap(0x7ff042e09000, 2097152) = 0
[pid  7550] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7550] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7550] close(3)                    = 0
[pid  7550] mkdir("./file0", 0777)      = 0
[pid  7550] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7550] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7550] chdir("./file0")            = 0
[pid  7550] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7550] close(4)                    = 0
[pid  7550] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7549] <... futex resumed>)        = 0
[pid  7550] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7549] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7550] <... futex resumed>)        = 0
[pid  7549] <... futex resumed>)        = 1
[pid  7550] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7549] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7549] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7549] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7549] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2469], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2469
[pid  7549] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7549] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7551 attached
 <unfinished ...>
[pid  7551] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7551] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7551] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7549] <... futex resumed>)        = 0
[pid  7550] <... mkdirat resumed>)      = 0
[pid  7549] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7549] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7551] <... futex resumed>)        = 1
[pid  7550] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7551] creat("./file0", 0406 <unfinished ...>
[pid  7550] <... futex resumed>)        = 0
[pid  7551] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7551] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7549] <... futex resumed>)        = 0
[pid  7549] close(3)                    = 0
[pid  7549] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7549] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7549] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7549] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7549] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7549] close(9 <unfinished ...>
[pid  7550] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7549] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7549] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(11 <unfinished ...>
[pid  7551] <... futex resumed>)        = 1
[pid  7549] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7551] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7549] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(24)                   = -1 EBADF (Bad file descriptor)
[  182.556388][ T7550] loop0: detected capacity change from 0 to 4096
[pid  7549] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7549] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7549] exit_group(0 <unfinished ...>
[pid  7551] <... futex resumed>)        = ?
[pid  7550] <... futex resumed>)        = ?
[pid  7549] <... exit_group resumed>)   = ?
[pid  7551] +++ exited with 0 +++
[pid  7550] +++ exited with 0 +++
[pid  7549] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2467, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./822", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./822", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./822/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./822/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./822/binderfs")    = 0
[pid  5067] umount2("./822/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./822/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./822/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./822/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./822/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./822/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./822")              = 0
[pid  5067] mkdir("./823", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2470
./strace-static-x86_64: Process 7552 attached
[pid  7552] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7552] chdir("./823")              = 0
[pid  7552] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7552] setpgid(0, 0)               = 0
[pid  7552] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7552] write(3, "1000", 4)         = 4
[pid  7552] close(3)                    = 0
[pid  7552] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7552] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7552] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7552] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7552] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7553 attached
, parent_tid=[2471], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2471
[pid  7553] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7552] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7552] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7553] <... set_robust_list resumed>) = 0
[pid  7553] memfd_create("syzkaller", 0) = 3
[pid  7553] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7553] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7553] munmap(0x7ff042e09000, 2097152) = 0
[pid  7553] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7553] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7553] close(3)                    = 0
[pid  7553] mkdir("./file0", 0777)      = 0
[pid  7553] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7553] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7553] chdir("./file0")            = 0
[pid  7553] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7553] close(4)                    = 0
[pid  7553] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7552] <... futex resumed>)        = 0
[pid  7552] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7552] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7552] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7552] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7552] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2472], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2472
[pid  7552] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7552] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7553] <... futex resumed>)        = 1
[pid  7553] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7553] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7553] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7554 attached
 <unfinished ...>
[pid  7554] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7554] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7554] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7552] <... futex resumed>)        = 0
[pid  7552] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7552] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7553] <... futex resumed>)        = 0
[pid  7553] creat("./file0", 0406 <unfinished ...>
[pid  7554] <... futex resumed>)        = 1
[  182.713166][ T7553] loop0: detected capacity change from 0 to 4096
[pid  7553] <... creat resumed>)        = 4
[pid  7553] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7552] <... futex resumed>)        = 0
[pid  7552] close(3)                    = 0
[pid  7552] close(4)                    = 0
[pid  7552] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7552] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7552] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7552] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7552] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7552] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7554] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7552] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(17 <unfinished ...>
[pid  7553] <... futex resumed>)        = 1
[pid  7552] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7553] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7552] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7552] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7552] exit_group(0 <unfinished ...>
[pid  7554] <... futex resumed>)        = ?
[pid  7553] <... futex resumed>)        = ?
[pid  7552] <... exit_group resumed>)   = ?
[pid  7554] +++ exited with 0 +++
[pid  7553] +++ exited with 0 +++
[pid  7552] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2470, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./823", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./823", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./823/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./823/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./823/binderfs")    = 0
[pid  5067] umount2("./823/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./823/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./823/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./823/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./823/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./823/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./823")              = 0
[pid  5067] mkdir("./824", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2473
./strace-static-x86_64: Process 7555 attached
[pid  7555] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7555] chdir("./824")              = 0
[pid  7555] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7555] setpgid(0, 0)               = 0
[pid  7555] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7555] write(3, "1000", 4)         = 4
[pid  7555] close(3)                    = 0
[pid  7555] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7555] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7555] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7555] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7555] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7556 attached
, parent_tid=[2474], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2474
[pid  7555] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7555] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7556] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7556] memfd_create("syzkaller", 0) = 3
[pid  7556] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7556] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7556] munmap(0x7ff042e09000, 2097152) = 0
[pid  7556] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7556] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7556] close(3)                    = 0
[pid  7556] mkdir("./file0", 0777)      = 0
[pid  7556] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7556] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7556] chdir("./file0")            = 0
[pid  7556] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7556] close(4)                    = 0
[pid  7556] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7555] <... futex resumed>)        = 0
[pid  7555] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7555] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7555] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7555] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7555] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2475], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2475
[pid  7555] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7555] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7556] <... futex resumed>)        = 1
[pid  7556] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7557 attached
 <unfinished ...>
[pid  7557] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7557] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7556] <... mkdirat resumed>)      = 0
[pid  7557] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7555] <... futex resumed>)        = 0
[pid  7555] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7555] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7557] <... futex resumed>)        = 1
[pid  7557] creat("./file0", 0406 <unfinished ...>
[pid  7556] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7556] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7557] <... creat resumed>)        = 4
[pid  7557] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7555] <... futex resumed>)        = 0
[pid  7555] close(3)                    = 0
[pid  7555] close(4)                    = 0
[pid  7555] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7555] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7555] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7555] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7555] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7555] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7557] <... futex resumed>)        = 1
[pid  7555] close(14 <unfinished ...>
[pid  7557] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7555] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7555] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7555] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7555] exit_group(0 <unfinished ...>
[pid  7557] <... futex resumed>)        = ?
[pid  7556] <... futex resumed>)        = ?
[pid  7555] <... exit_group resumed>)   = ?
[pid  7557] +++ exited with 0 +++
[pid  7556] +++ exited with 0 +++
[pid  7555] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2473, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./824", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./824", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./824/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./824/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[  182.863147][ T7556] loop0: detected capacity change from 0 to 4096
[pid  5067] unlink("./824/binderfs")    = 0
[pid  5067] umount2("./824/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./824/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./824/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./824/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./824/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./824/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./824")              = 0
[pid  5067] mkdir("./825", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2476
./strace-static-x86_64: Process 7558 attached
[pid  7558] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7558] chdir("./825")              = 0
[pid  7558] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7558] setpgid(0, 0)               = 0
[pid  7558] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7558] write(3, "1000", 4)         = 4
[pid  7558] close(3)                    = 0
[pid  7558] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7558] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7558] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7558] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7558] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2477], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2477
[pid  7558] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7559 attached
[pid  7558] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7559] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7559] memfd_create("syzkaller", 0) = 3
[pid  7559] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7559] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7559] munmap(0x7ff042e09000, 2097152) = 0
[pid  7559] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7559] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7559] close(3)                    = 0
[pid  7559] mkdir("./file0", 0777)      = 0
[pid  7559] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7559] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7559] chdir("./file0")            = 0
[pid  7559] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7559] close(4)                    = 0
[pid  7559] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7559] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7558] <... futex resumed>)        = 0
[pid  7558] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7558] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7558] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7558] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7558] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2478], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2478
[pid  7558] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7558] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7560 attached
 <unfinished ...>
[pid  7560] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7560] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7559] <... futex resumed>)        = 0
[pid  7559] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7560] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7560] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7558] <... futex resumed>)        = 0
[pid  7560] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7559] <... mkdirat resumed>)      = 0
[pid  7558] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7560] <... futex resumed>)        = 0
[pid  7558] <... futex resumed>)        = 1
[pid  7560] creat("./file0", 0406 <unfinished ...>
[pid  7559] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7558] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7560] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7560] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7559] <... futex resumed>)        = 0
[pid  7558] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[  183.008354][ T7559] loop0: detected capacity change from 0 to 4096
[pid  7560] <... futex resumed>)        = 0
[pid  7560] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7559] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7558] close(3)                    = 0
[pid  7558] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7558] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7558] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7558] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7558] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7558] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7558] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7558] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7558] exit_group(0 <unfinished ...>
[pid  7560] <... futex resumed>)        = ?
[pid  7559] <... futex resumed>)        = ?
[pid  7558] <... exit_group resumed>)   = ?
[pid  7560] +++ exited with 0 +++
[pid  7559] +++ exited with 0 +++
[pid  7558] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2476, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./825", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./825", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./825/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./825/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./825/binderfs")    = 0
[pid  5067] umount2("./825/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./825/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./825/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./825/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./825/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./825/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./825")              = 0
[pid  5067] mkdir("./826", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2479
./strace-static-x86_64: Process 7561 attached
[pid  7561] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7561] chdir("./826")              = 0
[pid  7561] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7561] setpgid(0, 0)               = 0
[pid  7561] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7561] write(3, "1000", 4)         = 4
[pid  7561] close(3)                    = 0
[pid  7561] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7561] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7561] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7561] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7561] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2480], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2480
[pid  7561] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7561] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7562 attached
 <unfinished ...>
[pid  7562] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7562] memfd_create("syzkaller", 0) = 3
[pid  7562] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7562] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7562] munmap(0x7ff042e09000, 2097152) = 0
[pid  7562] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7562] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7562] close(3)                    = 0
[pid  7562] mkdir("./file0", 0777)      = 0
[pid  7562] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7562] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7562] chdir("./file0")            = 0
[pid  7562] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7562] close(4)                    = 0
[pid  7562] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7561] <... futex resumed>)        = 0
[pid  7561] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7561] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7561] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7561] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7561] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2481], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2481
[pid  7561] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7561] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7562] <... futex resumed>)        = 1
[pid  7562] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7562] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7562] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7563 attached
 <unfinished ...>
[pid  7563] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7563] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7563] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7561] <... futex resumed>)        = 0
[pid  7563] <... futex resumed>)        = 1
[pid  7561] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7561] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7563] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7562] <... futex resumed>)        = 0
[pid  7562] creat("./file0", 0406)      = 4
[pid  7562] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7561] <... futex resumed>)        = 0
[pid  7561] close(3)                    = 0
[pid  7561] close(4)                    = 0
[pid  7561] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7561] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7561] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7561] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7561] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7561] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(16 <unfinished ...>
[pid  7562] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7561] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7561] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7561] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7561] exit_group(0 <unfinished ...>
[pid  7563] <... futex resumed>)        = ?
[pid  7561] <... exit_group resumed>)   = ?
[pid  7563] +++ exited with 0 +++
[pid  7562] <... futex resumed>)        = ?
[pid  7562] +++ exited with 0 +++
[pid  7561] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2479, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./826", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./826", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./826/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./826/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./826/binderfs")    = 0
[  183.153808][ T7562] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./826/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./826/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./826/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./826/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./826/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./826/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./826")              = 0
[pid  5067] mkdir("./827", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2482
./strace-static-x86_64: Process 7564 attached
[pid  7564] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7564] chdir("./827")              = 0
[pid  7564] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7564] setpgid(0, 0)               = 0
[pid  7564] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7564] write(3, "1000", 4)         = 4
[pid  7564] close(3)                    = 0
[pid  7564] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7564] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7564] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7564] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7564] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2483], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2483
[pid  7564] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7564] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7565 attached
 <unfinished ...>
[pid  7565] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7565] memfd_create("syzkaller", 0) = 3
[pid  7565] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7565] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7565] munmap(0x7ff042e09000, 2097152) = 0
[pid  7565] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7565] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7565] close(3)                    = 0
[pid  7565] mkdir("./file0", 0777)      = 0
[pid  7565] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7565] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7565] chdir("./file0")            = 0
[pid  7565] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7565] close(4)                    = 0
[pid  7565] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7564] <... futex resumed>)        = 0
[pid  7564] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7564] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7564] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7564] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7564] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2484], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2484
[pid  7564] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7564] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7565] <... futex resumed>)        = 1
[pid  7565] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7566 attached
 <unfinished ...>
[pid  7566] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7566] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7565] <... mkdirat resumed>)      = 0
[pid  7565] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7565] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7566] <... chdir resumed>)        = 0
[pid  7566] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7564] <... futex resumed>)        = 0
[pid  7564] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7564] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7565] <... futex resumed>)        = 0
[pid  7565] creat("./file0", 0406 <unfinished ...>
[pid  7566] <... futex resumed>)        = 1
[pid  7566] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7565] <... creat resumed>)        = 4
[pid  7565] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7564] <... futex resumed>)        = 0
[pid  7565] <... futex resumed>)        = 1
[pid  7564] close(3)                    = 0
[pid  7565] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7564] close(4)                    = 0
[pid  7564] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7564] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7564] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7564] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7564] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7564] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(14)                   = -1 EBADF (Bad file descriptor)
[  183.281683][ T7565] loop0: detected capacity change from 0 to 4096
[pid  7564] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7564] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7564] exit_group(0 <unfinished ...>
[pid  7566] <... futex resumed>)        = ?
[pid  7565] <... futex resumed>)        = ?
[pid  7564] <... exit_group resumed>)   = ?
[pid  7566] +++ exited with 0 +++
[pid  7565] +++ exited with 0 +++
[pid  7564] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2482, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./827", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./827", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./827/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./827/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./827/binderfs")    = 0
[pid  5067] umount2("./827/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./827/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./827/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./827/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./827/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./827/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./827")              = 0
[pid  5067] mkdir("./828", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2485
./strace-static-x86_64: Process 7567 attached
[pid  7567] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7567] chdir("./828")              = 0
[pid  7567] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7567] setpgid(0, 0)               = 0
[pid  7567] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7567] write(3, "1000", 4)         = 4
[pid  7567] close(3)                    = 0
[pid  7567] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7567] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7567] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7567] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7567] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2486], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2486
[pid  7567] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7567] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7568 attached
 <unfinished ...>
[pid  7568] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7568] memfd_create("syzkaller", 0) = 3
[pid  7568] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7568] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7568] munmap(0x7ff042e09000, 2097152) = 0
[pid  7568] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7568] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7568] close(3)                    = 0
[pid  7568] mkdir("./file0", 0777)      = 0
[pid  7568] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7568] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7568] chdir("./file0")            = 0
[pid  7568] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7568] close(4)                    = 0
[pid  7568] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7567] <... futex resumed>)        = 0
[pid  7567] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7567] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7567] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7567] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7567] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2487], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2487
[pid  7567] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7567] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7568] <... futex resumed>)        = 1
[pid  7568] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7568] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7568] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7569 attached
 <unfinished ...>
[pid  7569] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7569] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7569] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7567] <... futex resumed>)        = 0
[pid  7567] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7567] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7568] <... futex resumed>)        = 0
[pid  7568] creat("./file0", 0406 <unfinished ...>
[pid  7569] <... futex resumed>)        = 1
[pid  7569] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7568] <... creat resumed>)        = 4
[pid  7568] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7567] <... futex resumed>)        = 0
[pid  7567] close(3)                    = 0
[pid  7567] close(4)                    = 0
[pid  7567] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7567] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7567] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7567] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7567] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7567] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(19 <unfinished ...>
[pid  7568] <... futex resumed>)        = 1
[pid  7567] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7568] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7567] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7567] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7567] exit_group(0 <unfinished ...>
[pid  7569] <... futex resumed>)        = ?
[pid  7567] <... exit_group resumed>)   = ?
[pid  7569] +++ exited with 0 +++
[pid  7568] <... futex resumed>)        = ?
[pid  7568] +++ exited with 0 +++
[pid  7567] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2485, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./828", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./828", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./828/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  183.421335][ T7568] loop0: detected capacity change from 0 to 4096
[pid  5067] lstat("./828/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./828/binderfs")    = 0
[pid  5067] umount2("./828/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./828/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./828/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./828/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./828/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./828/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./828")              = 0
[pid  5067] mkdir("./829", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2488
./strace-static-x86_64: Process 7570 attached
[pid  7570] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7570] chdir("./829")              = 0
[pid  7570] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7570] setpgid(0, 0)               = 0
[pid  7570] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7570] write(3, "1000", 4)         = 4
[pid  7570] close(3)                    = 0
[pid  7570] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7570] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7570] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7570] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7570] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7571 attached
 <unfinished ...>
[pid  7571] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7570] <... clone resumed>, parent_tid=[2489], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2489
[pid  7571] <... set_robust_list resumed>) = 0
[pid  7570] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7570] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7571] memfd_create("syzkaller", 0) = 3
[pid  7571] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7571] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7571] munmap(0x7ff042e09000, 2097152) = 0
[pid  7571] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7571] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7571] close(3)                    = 0
[pid  7571] mkdir("./file0", 0777)      = 0
[pid  7571] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7571] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7571] chdir("./file0")            = 0
[pid  7571] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7571] close(4)                    = 0
[pid  7571] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7570] <... futex resumed>)        = 0
[pid  7571] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7570] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7570] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7571] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7570] <... futex resumed>)        = 0
[pid  7571] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7570] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7570] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7570] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7571] <... mkdirat resumed>)      = 0
[pid  7570] <... clone resumed>, parent_tid=[2490], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2490
[pid  7571] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7572 attached
 <unfinished ...>
[pid  7570] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7572] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7570] <... futex resumed>)        = 0
[pid  7572] <... set_robust_list resumed>) = 0
[pid  7571] <... futex resumed>)        = 0
[pid  7570] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7572] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7571] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7572] <... chdir resumed>)        = 0
[pid  7572] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7570] <... futex resumed>)        = 0
[pid  7572] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7570] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7571] <... futex resumed>)        = 0
[pid  7570] <... futex resumed>)        = 1
[pid  7571] creat("./file0", 0406 <unfinished ...>
[  183.557224][ T7571] loop0: detected capacity change from 0 to 4096
[pid  7570] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7571] <... creat resumed>)        = 4
[pid  7571] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7570] <... futex resumed>)        = 0
[pid  7571] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7570] close(3)                    = 0
[pid  7570] close(4)                    = 0
[pid  7570] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7570] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7570] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7570] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7570] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7570] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7570] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7570] exit_group(0 <unfinished ...>
[pid  7572] <... futex resumed>)        = ?
[pid  7571] <... futex resumed>)        = ?
[pid  7570] <... exit_group resumed>)   = ?
[pid  7572] +++ exited with 0 +++
[pid  7571] +++ exited with 0 +++
[pid  7570] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2488, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./829", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./829", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./829/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./829/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./829/binderfs")    = 0
[pid  5067] umount2("./829/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./829/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./829/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./829/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./829/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./829/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./829")              = 0
[pid  5067] mkdir("./830", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2491
./strace-static-x86_64: Process 7573 attached
[pid  7573] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7573] chdir("./830")              = 0
[pid  7573] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7573] setpgid(0, 0)               = 0
[pid  7573] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7573] write(3, "1000", 4)         = 4
[pid  7573] close(3)                    = 0
[pid  7573] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7573] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7573] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7573] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7573] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2492], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2492
[pid  7573] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7573] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7574 attached
 <unfinished ...>
[pid  7574] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7574] memfd_create("syzkaller", 0) = 3
[pid  7574] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7574] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7574] munmap(0x7ff042e09000, 2097152) = 0
[pid  7574] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7574] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7574] close(3)                    = 0
[pid  7574] mkdir("./file0", 0777)      = 0
[pid  7574] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7574] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7574] chdir("./file0")            = 0
[pid  7574] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7574] close(4)                    = 0
[pid  7574] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7574] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7573] <... futex resumed>)        = 0
[pid  7573] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7573] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7573] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7573] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7573] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2493], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2493
[pid  7573] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7573] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7575 attached
 <unfinished ...>
[pid  7575] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7575] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7575] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7573] <... futex resumed>)        = 0
[pid  7575] <... futex resumed>)        = 1
[pid  7573] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7575] creat("./file0", 0406 <unfinished ...>
[pid  7574] <... futex resumed>)        = 0
[pid  7574] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7573] <... futex resumed>)        = 0
[pid  7573] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7575] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7575] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7573] <... futex resumed>)        = 0
[pid  7575] <... futex resumed>)        = 1
[pid  7575] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7574] <... mkdirat resumed>)      = 0
[pid  7574] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7573] close(3)                    = 0
[pid  7573] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7573] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7573] close(6)                    = -1 EBADF (Bad file descriptor)
[  183.712528][ T7574] loop0: detected capacity change from 0 to 4096
[pid  7573] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7573] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7573] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7573] close(10 <unfinished ...>
[pid  7574] <... futex resumed>)        = 0
[pid  7573] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7574] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7573] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7573] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7573] exit_group(0 <unfinished ...>
[pid  7574] <... futex resumed>)        = ?
[pid  7575] <... futex resumed>)        = ?
[pid  7573] <... exit_group resumed>)   = ?
[pid  7574] +++ exited with 0 +++
[pid  7575] +++ exited with 0 +++
[pid  7573] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2491, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./830", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./830", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./830/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./830/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./830/binderfs")    = 0
[pid  5067] umount2("./830/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./830/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./830/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./830/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./830/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./830/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./830")              = 0
[pid  5067] mkdir("./831", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2494
./strace-static-x86_64: Process 7576 attached
[pid  7576] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7576] chdir("./831")              = 0
[pid  7576] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7576] setpgid(0, 0)               = 0
[pid  7576] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7576] write(3, "1000", 4)         = 4
[pid  7576] close(3)                    = 0
[pid  7576] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7576] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7576] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7576] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7576] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7577 attached
, parent_tid=[2495], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2495
[pid  7577] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7576] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7577] <... set_robust_list resumed>) = 0
[pid  7576] <... futex resumed>)        = 0
[pid  7576] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7577] memfd_create("syzkaller", 0) = 3
[pid  7577] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7577] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7577] munmap(0x7ff042e09000, 2097152) = 0
[pid  7577] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7577] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7577] close(3)                    = 0
[pid  7577] mkdir("./file0", 0777)      = 0
[pid  7577] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7577] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7577] chdir("./file0")            = 0
[pid  7577] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7577] close(4)                    = 0
[pid  7577] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7576] <... futex resumed>)        = 0
[pid  7577] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7576] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7577] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7576] <... futex resumed>)        = 0
[pid  7577] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7576] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7577] <... mkdirat resumed>)      = 0
[pid  7576] <... futex resumed>)        = 0
[pid  7577] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7576] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7577] <... futex resumed>)        = 0
[pid  7576] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7577] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7576] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7576] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7578 attached
 <unfinished ...>
[pid  7578] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7576] <... clone resumed>, parent_tid=[2496], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2496
[pid  7578] <... set_robust_list resumed>) = 0
[pid  7576] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7578] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7576] <... futex resumed>)        = 0
[pid  7578] <... chdir resumed>)        = 0
[pid  7576] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7578] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7576] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7578] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7576] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7577] <... futex resumed>)        = 0
[pid  7576] <... futex resumed>)        = 1
[pid  7577] creat("./file0", 0406 <unfinished ...>
[pid  7576] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7577] <... creat resumed>)        = 4
[pid  7577] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7576] <... futex resumed>)        = 0
[pid  7577] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7576] close(3)                    = 0
[pid  7576] close(4)                    = 0
[pid  7576] close(5)                    = -1 EBADF (Bad file descriptor)
[  183.865156][ T7577] loop0: detected capacity change from 0 to 4096
[pid  7576] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7576] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7576] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7576] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7576] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7576] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7576] exit_group(0 <unfinished ...>
[pid  7578] <... futex resumed>)        = ?
[pid  7577] <... futex resumed>)        = ?
[pid  7576] <... exit_group resumed>)   = ?
[pid  7578] +++ exited with 0 +++
[pid  7577] +++ exited with 0 +++
[pid  7576] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2494, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./831", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./831", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./831/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./831/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./831/binderfs")    = 0
[pid  5067] umount2("./831/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./831/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./831/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./831/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./831/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./831/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./831")              = 0
[pid  5067] mkdir("./832", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2497
./strace-static-x86_64: Process 7579 attached
[pid  7579] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7579] chdir("./832")              = 0
[pid  7579] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7579] setpgid(0, 0)               = 0
[pid  7579] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7579] write(3, "1000", 4)         = 4
[pid  7579] close(3)                    = 0
[pid  7579] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7579] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7579] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7579] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7579] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2498], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2498
[pid  7579] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7579] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7580 attached
 <unfinished ...>
[pid  7580] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7580] memfd_create("syzkaller", 0) = 3
[pid  7580] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7580] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7580] munmap(0x7ff042e09000, 2097152) = 0
[pid  7580] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7580] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7580] close(3)                    = 0
[pid  7580] mkdir("./file0", 0777)      = 0
[pid  7580] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7580] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7580] chdir("./file0")            = 0
[pid  7580] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7580] close(4)                    = 0
[pid  7580] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7579] <... futex resumed>)        = 0
[pid  7579] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7579] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7579] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7579] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7579] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2499], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2499
[pid  7579] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7579] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7580] <... futex resumed>)        = 1
./strace-static-x86_64: Process 7581 attached
[pid  7580] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7581] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7580] <... mkdirat resumed>)      = 0
[pid  7580] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7581] <... set_robust_list resumed>) = 0
[pid  7580] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7581] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7581] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7579] <... futex resumed>)        = 0
[pid  7579] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7580] <... futex resumed>)        = 0
[pid  7579] <... futex resumed>)        = 1
[pid  7579] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7580] creat("./file0", 0406 <unfinished ...>
[pid  7581] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7580] <... creat resumed>)        = 4
[pid  7580] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7579] <... futex resumed>)        = 0
[pid  7579] close(3)                    = 0
[pid  7579] close(4)                    = 0
[pid  7579] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7579] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7579] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7579] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7579] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7579] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(13 <unfinished ...>
[pid  7580] <... futex resumed>)        = 1
[pid  7579] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7580] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7579] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7579] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7579] exit_group(0 <unfinished ...>
[pid  7581] <... futex resumed>)        = ?
[pid  7580] <... futex resumed>)        = ?
[pid  7579] <... exit_group resumed>)   = ?
[pid  7581] +++ exited with 0 +++
[pid  7580] +++ exited with 0 +++
[pid  7579] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2497, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[  184.013458][ T7580] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./832", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./832", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./832/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./832/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./832/binderfs")    = 0
[pid  5067] umount2("./832/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./832/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./832/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./832/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./832/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./832/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./832")              = 0
[pid  5067] mkdir("./833", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2500
./strace-static-x86_64: Process 7582 attached
[pid  7582] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7582] chdir("./833")              = 0
[pid  7582] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7582] setpgid(0, 0)               = 0
[pid  7582] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7582] write(3, "1000", 4)         = 4
[pid  7582] close(3)                    = 0
[pid  7582] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7582] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7582] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7582] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7582] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7583 attached
, parent_tid=[2501], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2501
[pid  7583] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7582] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7582] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7583] <... set_robust_list resumed>) = 0
[pid  7583] memfd_create("syzkaller", 0) = 3
[pid  7583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7583] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7583] munmap(0x7ff042e09000, 2097152) = 0
[pid  7583] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7583] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7583] close(3)                    = 0
[pid  7583] mkdir("./file0", 0777)      = 0
[pid  7583] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7583] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7583] chdir("./file0")            = 0
[pid  7583] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7583] close(4)                    = 0
[pid  7583] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7582] <... futex resumed>)        = 0
[pid  7582] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7582] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7582] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7582] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7582] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2502], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2502
[pid  7582] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7582] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7583] <... futex resumed>)        = 1
[pid  7583] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7583] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7583] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7584 attached
 <unfinished ...>
[pid  7584] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7584] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7584] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7582] <... futex resumed>)        = 0
[pid  7582] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7582] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7583] <... futex resumed>)        = 0
[pid  7583] creat("./file0", 0406)      = 4
[pid  7583] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7582] <... futex resumed>)        = 0
[pid  7582] close(3)                    = 0
[pid  7582] close(4)                    = 0
[pid  7582] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7582] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7582] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7582] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7582] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7582] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7582] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7583] <... futex resumed>)        = 1
[pid  7582] close(29 <unfinished ...>
[pid  7583] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7582] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7582] exit_group(0 <unfinished ...>
[pid  7583] <... futex resumed>)        = ?
[pid  7582] <... exit_group resumed>)   = ?
[pid  7583] +++ exited with 0 +++
[pid  7584] <... futex resumed>)        = ?
[pid  7584] +++ exited with 0 +++
[pid  7582] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2500, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./833", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./833", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./833/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./833/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[  184.165329][ T7583] loop0: detected capacity change from 0 to 4096
[pid  5067] unlink("./833/binderfs")    = 0
[pid  5067] umount2("./833/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./833/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./833/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./833/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./833/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./833/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./833")              = 0
[pid  5067] mkdir("./834", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2503
./strace-static-x86_64: Process 7585 attached
[pid  7585] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7585] chdir("./834")              = 0
[pid  7585] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7585] setpgid(0, 0)               = 0
[pid  7585] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7585] write(3, "1000", 4)         = 4
[pid  7585] close(3)                    = 0
[pid  7585] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7585] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7585] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7585] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7585] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2504], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2504
[pid  7585] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7585] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7586 attached
 <unfinished ...>
[pid  7586] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7586] memfd_create("syzkaller", 0) = 3
[pid  7586] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7586] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7586] munmap(0x7ff042e09000, 2097152) = 0
[pid  7586] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7586] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7586] close(3)                    = 0
[pid  7586] mkdir("./file0", 0777)      = 0
[pid  7586] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7586] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7586] chdir("./file0")            = 0
[pid  7586] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7586] close(4)                    = 0
[pid  7586] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7585] <... futex resumed>)        = 0
[pid  7585] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7585] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7585] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7585] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7585] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2505], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2505
[pid  7585] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7585] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7586] <... futex resumed>)        = 1
[pid  7586] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7587 attached
 <unfinished ...>
[pid  7587] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7587] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7586] <... mkdirat resumed>)      = 0
[pid  7587] <... chdir resumed>)        = 0
[pid  7587] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7587] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7585] <... futex resumed>)        = 0
[pid  7586] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7586] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7585] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7585] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7586] <... futex resumed>)        = 0
[pid  7586] creat("./file0", 0406)      = 4
[pid  7586] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7585] <... futex resumed>)        = 0
[pid  7585] close(3)                    = 0
[pid  7585] close(4)                    = 0
[pid  7585] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7585] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7585] close(7 <unfinished ...>
[pid  7586] <... futex resumed>)        = 1
[pid  7585] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7586] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7585] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7585] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7585] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7585] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7585] exit_group(0 <unfinished ...>
[pid  7587] <... futex resumed>)        = ?
[pid  7586] <... futex resumed>)        = ?
[pid  7585] <... exit_group resumed>)   = ?
[pid  7587] +++ exited with 0 +++
[pid  7586] +++ exited with 0 +++
[pid  7585] +++ exited with 0 +++
[  184.303316][ T7586] loop0: detected capacity change from 0 to 4096
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2503, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./834", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./834", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./834/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./834/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./834/binderfs")    = 0
[pid  5067] umount2("./834/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./834/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./834/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./834/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./834/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./834/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./834")              = 0
[pid  5067] mkdir("./835", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2506
./strace-static-x86_64: Process 7588 attached
[pid  7588] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7588] chdir("./835")              = 0
[pid  7588] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7588] setpgid(0, 0)               = 0
[pid  7588] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7588] write(3, "1000", 4)         = 4
[pid  7588] close(3)                    = 0
[pid  7588] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7588] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7588] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7588] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7588] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2507], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2507
[pid  7588] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7588] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7589 attached
 <unfinished ...>
[pid  7589] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7589] memfd_create("syzkaller", 0) = 3
[pid  7589] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7589] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7589] munmap(0x7ff042e09000, 2097152) = 0
[pid  7589] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7589] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7589] close(3)                    = 0
[pid  7589] mkdir("./file0", 0777)      = 0
[pid  7589] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7589] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7589] chdir("./file0")            = 0
[pid  7589] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7589] close(4)                    = 0
[pid  7589] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7588] <... futex resumed>)        = 0
[pid  7589] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7588] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7589] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7588] <... futex resumed>)        = 0
[pid  7589] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7588] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7588] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7588] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7588] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2508], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2508
[pid  7588] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7588] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7589] <... mkdirat resumed>)      = 0
[pid  7589] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7589] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7590 attached
 <unfinished ...>
[pid  7590] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7590] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7590] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7588] <... futex resumed>)        = 0
[pid  7590] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7588] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7589] <... futex resumed>)        = 0
[pid  7588] <... futex resumed>)        = 1
[pid  7589] creat("./file0", 0406 <unfinished ...>
[pid  7588] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7589] <... creat resumed>)        = 4
[  184.437280][ T7589] loop0: detected capacity change from 0 to 4096
[pid  7589] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7588] <... futex resumed>)        = 0
[pid  7589] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7588] close(3)                    = 0
[pid  7588] close(4)                    = 0
[pid  7588] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7588] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7588] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7588] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7588] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7588] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7588] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7588] exit_group(0 <unfinished ...>
[pid  7590] <... futex resumed>)        = ?
[pid  7589] <... futex resumed>)        = ?
[pid  7588] <... exit_group resumed>)   = ?
[pid  7590] +++ exited with 0 +++
[pid  7589] +++ exited with 0 +++
[pid  7588] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2506, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./835", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./835", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./835/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./835/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./835/binderfs")    = 0
[pid  5067] umount2("./835/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./835/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./835/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./835/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./835/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./835/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./835")              = 0
[pid  5067] mkdir("./836", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2509
./strace-static-x86_64: Process 7591 attached
[pid  7591] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7591] chdir("./836")              = 0
[pid  7591] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7591] setpgid(0, 0)               = 0
[pid  7591] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7591] write(3, "1000", 4)         = 4
[pid  7591] close(3)                    = 0
[pid  7591] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7591] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7591] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7591] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7591] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7592 attached
, parent_tid=[2510], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2510
[pid  7592] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7591] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7592] <... set_robust_list resumed>) = 0
[pid  7591] <... futex resumed>)        = 0
[pid  7591] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7592] memfd_create("syzkaller", 0) = 3
[pid  7592] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7592] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7592] munmap(0x7ff042e09000, 2097152) = 0
[pid  7592] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7592] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7592] close(3)                    = 0
[pid  7592] mkdir("./file0", 0777)      = 0
[pid  7592] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7592] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7592] chdir("./file0")            = 0
[pid  7592] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7592] close(4)                    = 0
[pid  7592] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7591] <... futex resumed>)        = 0
[pid  7591] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7591] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7591] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7591] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7591] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2511], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2511
[pid  7591] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7591] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7593 attached
 <unfinished ...>
[pid  7593] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7593] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7593] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7591] <... futex resumed>)        = 0
[pid  7591] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7591] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7593] <... futex resumed>)        = 1
[pid  7593] creat("./file0", 0406 <unfinished ...>
[pid  7592] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7593] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7593] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7591] <... futex resumed>)        = 0
[pid  7593] <... futex resumed>)        = 1
[pid  7593] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7592] <... mkdirat resumed>)      = 0
[  184.598021][ T7592] loop0: detected capacity change from 0 to 4096
[pid  7592] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7591] close(3)                    = 0
[pid  7591] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7591] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7591] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7591] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7591] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7591] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7591] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7591] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7591] exit_group(0 <unfinished ...>
[pid  7593] <... futex resumed>)        = ?
[pid  7591] <... exit_group resumed>)   = ?
[pid  7593] +++ exited with 0 +++
[pid  7592] <... futex resumed>)        = ?
[pid  7592] +++ exited with 0 +++
[pid  7591] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2509, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./836", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./836", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./836/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./836/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./836/binderfs")    = 0
[pid  5067] umount2("./836/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./836/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./836/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./836/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./836/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./836/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./836")              = 0
[pid  5067] mkdir("./837", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2512
./strace-static-x86_64: Process 7594 attached
[pid  7594] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7594] chdir("./837")              = 0
[pid  7594] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7594] setpgid(0, 0)               = 0
[pid  7594] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7594] write(3, "1000", 4)         = 4
[pid  7594] close(3)                    = 0
[pid  7594] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7594] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7594] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7594] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7594] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2513], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2513
[pid  7594] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7595 attached
 <unfinished ...>
[pid  7595] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7594] <... futex resumed>)        = 0
[pid  7594] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7595] memfd_create("syzkaller", 0) = 3
[pid  7595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7595] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7595] munmap(0x7ff042e09000, 2097152) = 0
[pid  7595] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7595] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7595] close(3)                    = 0
[pid  7595] mkdir("./file0", 0777)      = 0
[pid  7595] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7595] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7595] chdir("./file0")            = 0
[pid  7595] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7595] close(4)                    = 0
[pid  7595] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7594] <... futex resumed>)        = 0
[pid  7594] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7595] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7594] <... futex resumed>)        = 0
[pid  7594] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7594] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7594] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7594] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2514], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2514
./strace-static-x86_64: Process 7596 attached
[pid  7596] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7596] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7594] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7596] <... futex resumed>)        = 0
[pid  7594] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7596] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7595] <... mkdirat resumed>)      = 0
[pid  7595] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7596] <... chdir resumed>)        = 0
[pid  7596] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7595] <... futex resumed>)        = 0
[pid  7595] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7594] <... futex resumed>)        = 0
[pid  7596] <... futex resumed>)        = 1
[pid  7595] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7596] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7594] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7594] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7595] creat("./file0", 0406)      = 4
[  184.738808][ T7595] loop0: detected capacity change from 0 to 4096
[pid  7595] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7594] <... futex resumed>)        = 0
[pid  7595] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7594] close(3)                    = 0
[pid  7594] close(4)                    = 0
[pid  7594] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7594] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7594] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7594] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7594] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7594] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7594] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7594] exit_group(0 <unfinished ...>
[pid  7596] <... futex resumed>)        = ?
[pid  7595] <... futex resumed>)        = ?
[pid  7594] <... exit_group resumed>)   = ?
[pid  7596] +++ exited with 0 +++
[pid  7595] +++ exited with 0 +++
[pid  7594] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2512, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./837", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./837", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./837/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./837/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./837/binderfs")    = 0
[pid  5067] umount2("./837/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./837/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./837/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./837/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./837/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./837/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./837")              = 0
[pid  5067] mkdir("./838", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2515
./strace-static-x86_64: Process 7597 attached
[pid  7597] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7597] chdir("./838")              = 0
[pid  7597] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7597] setpgid(0, 0)               = 0
[pid  7597] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7597] write(3, "1000", 4)         = 4
[pid  7597] close(3)                    = 0
[pid  7597] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7597] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7597] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7597] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7597] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7598 attached
, parent_tid=[2516], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2516
[pid  7598] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7597] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7598] <... set_robust_list resumed>) = 0
[pid  7597] <... futex resumed>)        = 0
[pid  7597] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7598] memfd_create("syzkaller", 0) = 3
[pid  7598] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7598] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7598] munmap(0x7ff042e09000, 2097152) = 0
[pid  7598] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7598] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7598] close(3)                    = 0
[pid  7598] mkdir("./file0", 0777)      = 0
[pid  7598] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7598] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7598] chdir("./file0")            = 0
[pid  7598] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7598] close(4)                    = 0
[pid  7598] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7597] <... futex resumed>)        = 0
[pid  7597] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7597] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7598] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7597] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7597] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7597] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7599 attached
, parent_tid=[2517], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2517
[pid  7599] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7599] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7597] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7597] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7599] <... futex resumed>)        = 0
[pid  7599] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7598] <... mkdirat resumed>)      = 0
[pid  7599] <... chdir resumed>)        = 0
[pid  7599] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7598] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7597] <... futex resumed>)        = 0
[pid  7597] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7597] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7599] <... futex resumed>)        = 1
[pid  7599] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7597] <... futex resumed>)        = 0
[pid  7598] <... futex resumed>)        = 1
[pid  7597] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=49000000} <unfinished ...>
[pid  7598] creat("./file0", 0406)      = 4
[pid  7598] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7597] <... futex resumed>)        = 0
[pid  7597] close(3)                    = 0
[pid  7597] close(4)                    = 0
[pid  7597] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7597] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7597] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7598] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7597] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7597] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7597] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(27)                   = -1 EBADF (Bad file descriptor)
[  184.902106][ T7598] loop0: detected capacity change from 0 to 4096
[pid  7597] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7597] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7597] exit_group(0 <unfinished ...>
[pid  7599] <... futex resumed>)        = ?
[pid  7598] <... futex resumed>)        = ?
[pid  7597] <... exit_group resumed>)   = ?
[pid  7599] +++ exited with 0 +++
[pid  7598] +++ exited with 0 +++
[pid  7597] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2515, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./838", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./838", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./838/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./838/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./838/binderfs")    = 0
[pid  5067] umount2("./838/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./838/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./838/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./838/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./838/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./838/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./838")              = 0
[pid  5067] mkdir("./839", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2518
./strace-static-x86_64: Process 7600 attached
[pid  7600] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7600] chdir("./839")              = 0
[pid  7600] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7600] setpgid(0, 0)               = 0
[pid  7600] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7600] write(3, "1000", 4)         = 4
[pid  7600] close(3)                    = 0
[pid  7600] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7600] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7600] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7600] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7600] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7601 attached
 <unfinished ...>
[pid  7601] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7601] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7600] <... clone resumed>, parent_tid=[2519], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2519
[pid  7600] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7601] <... futex resumed>)        = 0
[pid  7600] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7601] memfd_create("syzkaller", 0) = 3
[pid  7601] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7601] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7601] munmap(0x7ff042e09000, 2097152) = 0
[pid  7601] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7601] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7601] close(3)                    = 0
[pid  7601] mkdir("./file0", 0777)      = 0
[pid  7601] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7601] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7601] chdir("./file0")            = 0
[pid  7601] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7601] close(4)                    = 0
[pid  7601] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7601] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7600] <... futex resumed>)        = 0
[pid  7600] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7600] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7600] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7600] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7600] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2520], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2520
[pid  7600] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7600] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7601] <... futex resumed>)        = 0
[pid  7601] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7602 attached
 <unfinished ...>
[pid  7602] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7602] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7601] <... mkdirat resumed>)      = 0
[pid  7601] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7601] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7602] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7600] <... futex resumed>)        = 0
[pid  7600] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7600] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7601] <... futex resumed>)        = 0
[pid  7601] creat("./file0", 0406 <unfinished ...>
[pid  7602] <... futex resumed>)        = 1
[pid  7601] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7602] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7601] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7600] <... futex resumed>)        = 0
[pid  7600] close(3)                    = 0
[pid  7600] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7600] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7600] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7600] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7600] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7600] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7600] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7601] <... futex resumed>)        = 1
[pid  7600] close(12 <unfinished ...>
[pid  7601] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7600] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[  185.040093][ T7601] loop0: detected capacity change from 0 to 4096
[pid  7600] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7600] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7600] exit_group(0 <unfinished ...>
[pid  7602] <... futex resumed>)        = ?
[pid  7601] <... futex resumed>)        = ?
[pid  7600] <... exit_group resumed>)   = ?
[pid  7602] +++ exited with 0 +++
[pid  7601] +++ exited with 0 +++
[pid  7600] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2518, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./839", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./839", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./839/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./839/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./839/binderfs")    = 0
[pid  5067] umount2("./839/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./839/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./839/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./839/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./839/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./839/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./839")              = 0
[pid  5067] mkdir("./840", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2521
./strace-static-x86_64: Process 7603 attached
[pid  7603] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7603] chdir("./840")              = 0
[pid  7603] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7603] setpgid(0, 0)               = 0
[pid  7603] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7603] write(3, "1000", 4)         = 4
[pid  7603] close(3)                    = 0
[pid  7603] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7603] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7603] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7603] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7603] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2522], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2522
[pid  7603] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7603] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7604 attached
 <unfinished ...>
[pid  7604] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7604] memfd_create("syzkaller", 0) = 3
[pid  7604] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7604] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7604] munmap(0x7ff042e09000, 2097152) = 0
[pid  7604] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7604] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7604] close(3)                    = 0
[pid  7604] mkdir("./file0", 0777)      = 0
[pid  7604] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7604] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7604] chdir("./file0")            = 0
[pid  7604] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7604] close(4)                    = 0
[pid  7604] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7604] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7603] <... futex resumed>)        = 0
[pid  7603] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7603] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7603] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7603] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7604] <... futex resumed>)        = 0
[pid  7603] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7604] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7605 attached
 <unfinished ...>
[pid  7603] <... clone resumed>, parent_tid=[2523], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2523
[pid  7603] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7603] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7605] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7605] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7605] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7604] <... mkdirat resumed>)      = 0
[pid  7603] <... futex resumed>)        = 0
[pid  7604] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7603] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7604] <... futex resumed>)        = 0
[pid  7603] <... futex resumed>)        = 0
[pid  7604] creat("./file0", 0406 <unfinished ...>
[  185.190683][ T7604] loop0: detected capacity change from 0 to 4096
[pid  7603] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7605] <... futex resumed>)        = 1
[pid  7604] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7605] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7604] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7603] <... futex resumed>)        = 0
[pid  7604] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7603] close(3)                    = 0
[pid  7603] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7603] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7603] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7603] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7603] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7603] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7603] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7603] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7603] exit_group(0 <unfinished ...>
[pid  7604] <... futex resumed>)        = ?
[pid  7605] <... futex resumed>)        = ?
[pid  7603] <... exit_group resumed>)   = ?
[pid  7604] +++ exited with 0 +++
[pid  7605] +++ exited with 0 +++
[pid  7603] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2521, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./840", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./840", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./840/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./840/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./840/binderfs")    = 0
[pid  5067] umount2("./840/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./840/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./840/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./840/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./840/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./840/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./840")              = 0
[pid  5067] mkdir("./841", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2524
./strace-static-x86_64: Process 7606 attached
[pid  7606] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7606] chdir("./841")              = 0
[pid  7606] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7606] setpgid(0, 0)               = 0
[pid  7606] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7606] write(3, "1000", 4)         = 4
[pid  7606] close(3)                    = 0
[pid  7606] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7606] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7606] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7606] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7606] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7607 attached
, parent_tid=[2525], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2525
[pid  7607] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7606] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7607] <... set_robust_list resumed>) = 0
[pid  7606] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7607] memfd_create("syzkaller", 0) = 3
[pid  7607] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7607] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7607] munmap(0x7ff042e09000, 2097152) = 0
[pid  7607] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7607] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7607] close(3)                    = 0
[pid  7607] mkdir("./file0", 0777)      = 0
[pid  7607] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7607] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7607] chdir("./file0")            = 0
[pid  7607] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7607] close(4)                    = 0
[pid  7607] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7606] <... futex resumed>)        = 0
[pid  7606] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7607] <... futex resumed>)        = 1
[pid  7606] <... futex resumed>)        = 0
[pid  7607] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7606] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7606] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7606] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7606] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2526], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2526
[pid  7606] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7606] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7608 attached
 <unfinished ...>
[pid  7608] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7607] <... mkdirat resumed>)      = 0
[pid  7607] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7607] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7608] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7608] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7606] <... futex resumed>)        = 0
[pid  7606] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7608] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7607] <... futex resumed>)        = 0
[pid  7606] <... futex resumed>)        = 1
[pid  7607] creat("./file0", 0406 <unfinished ...>
[pid  7606] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7607] <... creat resumed>)        = 4
[pid  7607] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7607] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7606] <... futex resumed>)        = 0
[pid  7606] close(3)                    = 0
[pid  7606] close(4)                    = 0
[pid  7606] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7606] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7606] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7606] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7606] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7606] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(26)                   = -1 EBADF (Bad file descriptor)
[  185.342930][ T7607] loop0: detected capacity change from 0 to 4096
[pid  7606] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7606] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7606] exit_group(0 <unfinished ...>
[pid  7608] <... futex resumed>)        = ?
[pid  7607] <... futex resumed>)        = ?
[pid  7606] <... exit_group resumed>)   = ?
[pid  7608] +++ exited with 0 +++
[pid  7607] +++ exited with 0 +++
[pid  7606] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2524, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./841", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./841", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./841/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./841/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./841/binderfs")    = 0
[pid  5067] umount2("./841/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./841/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./841/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./841/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./841/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./841/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./841")              = 0
[pid  5067] mkdir("./842", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2527
./strace-static-x86_64: Process 7609 attached
[pid  7609] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7609] chdir("./842")              = 0
[pid  7609] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7609] setpgid(0, 0)               = 0
[pid  7609] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7609] write(3, "1000", 4)         = 4
[pid  7609] close(3)                    = 0
[pid  7609] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7609] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7609] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7609] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7609] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2528], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2528
[pid  7609] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7610 attached
) = 0
[pid  7610] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7609] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7610] memfd_create("syzkaller", 0) = 3
[pid  7610] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7610] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7610] munmap(0x7ff042e09000, 2097152) = 0
[pid  7610] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7610] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7610] close(3)                    = 0
[pid  7610] mkdir("./file0", 0777)      = 0
[pid  7610] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7610] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7610] chdir("./file0")            = 0
[pid  7610] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7610] close(4)                    = 0
[pid  7610] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7610] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7609] <... futex resumed>)        = 0
[pid  7609] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7609] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7609] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7609] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7609] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2529], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2529
[pid  7609] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7609] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7610] <... futex resumed>)        = 0
[pid  7610] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7611 attached
 <unfinished ...>
[pid  7611] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7611] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7610] <... mkdirat resumed>)      = 0
[pid  7611] <... chdir resumed>)        = 0
[pid  7611] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7609] <... futex resumed>)        = 0
[pid  7609] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7609] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7611] <... futex resumed>)        = 1
[pid  7611] creat("./file0", 0406 <unfinished ...>
[pid  7610] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7610] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7611] <... creat resumed>)        = 4
[pid  7611] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7609] <... futex resumed>)        = 0
[pid  7611] <... futex resumed>)        = 1
[pid  7609] close(3)                    = 0
[pid  7609] close(4)                    = 0
[pid  7609] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7609] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7609] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7609] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7609] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7609] close(10 <unfinished ...>
[pid  7611] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7609] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7609] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7609] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7609] exit_group(0 <unfinished ...>
[pid  7611] <... futex resumed>)        = ?
[pid  7610] <... futex resumed>)        = ?
[pid  7609] <... exit_group resumed>)   = ?
[  185.488476][ T7610] loop0: detected capacity change from 0 to 4096
[pid  7611] +++ exited with 0 +++
[pid  7610] +++ exited with 0 +++
[pid  7609] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2527, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./842", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./842", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./842/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./842/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./842/binderfs")    = 0
[pid  5067] umount2("./842/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./842/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./842/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./842/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./842/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./842/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./842")              = 0
[pid  5067] mkdir("./843", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2530
./strace-static-x86_64: Process 7612 attached
[pid  7612] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7612] chdir("./843")              = 0
[pid  7612] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7612] setpgid(0, 0)               = 0
[pid  7612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7612] write(3, "1000", 4)         = 4
[pid  7612] close(3)                    = 0
[pid  7612] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7612] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7612] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7612] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7612] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2531], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2531
[pid  7612] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7612] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7613 attached
 <unfinished ...>
[pid  7613] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7613] memfd_create("syzkaller", 0) = 3
[pid  7613] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7613] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7613] munmap(0x7ff042e09000, 2097152) = 0
[pid  7613] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7613] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7613] close(3)                    = 0
[pid  7613] mkdir("./file0", 0777)      = 0
[pid  7613] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7613] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7613] chdir("./file0")            = 0
[pid  7613] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7613] close(4)                    = 0
[pid  7613] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7612] <... futex resumed>)        = 0
[pid  7612] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7612] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7612] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7612] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7612] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2532], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2532
[pid  7612] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7612] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7613] <... futex resumed>)        = 1
[pid  7613] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7614 attached
 <unfinished ...>
[pid  7614] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7614] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7613] <... mkdirat resumed>)      = 0
[pid  7613] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7613] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7614] <... chdir resumed>)        = 0
[pid  7614] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7612] <... futex resumed>)        = 0
[pid  7612] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7612] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7613] <... futex resumed>)        = 0
[pid  7613] creat("./file0", 0406)      = 4
[pid  7613] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7612] <... futex resumed>)        = 0
[pid  7612] close(3)                    = 0
[pid  7612] close(4)                    = 0
[pid  7612] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7612] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7612] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7612] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7612] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7612] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7612] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7613] <... futex resumed>)        = 1
[pid  7612] close(29 <unfinished ...>
[pid  7614] <... futex resumed>)        = 1
[pid  7613] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7612] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7614] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7612] exit_group(0 <unfinished ...>
[pid  7614] <... futex resumed>)        = ?
[pid  7613] <... futex resumed>)        = ?
[pid  7612] <... exit_group resumed>)   = ?
[pid  7614] +++ exited with 0 +++
[pid  7613] +++ exited with 0 +++
[pid  7612] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2530, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[  185.631960][ T7613] loop0: detected capacity change from 0 to 4096
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./843", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./843", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./843/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./843/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./843/binderfs")    = 0
[pid  5067] umount2("./843/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./843/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./843/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./843/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./843/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./843/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./843")              = 0
[pid  5067] mkdir("./844", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7615 attached
, child_tidptr=0x5555570e75d0) = 2533
[pid  7615] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7615] chdir("./844")              = 0
[pid  7615] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7615] setpgid(0, 0)               = 0
[pid  7615] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7615] write(3, "1000", 4)         = 4
[pid  7615] close(3)                    = 0
[pid  7615] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7615] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7615] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7615] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7615] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7616 attached
, parent_tid=[2534], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2534
[pid  7616] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7616] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7615] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7616] <... futex resumed>)        = 0
[pid  7615] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7616] memfd_create("syzkaller", 0) = 3
[pid  7616] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7616] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7616] munmap(0x7ff042e09000, 2097152) = 0
[pid  7616] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7616] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7616] close(3)                    = 0
[pid  7616] mkdir("./file0", 0777)      = 0
[pid  7616] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7616] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7616] chdir("./file0")            = 0
[pid  7616] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7616] close(4)                    = 0
[pid  7616] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7616] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7615] <... futex resumed>)        = 0
[pid  7615] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7616] <... futex resumed>)        = 0
[pid  7616] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7615] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7615] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7615] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7615] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7616] <... mkdirat resumed>)      = 0
[pid  7616] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7616] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7617 attached
 <unfinished ...>
[pid  7615] <... clone resumed>, parent_tid=[2535], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2535
[pid  7615] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7615] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7617] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7617] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7617] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7615] <... futex resumed>)        = 0
[pid  7617] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7615] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7615] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7616] <... futex resumed>)        = 0
[pid  7616] creat("./file0", 0406)      = 4
[pid  7616] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7615] <... futex resumed>)        = 0
[pid  7615] close(3)                    = 0
[pid  7615] close(4)                    = 0
[pid  7615] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7615] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7615] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7615] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7615] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7615] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(19 <unfinished ...>
[pid  7616] <... futex resumed>)        = 1
[pid  7615] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7616] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7615] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(22)                   = -1 EBADF (Bad file descriptor)
[  185.771470][ T7616] loop0: detected capacity change from 0 to 4096
[pid  7615] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7615] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7615] exit_group(0 <unfinished ...>
[pid  7617] <... futex resumed>)        = ?
[pid  7616] <... futex resumed>)        = ?
[pid  7615] <... exit_group resumed>)   = ?
[pid  7617] +++ exited with 0 +++
[pid  7616] +++ exited with 0 +++
[pid  7615] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2533, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./844", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./844", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./844/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./844/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./844/binderfs")    = 0
[pid  5067] umount2("./844/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./844/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./844/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./844/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./844/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./844/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./844")              = 0
[pid  5067] mkdir("./845", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2536
./strace-static-x86_64: Process 7618 attached
[pid  7618] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7618] chdir("./845")              = 0
[pid  7618] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7618] setpgid(0, 0)               = 0
[pid  7618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7618] write(3, "1000", 4)         = 4
[pid  7618] close(3)                    = 0
[pid  7618] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7618] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7618] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7618] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7618] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7619 attached
, parent_tid=[2537], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2537
[pid  7619] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7619] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7618] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7619] <... futex resumed>)        = 0
[pid  7618] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7619] memfd_create("syzkaller", 0) = 3
[pid  7619] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7619] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7619] munmap(0x7ff042e09000, 2097152) = 0
[pid  7619] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7619] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7619] close(3)                    = 0
[pid  7619] mkdir("./file0", 0777)      = 0
[pid  7619] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7619] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7619] chdir("./file0")            = 0
[pid  7619] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7619] close(4)                    = 0
[pid  7619] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7618] <... futex resumed>)        = 0
[pid  7619] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7618] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7619] <... futex resumed>)        = 0
[pid  7618] <... futex resumed>)        = 1
[pid  7618] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7618] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7619] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7618] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7618] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7618] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2538], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2538
[pid  7618] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7620 attached
[pid  7620] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7620] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7618] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7620] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7620] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7620] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7618] <... futex resumed>)        = 0
[pid  7618] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7619] <... mkdirat resumed>)      = 0
[pid  7618] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7619] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7619] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7620] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7620] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7620] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7618] <... futex resumed>)        = 0
[pid  7620] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7618] close(3)                    = 0
[pid  7618] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7618] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7618] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7618] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7618] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7618] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7618] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7618] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7618] exit_group(0 <unfinished ...>
[pid  7620] <... futex resumed>)        = ?
[pid  7619] <... futex resumed>)        = ?
[pid  7618] <... exit_group resumed>)   = ?
[pid  7620] +++ exited with 0 +++
[pid  7619] +++ exited with 0 +++
[pid  7618] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2536, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./845", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./845", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./845/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  185.917675][ T7619] loop0: detected capacity change from 0 to 4096
[pid  5067] lstat("./845/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./845/binderfs")    = 0
[pid  5067] umount2("./845/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./845/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./845/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./845/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./845/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./845/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./845")              = 0
[pid  5067] mkdir("./846", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2539
./strace-static-x86_64: Process 7621 attached
[pid  7621] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7621] chdir("./846")              = 0
[pid  7621] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7621] setpgid(0, 0)               = 0
[pid  7621] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7621] write(3, "1000", 4)         = 4
[pid  7621] close(3)                    = 0
[pid  7621] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7621] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7621] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7621] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7621] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7622 attached
, parent_tid=[2540], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2540
[pid  7622] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7621] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7622] <... set_robust_list resumed>) = 0
[pid  7621] <... futex resumed>)        = 0
[pid  7621] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7622] memfd_create("syzkaller", 0) = 3
[pid  7622] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7622] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7622] munmap(0x7ff042e09000, 2097152) = 0
[pid  7622] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7622] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7622] close(3)                    = 0
[pid  7622] mkdir("./file0", 0777)      = 0
[pid  7622] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7622] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7622] chdir("./file0")            = 0
[pid  7622] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7622] close(4)                    = 0
[pid  7622] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7622] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7621] <... futex resumed>)        = 0
[pid  7621] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7621] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7622] <... futex resumed>)        = 0
[pid  7622] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7621] <... futex resumed>)        = 0
[pid  7621] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7621] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7621] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2541], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2541
[pid  7621] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7621] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7622] <... mkdirat resumed>)      = 0
[pid  7622] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7622] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7623 attached
 <unfinished ...>
[pid  7623] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7623] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7623] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7621] <... futex resumed>)        = 0
[pid  7623] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7621] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7622] <... futex resumed>)        = 0
[pid  7621] <... futex resumed>)        = 1
[pid  7622] creat("./file0", 0406 <unfinished ...>
[pid  7621] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7622] <... creat resumed>)        = 4
[pid  7622] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7621] <... futex resumed>)        = 0
[pid  7622] <... futex resumed>)        = 1
[pid  7621] close(3)                    = 0
[pid  7621] close(4)                    = 0
[pid  7621] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7621] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7621] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7621] close(8 <unfinished ...>
[pid  7622] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7621] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7621] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7621] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(14)                   = -1 EBADF (Bad file descriptor)
[  186.058301][ T7622] loop0: detected capacity change from 0 to 4096
[pid  7621] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7621] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7621] exit_group(0 <unfinished ...>
[pid  7623] <... futex resumed>)        = ?
[pid  7622] <... futex resumed>)        = ?
[pid  7621] <... exit_group resumed>)   = ?
[pid  7623] +++ exited with 0 +++
[pid  7622] +++ exited with 0 +++
[pid  7621] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2539, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./846", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./846", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./846/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./846/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./846/binderfs")    = 0
[pid  5067] umount2("./846/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./846/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./846/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./846/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./846/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./846/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./846")              = 0
[pid  5067] mkdir("./847", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2542
./strace-static-x86_64: Process 7624 attached
[pid  7624] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7624] chdir("./847")              = 0
[pid  7624] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7624] setpgid(0, 0)               = 0
[pid  7624] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7624] write(3, "1000", 4)         = 4
[pid  7624] close(3)                    = 0
[pid  7624] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7624] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7624] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7624] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7624] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7625 attached
, parent_tid=[2543], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2543
[pid  7624] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7624] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7625] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7625] memfd_create("syzkaller", 0) = 3
[pid  7625] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7625] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7625] munmap(0x7ff042e09000, 2097152) = 0
[pid  7625] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7625] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7625] close(3)                    = 0
[pid  7625] mkdir("./file0", 0777)      = 0
[pid  7625] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7625] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7625] chdir("./file0")            = 0
[pid  7625] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7625] close(4)                    = 0
[pid  7625] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7625] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7624] <... futex resumed>)        = 0
[pid  7624] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7624] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7624] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7624] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7625] <... futex resumed>)        = 0
[pid  7625] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7624] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2544], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2544
[pid  7624] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7624] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7626 attached
 <unfinished ...>
[pid  7626] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7626] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7625] <... mkdirat resumed>)      = 0
[pid  7625] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7625] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7626] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7624] <... futex resumed>)        = 0
[pid  7624] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7625] <... futex resumed>)        = 0
[pid  7624] <... futex resumed>)        = 1
[pid  7625] creat("./file0", 0406 <unfinished ...>
[pid  7624] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7626] <... futex resumed>)        = 1
[pid  7625] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7625] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7624] <... futex resumed>)        = 0
[pid  7625] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7624] close(3)                    = 0
[pid  7624] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7624] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7624] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7624] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7624] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7624] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7624] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(13 <unfinished ...>
[pid  7626] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7624] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7624] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7624] close(29)                   = -1 EBADF (Bad file descriptor)
[  186.203635][ T7625] loop0: detected capacity change from 0 to 4096
[pid  7624] exit_group(0)               = ?
[pid  7625] <... futex resumed>)        = ?
[pid  7626] <... futex resumed>)        = ?
[pid  7626] +++ exited with 0 +++
[pid  7625] +++ exited with 0 +++
[pid  7624] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2542, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./847", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./847", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./847/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./847/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./847/binderfs")    = 0
[pid  5067] umount2("./847/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./847/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./847/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./847/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./847/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./847/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./847")              = 0
[pid  5067] mkdir("./848", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2545
./strace-static-x86_64: Process 7627 attached
[pid  7627] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7627] chdir("./848")              = 0
[pid  7627] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7627] setpgid(0, 0)               = 0
[pid  7627] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7627] write(3, "1000", 4)         = 4
[pid  7627] close(3)                    = 0
[pid  7627] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7627] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7627] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7627] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7627] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2546], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2546
./strace-static-x86_64: Process 7628 attached
[pid  7627] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7627] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7628] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7628] memfd_create("syzkaller", 0) = 3
[pid  7628] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7628] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7628] munmap(0x7ff042e09000, 2097152) = 0
[pid  7628] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7628] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7628] close(3)                    = 0
[pid  7628] mkdir("./file0", 0777)      = 0
[pid  7628] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7628] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7628] chdir("./file0")            = 0
[pid  7628] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7628] close(4)                    = 0
[pid  7628] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7627] <... futex resumed>)        = 0
[pid  7627] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7627] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7627] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7627] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7627] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2547], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2547
[pid  7627] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7627] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7628] <... futex resumed>)        = 1
[pid  7628] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7629 attached
 <unfinished ...>
[pid  7629] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7629] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7628] <... mkdirat resumed>)      = 0
[pid  7629] <... chdir resumed>)        = 0
[pid  7629] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7627] <... futex resumed>)        = 0
[pid  7627] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7627] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7629] <... futex resumed>)        = 1
[pid  7629] creat("./file0", 0406 <unfinished ...>
[pid  7628] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7628] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7629] <... creat resumed>)        = 4
[pid  7629] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7627] <... futex resumed>)        = 0
[pid  7627] close(3 <unfinished ...>
[pid  7629] <... futex resumed>)        = 1
[pid  7627] <... close resumed>)        = 0
[pid  7629] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7627] close(4)                    = 0
[pid  7627] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7627] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7627] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7627] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7627] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7627] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(12)                   = -1 EBADF (Bad file descriptor)
[  186.350763][ T7628] loop0: detected capacity change from 0 to 4096
[pid  7627] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7627] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7627] exit_group(0 <unfinished ...>
[pid  7628] <... futex resumed>)        = ?
[pid  7627] <... exit_group resumed>)   = ?
[pid  7629] <... futex resumed>)        = ?
[pid  7629] +++ exited with 0 +++
[pid  7628] +++ exited with 0 +++
[pid  7627] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2545, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./848", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./848", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./848/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./848/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./848/binderfs")    = 0
[pid  5067] umount2("./848/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./848/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./848/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./848/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./848/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./848/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./848")              = 0
[pid  5067] mkdir("./849", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7630 attached
, child_tidptr=0x5555570e75d0) = 2548
[pid  7630] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7630] chdir("./849")              = 0
[pid  7630] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7630] setpgid(0, 0)               = 0
[pid  7630] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7630] write(3, "1000", 4)         = 4
[pid  7630] close(3)                    = 0
[pid  7630] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7630] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7630] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7630] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7630] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7631 attached
 <unfinished ...>
[pid  7631] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7630] <... clone resumed>, parent_tid=[2549], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2549
[pid  7631] <... set_robust_list resumed>) = 0
[pid  7630] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7630] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7631] memfd_create("syzkaller", 0) = 3
[pid  7631] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7631] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7631] munmap(0x7ff042e09000, 2097152) = 0
[pid  7631] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7631] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7631] close(3)                    = 0
[pid  7631] mkdir("./file0", 0777)      = 0
[pid  7631] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7631] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7631] chdir("./file0")            = 0
[pid  7631] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7631] close(4)                    = 0
[pid  7631] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7630] <... futex resumed>)        = 0
[pid  7630] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7631] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7630] <... futex resumed>)        = 0
[pid  7630] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7630] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7630] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7630] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7631] <... mkdirat resumed>)      = 0
[pid  7631] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7630] <... clone resumed>, parent_tid=[2550], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2550
./strace-static-x86_64: Process 7632 attached
[pid  7631] <... futex resumed>)        = 0
[pid  7630] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7631] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7630] <... futex resumed>)        = 0
[pid  7630] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7632] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7632] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7632] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7630] <... futex resumed>)        = 0
[pid  7630] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7632] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7631] <... futex resumed>)        = 0
[pid  7630] <... futex resumed>)        = 1
[pid  7631] creat("./file0", 0406 <unfinished ...>
[pid  7630] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7631] <... creat resumed>)        = 4
[pid  7631] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7630] <... futex resumed>)        = 0
[pid  7631] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7630] close(3)                    = 0
[pid  7630] close(4)                    = 0
[pid  7630] close(5)                    = -1 EBADF (Bad file descriptor)
[  186.495351][ T7631] loop0: detected capacity change from 0 to 4096
[pid  7630] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7630] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7630] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7630] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7630] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7630] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7630] exit_group(0 <unfinished ...>
[pid  7632] <... futex resumed>)        = ?
[pid  7631] <... futex resumed>)        = ?
[pid  7630] <... exit_group resumed>)   = ?
[pid  7632] +++ exited with 0 +++
[pid  7631] +++ exited with 0 +++
[pid  7630] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2548, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./849", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./849", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./849/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./849/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./849/binderfs")    = 0
[pid  5067] umount2("./849/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./849/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./849/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./849/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./849/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./849/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./849")              = 0
[pid  5067] mkdir("./850", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2551
./strace-static-x86_64: Process 7633 attached
[pid  7633] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7633] chdir("./850")              = 0
[pid  7633] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7633] setpgid(0, 0)               = 0
[pid  7633] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7633] write(3, "1000", 4)         = 4
[pid  7633] close(3)                    = 0
[pid  7633] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7633] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7633] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7633] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7633] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2552], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2552
[pid  7633] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7633] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7634 attached
 <unfinished ...>
[pid  7634] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7634] memfd_create("syzkaller", 0) = 3
[pid  7634] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7634] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7634] munmap(0x7ff042e09000, 2097152) = 0
[pid  7634] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7634] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7634] close(3)                    = 0
[pid  7634] mkdir("./file0", 0777)      = 0
[pid  7634] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7634] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7634] chdir("./file0")            = 0
[pid  7634] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7634] close(4)                    = 0
[pid  7634] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7633] <... futex resumed>)        = 0
[pid  7633] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7633] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7633] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7633] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7633] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2553], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2553
[pid  7633] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7633] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7634] <... futex resumed>)        = 1
[pid  7634] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
./strace-static-x86_64: Process 7635 attached
[pid  7635] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7635] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7635] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7633] <... futex resumed>)        = 0
[pid  7633] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7635] <... futex resumed>)        = 1
[pid  7633] <... futex resumed>)        = 0
[pid  7635] creat("./file0", 0406 <unfinished ...>
[pid  7633] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7634] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7634] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7635] <... creat resumed>)        = 4
[pid  7635] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7633] <... futex resumed>)        = 0
[pid  7633] close(3)                    = 0
[pid  7633] close(4)                    = 0
[pid  7633] close(5 <unfinished ...>
[pid  7635] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7633] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7633] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7633] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7633] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7633] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7633] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(25)                   = -1 EBADF (Bad file descriptor)
[  186.641803][ T7634] loop0: detected capacity change from 0 to 4096
[pid  7633] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7633] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7633] exit_group(0 <unfinished ...>
[pid  7634] <... futex resumed>)        = ?
[pid  7635] <... futex resumed>)        = ?
[pid  7633] <... exit_group resumed>)   = ?
[pid  7634] +++ exited with 0 +++
[pid  7635] +++ exited with 0 +++
[pid  7633] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2551, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./850", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./850", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./850/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./850/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./850/binderfs")    = 0
[pid  5067] umount2("./850/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./850/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./850/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./850/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./850/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./850/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./850")              = 0
[pid  5067] mkdir("./851", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2554
./strace-static-x86_64: Process 7636 attached
[pid  7636] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7636] chdir("./851")              = 0
[pid  7636] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7636] setpgid(0, 0)               = 0
[pid  7636] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7636] write(3, "1000", 4)         = 4
[pid  7636] close(3)                    = 0
[pid  7636] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7636] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7636] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7636] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7636] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2555], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2555
[pid  7636] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7637 attached
) = 0
[pid  7637] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7636] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7637] <... set_robust_list resumed>) = 0
[pid  7637] memfd_create("syzkaller", 0) = 3
[pid  7637] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7637] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7637] munmap(0x7ff042e09000, 2097152) = 0
[pid  7637] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7637] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7637] close(3)                    = 0
[pid  7637] mkdir("./file0", 0777)      = 0
[pid  7637] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7637] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7637] chdir("./file0")            = 0
[pid  7637] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7637] close(4)                    = 0
[pid  7637] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7636] <... futex resumed>)        = 0
[pid  7636] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7636] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7636] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7636] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7636] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2556], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2556
[pid  7636] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7636] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7637] <... futex resumed>)        = 1
[pid  7637] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7638 attached
 <unfinished ...>
[pid  7638] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7638] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7637] <... mkdirat resumed>)      = 0
[pid  7638] <... chdir resumed>)        = 0
[pid  7638] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7636] <... futex resumed>)        = 0
[pid  7636] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7636] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7638] <... futex resumed>)        = 1
[  186.788803][ T7637] loop0: detected capacity change from 0 to 4096
[pid  7638] creat("./file0", 0406 <unfinished ...>
[pid  7637] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7638] <... creat resumed>)        = 4
[pid  7637] <... futex resumed>)        = 0
[pid  7637] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7638] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7636] <... futex resumed>)        = 0
[pid  7636] close(3)                    = 0
[pid  7636] close(4)                    = 0
[pid  7636] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7636] close(6 <unfinished ...>
[pid  7638] <... futex resumed>)        = 1
[pid  7636] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7636] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7638] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7636] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7636] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7636] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7636] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7636] exit_group(0 <unfinished ...>
[pid  7637] <... futex resumed>)        = ?
[pid  7636] <... exit_group resumed>)   = ?
[pid  7637] +++ exited with 0 +++
[pid  7638] <... futex resumed>)        = ?
[pid  7638] +++ exited with 0 +++
[pid  7636] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2554, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./851", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./851", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./851/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./851/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./851/binderfs")    = 0
[pid  5067] umount2("./851/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./851/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./851/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./851/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./851/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./851/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./851")              = 0
[pid  5067] mkdir("./852", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2557
./strace-static-x86_64: Process 7639 attached
[pid  7639] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7639] chdir("./852")              = 0
[pid  7639] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7639] setpgid(0, 0)               = 0
[pid  7639] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7639] write(3, "1000", 4)         = 4
[pid  7639] close(3)                    = 0
[pid  7639] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7639] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7639] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7639] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7639] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2558], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2558
[pid  7639] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7639] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7640 attached
 <unfinished ...>
[pid  7640] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7640] memfd_create("syzkaller", 0) = 3
[pid  7640] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7640] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7640] munmap(0x7ff042e09000, 2097152) = 0
[pid  7640] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7640] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7640] close(3)                    = 0
[pid  7640] mkdir("./file0", 0777)      = 0
[pid  7640] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7640] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7640] chdir("./file0")            = 0
[pid  7640] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7640] close(4)                    = 0
[pid  7640] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7639] <... futex resumed>)        = 0
[pid  7640] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7639] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7639] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7640] <... mkdirat resumed>)      = 0
[pid  7639] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7640] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7639] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7640] <... futex resumed>)        = 0
[pid  7639] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7640] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7639] <... mprotect resumed>)     = 0
[pid  7639] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7641 attached
 <unfinished ...>
[pid  7641] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7639] <... clone resumed>, parent_tid=[2559], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2559
[pid  7641] <... set_robust_list resumed>) = 0
[pid  7639] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7641] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7639] <... futex resumed>)        = 0
[pid  7641] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7639] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7641] <... futex resumed>)        = 0
[pid  7639] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7641] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7639] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7640] <... futex resumed>)        = 0
[pid  7639] <... futex resumed>)        = 1
[pid  7640] creat("./file0", 0406 <unfinished ...>
[pid  7639] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7640] <... creat resumed>)        = 4
[pid  7640] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7639] <... futex resumed>)        = 0
[pid  7640] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7639] close(3)                    = 0
[pid  7639] close(4)                    = 0
[pid  7639] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7639] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7639] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7639] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7639] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7639] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(16)                   = -1 EBADF (Bad file descriptor)
[  186.948603][ T7640] loop0: detected capacity change from 0 to 4096
[pid  7639] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7639] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7639] exit_group(0 <unfinished ...>
[pid  7641] <... futex resumed>)        = ?
[pid  7640] <... futex resumed>)        = ?
[pid  7639] <... exit_group resumed>)   = ?
[pid  7641] +++ exited with 0 +++
[pid  7640] +++ exited with 0 +++
[pid  7639] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2557, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./852", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./852", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./852/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./852/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./852/binderfs")    = 0
[pid  5067] umount2("./852/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./852/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./852/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./852/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./852/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./852/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./852")              = 0
[pid  5067] mkdir("./853", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2560
./strace-static-x86_64: Process 7642 attached
[pid  7642] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7642] chdir("./853")              = 0
[pid  7642] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7642] setpgid(0, 0)               = 0
[pid  7642] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7642] write(3, "1000", 4)         = 4
[pid  7642] close(3)                    = 0
[pid  7642] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7642] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7642] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7642] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7642] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2561], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2561
[pid  7642] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7642] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7643 attached
 <unfinished ...>
[pid  7643] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7643] memfd_create("syzkaller", 0) = 3
[pid  7643] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7643] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7643] munmap(0x7ff042e09000, 2097152) = 0
[pid  7643] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7643] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7643] close(3)                    = 0
[pid  7643] mkdir("./file0", 0777)      = 0
[pid  7643] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7643] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7643] chdir("./file0")            = 0
[pid  7643] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7643] close(4)                    = 0
[pid  7643] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7642] <... futex resumed>)        = 0
[pid  7643] <... futex resumed>)        = 1
[pid  7642] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7643] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7642] <... futex resumed>)        = 0
[pid  7642] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7642] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7642] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7642] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2562], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2562
[pid  7642] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7642] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7644 attached
 <unfinished ...>
[pid  7644] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7644] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7643] <... mkdirat resumed>)      = 0
[pid  7643] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7643] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7644] <... chdir resumed>)        = 0
[pid  7644] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7642] <... futex resumed>)        = 0
[pid  7644] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7642] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7643] <... futex resumed>)        = 0
[pid  7642] <... futex resumed>)        = 1
[pid  7643] creat("./file0", 0406 <unfinished ...>
[pid  7642] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7643] <... creat resumed>)        = 4
[pid  7643] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7642] <... futex resumed>)        = 0
[pid  7643] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7642] close(3)                    = 0
[pid  7642] close(4)                    = 0
[pid  7642] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7642] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7642] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7642] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7642] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7642] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(17)                   = -1 EBADF (Bad file descriptor)
[  187.097165][ T7643] loop0: detected capacity change from 0 to 4096
[pid  7642] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7642] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7642] exit_group(0 <unfinished ...>
[pid  7643] <... futex resumed>)        = ?
[pid  7642] <... exit_group resumed>)   = ?
[pid  7643] +++ exited with 0 +++
[pid  7644] <... futex resumed>)        = ?
[pid  7644] +++ exited with 0 +++
[pid  7642] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2560, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./853", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./853", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./853/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./853/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./853/binderfs")    = 0
[pid  5067] umount2("./853/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./853/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./853/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./853/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./853/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./853/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./853")              = 0
[pid  5067] mkdir("./854", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2563
./strace-static-x86_64: Process 7645 attached
[pid  7645] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7645] chdir("./854")              = 0
[pid  7645] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7645] setpgid(0, 0)               = 0
[pid  7645] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7645] write(3, "1000", 4)         = 4
[pid  7645] close(3)                    = 0
[pid  7645] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7645] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7645] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7645] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7645] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2564], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2564
[pid  7645] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7645] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7646 attached
 <unfinished ...>
[pid  7646] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7646] memfd_create("syzkaller", 0) = 3
[pid  7646] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7646] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7646] munmap(0x7ff042e09000, 2097152) = 0
[pid  7646] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7646] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7646] close(3)                    = 0
[pid  7646] mkdir("./file0", 0777)      = 0
[pid  7646] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7646] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7646] chdir("./file0")            = 0
[pid  7646] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7646] close(4)                    = 0
[pid  7646] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7645] <... futex resumed>)        = 0
[pid  7645] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7645] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7646] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7645] <... futex resumed>)        = 0
[pid  7645] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7645] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7645] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2565], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2565
[pid  7645] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7645] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7647 attached
 <unfinished ...>
[pid  7647] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7646] <... mkdirat resumed>)      = 0
[pid  7647] <... set_robust_list resumed>) = 0
[pid  7646] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7647] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7646] <... futex resumed>)        = 0
[pid  7647] <... chdir resumed>)        = 0
[pid  7646] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7647] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7645] <... futex resumed>)        = 0
[pid  7645] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7646] <... futex resumed>)        = 0
[pid  7645] <... futex resumed>)        = 1
[pid  7646] creat("./file0", 0406 <unfinished ...>
[pid  7645] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7647] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7646] <... creat resumed>)        = 4
[pid  7646] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7645] <... futex resumed>)        = 0
[pid  7645] close(3)                    = 0
[pid  7645] close(4)                    = 0
[pid  7645] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7646] <... futex resumed>)        = 1
[pid  7645] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7645] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7645] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7646] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7645] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7645] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(11)                   = -1 EBADF (Bad file descriptor)
[  187.244210][ T7646] loop0: detected capacity change from 0 to 4096
[pid  7645] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7645] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7645] exit_group(0 <unfinished ...>
[pid  7646] <... futex resumed>)        = ?
[pid  7645] <... exit_group resumed>)   = ?
[pid  7647] <... futex resumed>)        = ?
[pid  7646] +++ exited with 0 +++
[pid  7647] +++ exited with 0 +++
[pid  7645] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2563, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./854", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./854", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./854/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./854/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./854/binderfs")    = 0
[pid  5067] umount2("./854/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./854/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./854/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./854/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./854/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./854/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./854")              = 0
[pid  5067] mkdir("./855", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2566
./strace-static-x86_64: Process 7648 attached
[pid  7648] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7648] chdir("./855")              = 0
[pid  7648] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7648] setpgid(0, 0)               = 0
[pid  7648] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7648] write(3, "1000", 4)         = 4
[pid  7648] close(3)                    = 0
[pid  7648] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7648] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7648] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7648] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7648] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2567], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2567
[pid  7648] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7648] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7649 attached
 <unfinished ...>
[pid  7649] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7649] memfd_create("syzkaller", 0) = 3
[pid  7649] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7649] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7649] munmap(0x7ff042e09000, 2097152) = 0
[pid  7649] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7649] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7649] close(3)                    = 0
[pid  7649] mkdir("./file0", 0777)      = 0
[pid  7649] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7649] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7649] chdir("./file0")            = 0
[pid  7649] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7649] close(4)                    = 0
[pid  7649] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7648] <... futex resumed>)        = 0
[pid  7648] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7648] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7649] <... futex resumed>)        = 1
[pid  7648] <... futex resumed>)        = 0
[pid  7649] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7648] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7648] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7648] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2568], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2568
[pid  7648] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7648] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7649] <... mkdirat resumed>)      = 0
[pid  7649] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7649] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7650 attached
 <unfinished ...>
[pid  7650] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7650] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7650] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7648] <... futex resumed>)        = 0
[pid  7648] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7649] <... futex resumed>)        = 0
[pid  7648] <... futex resumed>)        = 1
[pid  7649] creat("./file0", 0406 <unfinished ...>
[pid  7648] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7650] <... futex resumed>)        = 1
[pid  7650] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7649] <... creat resumed>)        = 4
[pid  7649] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7648] <... futex resumed>)        = 0
[pid  7649] <... futex resumed>)        = 1
[pid  7648] close(3 <unfinished ...>
[pid  7649] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7648] <... close resumed>)        = 0
[pid  7648] close(4)                    = 0
[pid  7648] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7648] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7648] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7648] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7648] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7648] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7648] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7648] exit_group(0 <unfinished ...>
[pid  7650] <... futex resumed>)        = ?
[pid  7649] <... futex resumed>)        = ?
[pid  7648] <... exit_group resumed>)   = ?
[pid  7650] +++ exited with 0 +++
[  187.396607][ T7649] loop0: detected capacity change from 0 to 4096
[pid  7649] +++ exited with 0 +++
[pid  7648] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2566, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./855", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./855", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./855/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./855/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./855/binderfs")    = 0
[pid  5067] umount2("./855/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./855/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./855/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./855/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./855/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./855/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./855")              = 0
[pid  5067] mkdir("./856", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2569
./strace-static-x86_64: Process 7651 attached
[pid  7651] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7651] chdir("./856")              = 0
[pid  7651] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7651] setpgid(0, 0)               = 0
[pid  7651] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7651] write(3, "1000", 4)         = 4
[pid  7651] close(3)                    = 0
[pid  7651] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7651] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7651] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7651] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7651] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7652 attached
, parent_tid=[2570], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2570
[pid  7651] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7651] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7652] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7652] memfd_create("syzkaller", 0) = 3
[pid  7652] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7652] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7652] munmap(0x7ff042e09000, 2097152) = 0
[pid  7652] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7652] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7652] close(3)                    = 0
[pid  7652] mkdir("./file0", 0777)      = 0
[pid  7652] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7652] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7652] chdir("./file0")            = 0
[pid  7652] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7652] close(4)                    = 0
[pid  7652] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7651] <... futex resumed>)        = 0
[pid  7651] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7651] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7651] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7651] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7651] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2571], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2571
[pid  7651] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7652] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7651] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7653 attached
 <unfinished ...>
[pid  7653] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7652] <... mkdirat resumed>)      = 0
[pid  7652] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7652] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7653] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7653] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7651] <... futex resumed>)        = 0
[pid  7653] <... futex resumed>)        = 1
[pid  7653] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7651] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7652] <... futex resumed>)        = 0
[pid  7651] <... futex resumed>)        = 1
[pid  7652] creat("./file0", 0406 <unfinished ...>
[pid  7651] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7652] <... creat resumed>)        = 4
[  187.540143][ T7652] loop0: detected capacity change from 0 to 4096
[pid  7652] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7651] <... futex resumed>)        = 0
[pid  7652] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7651] close(3)                    = 0
[pid  7651] close(4)                    = 0
[pid  7651] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7651] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7651] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7651] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7651] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7651] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7651] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7651] exit_group(0 <unfinished ...>
[pid  7653] <... futex resumed>)        = ?
[pid  7652] <... futex resumed>)        = ?
[pid  7651] <... exit_group resumed>)   = ?
[pid  7653] +++ exited with 0 +++
[pid  7652] +++ exited with 0 +++
[pid  7651] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2569, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./856", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./856", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./856/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./856/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./856/binderfs")    = 0
[pid  5067] umount2("./856/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./856/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./856/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./856/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./856/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./856/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./856")              = 0
[pid  5067] mkdir("./857", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2572
./strace-static-x86_64: Process 7654 attached
[pid  7654] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7654] chdir("./857")              = 0
[pid  7654] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7654] setpgid(0, 0)               = 0
[pid  7654] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7654] write(3, "1000", 4)         = 4
[pid  7654] close(3)                    = 0
[pid  7654] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7654] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7654] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7654] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7654] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2573], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2573
[pid  7654] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7654] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7655 attached
 <unfinished ...>
[pid  7655] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7655] memfd_create("syzkaller", 0) = 3
[pid  7655] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7655] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7655] munmap(0x7ff042e09000, 2097152) = 0
[pid  7655] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7655] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7655] close(3)                    = 0
[pid  7655] mkdir("./file0", 0777)      = 0
[pid  7655] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7655] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7655] chdir("./file0")            = 0
[pid  7655] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7655] close(4)                    = 0
[pid  7655] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7654] <... futex resumed>)        = 0
[pid  7654] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7654] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7654] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7654] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7654] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2574], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2574
[pid  7654] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7654] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7655] <... futex resumed>)        = 1
[pid  7655] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7656 attached
 <unfinished ...>
[pid  7656] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7656] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7656] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7655] <... mkdirat resumed>)      = 0
[pid  7655] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7656] <... futex resumed>)        = 1
[pid  7654] <... futex resumed>)        = 0
[pid  7654] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7654] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = 0
[pid  7654] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7655] <... futex resumed>)        = 1
[pid  7656] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7655] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7655] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7654] <... futex resumed>)        = 0
[pid  7654] close(3)                    = 0
[  187.688600][ T7655] loop0: detected capacity change from 0 to 4096
[pid  7654] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7654] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7654] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7654] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7654] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7654] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7654] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7655] <... futex resumed>)        = 1
[pid  7654] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7655] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7654] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7654] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7654] exit_group(0 <unfinished ...>
[pid  7655] <... futex resumed>)        = ?
[pid  7656] <... futex resumed>)        = ?
[pid  7654] <... exit_group resumed>)   = ?
[pid  7655] +++ exited with 0 +++
[pid  7656] +++ exited with 0 +++
[pid  7654] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2572, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./857", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./857", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./857/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./857/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./857/binderfs")    = 0
[pid  5067] umount2("./857/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./857/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./857/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./857/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./857/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./857/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./857")              = 0
[pid  5067] mkdir("./858", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2575
./strace-static-x86_64: Process 7657 attached
[pid  7657] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7657] chdir("./858")              = 0
[pid  7657] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7657] setpgid(0, 0)               = 0
[pid  7657] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7657] write(3, "1000", 4)         = 4
[pid  7657] close(3)                    = 0
[pid  7657] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7657] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7657] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7657] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7657] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7658 attached
, parent_tid=[2576], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2576
[pid  7658] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7657] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7658] <... set_robust_list resumed>) = 0
[pid  7657] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7658] memfd_create("syzkaller", 0) = 3
[pid  7658] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7658] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7658] munmap(0x7ff042e09000, 2097152) = 0
[pid  7658] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7658] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7658] close(3)                    = 0
[pid  7658] mkdir("./file0", 0777)      = 0
[pid  7658] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7658] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7658] chdir("./file0")            = 0
[pid  7658] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7658] close(4)                    = 0
[pid  7658] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7658] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7657] <... futex resumed>)        = 0
[pid  7657] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7657] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7657] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7657] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7657] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2577], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2577
[pid  7657] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7657] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7658] <... futex resumed>)        = 0
[pid  7658] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7658] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7658] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7659 attached
 <unfinished ...>
[pid  7659] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7659] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7659] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7659] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7657] <... futex resumed>)        = 0
[pid  7657] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7657] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7658] <... futex resumed>)        = 0
[  187.839619][ T7658] loop0: detected capacity change from 0 to 4096
[pid  7658] creat("./file0", 0406)      = 4
[pid  7658] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7657] <... futex resumed>)        = 0
[pid  7657] close(3)                    = 0
[pid  7657] close(4)                    = 0
[pid  7657] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7657] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7657] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7657] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7657] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7657] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7657] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7658] <... futex resumed>)        = 1
[pid  7657] close(28 <unfinished ...>
[pid  7658] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7657] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7657] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7657] exit_group(0 <unfinished ...>
[pid  7659] <... futex resumed>)        = ?
[pid  7658] <... futex resumed>)        = ?
[pid  7657] <... exit_group resumed>)   = ?
[pid  7659] +++ exited with 0 +++
[pid  7658] +++ exited with 0 +++
[pid  7657] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2575, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./858", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./858", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./858/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./858/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./858/binderfs")    = 0
[pid  5067] umount2("./858/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./858/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./858/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./858/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./858/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./858/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./858")              = 0
[pid  5067] mkdir("./859", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2578
./strace-static-x86_64: Process 7660 attached
[pid  7660] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7660] chdir("./859")              = 0
[pid  7660] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7660] setpgid(0, 0)               = 0
[pid  7660] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7660] write(3, "1000", 4)         = 4
[pid  7660] close(3)                    = 0
[pid  7660] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7660] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7660] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7660] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7660] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7661 attached
, parent_tid=[2579], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2579
[pid  7660] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7660] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7661] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7661] memfd_create("syzkaller", 0) = 3
[pid  7661] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7661] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7661] munmap(0x7ff042e09000, 2097152) = 0
[pid  7661] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7661] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7661] close(3)                    = 0
[pid  7661] mkdir("./file0", 0777)      = 0
[pid  7661] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7661] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7661] chdir("./file0")            = 0
[pid  7661] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7661] close(4)                    = 0
[pid  7661] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7660] <... futex resumed>)        = 0
[pid  7660] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7660] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7660] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7661] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7660] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7660] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7660] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7662 attached
, parent_tid=[2580], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2580
[pid  7662] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7660] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7662] <... set_robust_list resumed>) = 0
[pid  7660] <... futex resumed>)        = 0
[pid  7660] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7662] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7661] <... mkdirat resumed>)      = 0
[pid  7661] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7662] <... chdir resumed>)        = 0
[pid  7661] <... futex resumed>)        = 0
[pid  7662] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7660] <... futex resumed>)        = 0
[pid  7662] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7660] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7660] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7661] creat("./file0", 0406)      = 4
[pid  7661] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7660] <... futex resumed>)        = 0
[pid  7660] close(3)                    = 0
[pid  7660] close(4)                    = 0
[pid  7660] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7660] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7660] close(7 <unfinished ...>
[pid  7661] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7660] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7660] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7660] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7660] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(22)                   = -1 EBADF (Bad file descriptor)
[  188.000045][ T7661] loop0: detected capacity change from 0 to 4096
[pid  7660] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7660] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7660] exit_group(0 <unfinished ...>
[pid  7661] <... futex resumed>)        = ?
[pid  7662] <... futex resumed>)        = ?
[pid  7660] <... exit_group resumed>)   = ?
[pid  7661] +++ exited with 0 +++
[pid  7662] +++ exited with 0 +++
[pid  7660] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2578, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./859", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./859", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./859/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./859/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./859/binderfs")    = 0
[pid  5067] umount2("./859/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./859/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./859/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./859/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./859/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./859/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./859")              = 0
[pid  5067] mkdir("./860", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2581
./strace-static-x86_64: Process 7663 attached
[pid  7663] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7663] chdir("./860")              = 0
[pid  7663] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7663] setpgid(0, 0)               = 0
[pid  7663] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7663] write(3, "1000", 4)         = 4
[pid  7663] close(3)                    = 0
[pid  7663] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7663] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7663] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7663] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7663] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2582], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2582
./strace-static-x86_64: Process 7664 attached
[pid  7663] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7664] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7663] <... futex resumed>)        = 0
[pid  7664] <... set_robust_list resumed>) = 0
[pid  7663] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7664] memfd_create("syzkaller", 0) = 3
[pid  7664] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7664] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7664] munmap(0x7ff042e09000, 2097152) = 0
[pid  7664] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7664] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7664] close(3)                    = 0
[pid  7664] mkdir("./file0", 0777)      = 0
[pid  7664] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7664] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7664] chdir("./file0")            = 0
[pid  7664] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7664] close(4)                    = 0
[pid  7664] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7663] <... futex resumed>)        = 0
[pid  7663] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7663] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7663] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7663] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7663] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2583], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2583
[pid  7663] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7663] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7664] <... futex resumed>)        = 1
[pid  7664] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7665 attached
 <unfinished ...>
[pid  7665] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7665] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7665] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7663] <... futex resumed>)        = 0
[pid  7663] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7663] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7665] creat("./file0", 0406 <unfinished ...>
[pid  7664] <... mkdirat resumed>)      = 0
[pid  7665] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7664] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7665] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7664] <... futex resumed>)        = 0
[pid  7665] <... futex resumed>)        = 1
[pid  7664] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7663] <... futex resumed>)        = 0
[pid  7663] close(3)                    = 0
[pid  7663] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7663] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7663] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7663] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7663] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7663] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7663] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(26)                   = -1 EBADF (Bad file descriptor)
[  188.152065][ T7664] loop0: detected capacity change from 0 to 4096
[pid  7663] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7663] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7663] exit_group(0)               = ?
[pid  7664] <... futex resumed>)        = ?
[pid  7665] +++ exited with 0 +++
[pid  7664] +++ exited with 0 +++
[pid  7663] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2581, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./860", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./860", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./860/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./860/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./860/binderfs")    = 0
[pid  5067] umount2("./860/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./860/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./860/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./860/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./860/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./860/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./860")              = 0
[pid  5067] mkdir("./861", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2584
./strace-static-x86_64: Process 7666 attached
[pid  7666] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7666] chdir("./861")              = 0
[pid  7666] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7666] setpgid(0, 0)               = 0
[pid  7666] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7666] write(3, "1000", 4)         = 4
[pid  7666] close(3)                    = 0
[pid  7666] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7666] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7666] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7666] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7666] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2585], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2585
[pid  7666] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7666] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7667 attached
 <unfinished ...>
[pid  7667] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7667] memfd_create("syzkaller", 0) = 3
[pid  7667] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7667] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7667] munmap(0x7ff042e09000, 2097152) = 0
[pid  7667] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7667] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7667] close(3)                    = 0
[pid  7667] mkdir("./file0", 0777)      = 0
[pid  7667] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7667] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7667] chdir("./file0")            = 0
[pid  7667] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7667] close(4)                    = 0
[pid  7667] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7666] <... futex resumed>)        = 0
[pid  7666] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7666] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7666] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7666] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7666] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2586], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2586
[pid  7666] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7666] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7667] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7668 attached
 <unfinished ...>
[pid  7668] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7668] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7667] <... mkdirat resumed>)      = 0
[pid  7667] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7667] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7668] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7666] <... futex resumed>)        = 0
[pid  7666] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7666] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7667] <... futex resumed>)        = 0
[pid  7667] creat("./file0", 0406 <unfinished ...>
[pid  7668] <... futex resumed>)        = 1
[pid  7668] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7667] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7667] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7666] <... futex resumed>)        = 0
[pid  7666] close(3 <unfinished ...>
[pid  7667] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7666] <... close resumed>)        = 0
[pid  7666] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7666] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7666] close(6)                    = -1 EBADF (Bad file descriptor)
[  188.295555][ T7667] loop0: detected capacity change from 0 to 4096
[pid  7666] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7666] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7666] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7666] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7666] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7666] exit_group(0 <unfinished ...>
[pid  7668] <... futex resumed>)        = ?
[pid  7667] <... futex resumed>)        = ?
[pid  7666] <... exit_group resumed>)   = ?
[pid  7668] +++ exited with 0 +++
[pid  7667] +++ exited with 0 +++
[pid  7666] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2584, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./861", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./861", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./861/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./861/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./861/binderfs")    = 0
[pid  5067] umount2("./861/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./861/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./861/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./861/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./861/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./861/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./861")              = 0
[pid  5067] mkdir("./862", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7669 attached
, child_tidptr=0x5555570e75d0) = 2587
[pid  7669] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7669] chdir("./862")              = 0
[pid  7669] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7669] setpgid(0, 0)               = 0
[pid  7669] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7669] write(3, "1000", 4)         = 4
[pid  7669] close(3)                    = 0
[pid  7669] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7669] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7669] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7669] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7669] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7670 attached
, parent_tid=[2588], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2588
[pid  7669] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7669] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7670] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7670] memfd_create("syzkaller", 0) = 3
[pid  7670] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7670] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7670] munmap(0x7ff042e09000, 2097152) = 0
[pid  7670] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7670] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7670] close(3)                    = 0
[pid  7670] mkdir("./file0", 0777)      = 0
[pid  7670] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7670] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7670] chdir("./file0")            = 0
[pid  7670] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7670] close(4)                    = 0
[pid  7670] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7669] <... futex resumed>)        = 0
[pid  7669] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7669] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7669] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7669] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7669] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7671 attached
 <unfinished ...>
[pid  7670] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7669] <... clone resumed>, parent_tid=[2589], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2589
[pid  7669] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7669] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7671] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7670] <... mkdirat resumed>)      = 0
[pid  7670] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7670] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7671] <... set_robust_list resumed>) = 0
[pid  7671] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7671] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7669] <... futex resumed>)        = 0
[pid  7669] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7670] <... futex resumed>)        = 0
[pid  7669] <... futex resumed>)        = 1
[pid  7670] creat("./file0", 0406 <unfinished ...>
[pid  7669] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7671] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7670] <... creat resumed>)        = 4
[pid  7670] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7669] <... futex resumed>)        = 0
[pid  7669] close(3 <unfinished ...>
[pid  7670] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7669] <... close resumed>)        = 0
[pid  7669] close(4)                    = 0
[  188.443702][ T7670] loop0: detected capacity change from 0 to 4096
[pid  7669] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7669] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7669] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7669] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7669] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7669] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7669] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7669] exit_group(0 <unfinished ...>
[pid  7671] <... futex resumed>)        = ?
[pid  7670] <... futex resumed>)        = ?
[pid  7669] <... exit_group resumed>)   = ?
[pid  7671] +++ exited with 0 +++
[pid  7670] +++ exited with 0 +++
[pid  7669] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2587, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./862", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./862", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./862/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./862/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./862/binderfs")    = 0
[pid  5067] umount2("./862/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./862/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./862/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./862/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./862/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./862/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./862")              = 0
[pid  5067] mkdir("./863", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2590
./strace-static-x86_64: Process 7672 attached
[pid  7672] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7672] chdir("./863")              = 0
[pid  7672] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7672] setpgid(0, 0)               = 0
[pid  7672] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7672] write(3, "1000", 4)         = 4
[pid  7672] close(3)                    = 0
[pid  7672] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7672] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7672] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7672] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7672] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2591], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2591
[pid  7672] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7672] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7673 attached
 <unfinished ...>
[pid  7673] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7673] memfd_create("syzkaller", 0) = 3
[pid  7673] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7673] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7673] munmap(0x7ff042e09000, 2097152) = 0
[pid  7673] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7673] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7673] close(3)                    = 0
[pid  7673] mkdir("./file0", 0777)      = 0
[pid  7673] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7673] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7673] chdir("./file0")            = 0
[pid  7673] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7673] close(4)                    = 0
[pid  7673] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7673] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7672] <... futex resumed>)        = 0
[pid  7672] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7672] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7672] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7672] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7673] <... futex resumed>)        = 0
[pid  7672] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7673] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7672] <... clone resumed>, parent_tid=[2592], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2592
[pid  7672] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7672] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7674 attached
 <unfinished ...>
[pid  7674] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7673] <... mkdirat resumed>)      = 0
[pid  7674] <... set_robust_list resumed>) = 0
[pid  7673] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7673] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7674] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7674] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7672] <... futex resumed>)        = 0
[pid  7672] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7672] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7673] <... futex resumed>)        = 0
[pid  7673] creat("./file0", 0406 <unfinished ...>
[pid  7674] <... futex resumed>)        = 1
[pid  7674] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7673] <... creat resumed>)        = 4
[pid  7673] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7672] <... futex resumed>)        = 0
[pid  7672] close(3)                    = 0
[pid  7672] close(4)                    = 0
[pid  7672] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7672] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7672] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7672] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7672] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7673] <... futex resumed>)        = 1
[  188.591909][ T7673] loop0: detected capacity change from 0 to 4096
[pid  7672] close(10 <unfinished ...>
[pid  7673] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7672] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7672] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7672] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7672] exit_group(0 <unfinished ...>
[pid  7674] <... futex resumed>)        = ?
[pid  7673] <... futex resumed>)        = ?
[pid  7672] <... exit_group resumed>)   = ?
[pid  7674] +++ exited with 0 +++
[pid  7673] +++ exited with 0 +++
[pid  7672] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2590, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./863", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./863", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./863/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./863/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./863/binderfs")    = 0
[pid  5067] umount2("./863/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./863/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./863/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./863/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./863/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./863/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./863")              = 0
[pid  5067] mkdir("./864", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2593
./strace-static-x86_64: Process 7675 attached
[pid  7675] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7675] chdir("./864")              = 0
[pid  7675] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7675] setpgid(0, 0)               = 0
[pid  7675] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7675] write(3, "1000", 4)         = 4
[pid  7675] close(3)                    = 0
[pid  7675] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7675] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7675] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7675] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7675] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2594], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2594
[pid  7675] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7675] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7676 attached
 <unfinished ...>
[pid  7676] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7676] memfd_create("syzkaller", 0) = 3
[pid  7676] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7676] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7676] munmap(0x7ff042e09000, 2097152) = 0
[pid  7676] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7676] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7676] close(3)                    = 0
[pid  7676] mkdir("./file0", 0777)      = 0
[pid  7676] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7676] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7676] chdir("./file0")            = 0
[pid  7676] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7676] close(4)                    = 0
[pid  7676] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7675] <... futex resumed>)        = 0
[pid  7675] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7675] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7676] <... futex resumed>)        = 1
[pid  7675] <... futex resumed>)        = 0
[pid  7675] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7676] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7675] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7675] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7675] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2595], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2595
[pid  7675] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7675] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7676] <... mkdirat resumed>)      = 0
[pid  7676] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7676] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7677 attached
 <unfinished ...>
[pid  7677] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7677] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[  188.740867][ T7676] loop0: detected capacity change from 0 to 4096
[pid  7677] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7675] <... futex resumed>)        = 0
[pid  7677] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7675] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7675] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7676] <... futex resumed>)        = 0
[pid  7676] creat("./file0", 0406)      = 4
[pid  7676] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7675] <... futex resumed>)        = 0
[pid  7676] <... futex resumed>)        = 1
[pid  7676] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7675] close(3)                    = 0
[pid  7675] close(4)                    = 0
[pid  7675] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7675] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7675] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7675] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7675] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7675] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7675] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7675] exit_group(0 <unfinished ...>
[pid  7677] <... futex resumed>)        = ?
[pid  7676] <... futex resumed>)        = ?
[pid  7675] <... exit_group resumed>)   = ?
[pid  7677] +++ exited with 0 +++
[pid  7676] +++ exited with 0 +++
[pid  7675] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2593, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./864", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./864", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./864/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./864/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./864/binderfs")    = 0
[pid  5067] umount2("./864/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./864/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./864/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./864/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./864/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./864/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./864")              = 0
[pid  5067] mkdir("./865", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2596
./strace-static-x86_64: Process 7678 attached
[pid  7678] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7678] chdir("./865")              = 0
[pid  7678] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7678] setpgid(0, 0)               = 0
[pid  7678] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7678] write(3, "1000", 4)         = 4
[pid  7678] close(3)                    = 0
[pid  7678] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7678] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7678] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7678] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7678] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2597], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2597
[pid  7678] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7678] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7679 attached
 <unfinished ...>
[pid  7679] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7679] memfd_create("syzkaller", 0) = 3
[pid  7679] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7679] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7679] munmap(0x7ff042e09000, 2097152) = 0
[pid  7679] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7679] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7679] close(3)                    = 0
[pid  7679] mkdir("./file0", 0777)      = 0
[pid  7679] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7679] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7679] chdir("./file0")            = 0
[pid  7679] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7679] close(4)                    = 0
[pid  7679] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7678] <... futex resumed>)        = 0
[pid  7678] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7678] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7678] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7678] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7678] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2598], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2598
[pid  7678] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7678] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7680 attached
 <unfinished ...>
[pid  7680] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7679] <... futex resumed>)        = 1
[pid  7680] <... set_robust_list resumed>) = 0
[pid  7679] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[  188.899012][ T7679] loop0: detected capacity change from 0 to 4096
[pid  7680] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7679] <... mkdirat resumed>)      = 0
[pid  7680] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7679] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7680] <... futex resumed>)        = 1
[pid  7679] <... futex resumed>)        = 0
[pid  7678] <... futex resumed>)        = 0
[pid  7678] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7680] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7679] creat("./file0", 0406 <unfinished ...>
[pid  7678] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7679] <... creat resumed>)        = 4
[pid  7679] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7678] <... futex resumed>)        = 0
[pid  7678] close(3)                    = 0
[pid  7678] close(4)                    = 0
[pid  7678] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7678] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7678] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7678] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7678] close(9 <unfinished ...>
[pid  7679] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7678] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7678] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7678] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7678] exit_group(0)               = ?
[pid  7680] <... futex resumed>)        = ?
[pid  7679] <... futex resumed>)        = ?
[pid  7680] +++ exited with 0 +++
[pid  7679] +++ exited with 0 +++
[pid  7678] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2596, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./865", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./865", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./865/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./865/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./865/binderfs")    = 0
[pid  5067] umount2("./865/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./865/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./865/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./865/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./865/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./865/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./865")              = 0
[pid  5067] mkdir("./866", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2599
./strace-static-x86_64: Process 7681 attached
[pid  7681] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7681] chdir("./866")              = 0
[pid  7681] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7681] setpgid(0, 0)               = 0
[pid  7681] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7681] write(3, "1000", 4)         = 4
[pid  7681] close(3)                    = 0
[pid  7681] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7681] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7681] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7681] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7681] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7682 attached
 <unfinished ...>
[pid  7682] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7682] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7681] <... clone resumed>, parent_tid=[2600], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2600
[pid  7681] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7681] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7682] <... futex resumed>)        = 0
[pid  7682] memfd_create("syzkaller", 0) = 3
[pid  7682] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7682] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7682] munmap(0x7ff042e09000, 2097152) = 0
[pid  7682] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7682] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7682] close(3)                    = 0
[pid  7682] mkdir("./file0", 0777)      = 0
[pid  7682] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7682] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7682] chdir("./file0")            = 0
[pid  7682] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7682] close(4)                    = 0
[pid  7682] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7682] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7681] <... futex resumed>)        = 0
[pid  7681] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7681] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7681] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7682] <... futex resumed>)        = 0
[pid  7681] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7681] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7681] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7682] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7681] <... clone resumed>, parent_tid=[2601], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2601
[pid  7681] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7681] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7683 attached
 <unfinished ...>
[pid  7683] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7682] <... mkdirat resumed>)      = 0
[pid  7683] <... set_robust_list resumed>) = 0
[pid  7683] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7683] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7681] <... futex resumed>)        = 0
[pid  7681] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7681] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7683] <... futex resumed>)        = 1
[pid  7683] creat("./file0", 0406 <unfinished ...>
[pid  7682] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7682] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7683] <... creat resumed>)        = 4
[pid  7683] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7681] <... futex resumed>)        = 0
[pid  7681] close(3)                    = 0
[pid  7681] close(4)                    = 0
[pid  7681] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7681] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7681] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7681] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7681] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7681] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7681] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7681] exit_group(0 <unfinished ...>
[pid  7682] <... futex resumed>)        = ?
[pid  7681] <... exit_group resumed>)   = ?
[pid  7682] +++ exited with 0 +++
[pid  7683] <... futex resumed>)        = ?
[pid  7683] +++ exited with 0 +++
[pid  7681] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2599, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[  189.086429][ T7682] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./866", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./866", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./866/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./866/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./866/binderfs")    = 0
[pid  5067] umount2("./866/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./866/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./866/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./866/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./866/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./866/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./866")              = 0
[pid  5067] mkdir("./867", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2602
./strace-static-x86_64: Process 7684 attached
[pid  7684] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7684] chdir("./867")              = 0
[pid  7684] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7684] setpgid(0, 0)               = 0
[pid  7684] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7684] write(3, "1000", 4)         = 4
[pid  7684] close(3)                    = 0
[pid  7684] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7684] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7684] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7684] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7684] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7685 attached
, parent_tid=[2603], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2603
[pid  7685] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7684] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7685] <... set_robust_list resumed>) = 0
[pid  7684] <... futex resumed>)        = 0
[pid  7684] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7685] memfd_create("syzkaller", 0) = 3
[pid  7685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7685] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7685] munmap(0x7ff042e09000, 2097152) = 0
[pid  7685] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7685] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7685] close(3)                    = 0
[pid  7685] mkdir("./file0", 0777)      = 0
[pid  7685] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7685] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7685] chdir("./file0")            = 0
[pid  7685] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7685] close(4)                    = 0
[pid  7685] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7684] <... futex resumed>)        = 0
[pid  7684] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7684] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7684] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7685] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7684] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7684] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7684] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2604], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2604
[pid  7684] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7684] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7685] <... mkdirat resumed>)      = 0
[pid  7685] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7686 attached
[pid  7686] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7686] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7686] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7684] <... futex resumed>)        = 0
[pid  7684] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7684] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7686] <... futex resumed>)        = 1
[pid  7686] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[  189.232758][ T7685] loop0: detected capacity change from 0 to 4096
[pid  7685] creat("./file0", 0406)      = 4
[pid  7685] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7684] <... futex resumed>)        = 0
[pid  7685] <... futex resumed>)        = 1
[pid  7684] close(3)                    = 0
[pid  7684] close(4)                    = 0
[pid  7684] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7685] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7684] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7684] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7684] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7684] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7684] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7684] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7684] exit_group(0 <unfinished ...>
[pid  7686] <... futex resumed>)        = ?
[pid  7685] <... futex resumed>)        = ?
[pid  7684] <... exit_group resumed>)   = ?
[pid  7686] +++ exited with 0 +++
[pid  7685] +++ exited with 0 +++
[pid  7684] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2602, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./867", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./867", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./867/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./867/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./867/binderfs")    = 0
[pid  5067] umount2("./867/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./867/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./867/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./867/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./867/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./867/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./867")              = 0
[pid  5067] mkdir("./868", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2605
./strace-static-x86_64: Process 7687 attached
[pid  7687] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7687] chdir("./868")              = 0
[pid  7687] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7687] setpgid(0, 0)               = 0
[pid  7687] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7687] write(3, "1000", 4)         = 4
[pid  7687] close(3)                    = 0
[pid  7687] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7687] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7687] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7687] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7687] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7688 attached
, parent_tid=[2606], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2606
[pid  7688] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7687] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7687] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7688] <... set_robust_list resumed>) = 0
[pid  7688] memfd_create("syzkaller", 0) = 3
[pid  7688] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7688] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7688] munmap(0x7ff042e09000, 2097152) = 0
[pid  7688] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7688] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7688] close(3)                    = 0
[pid  7688] mkdir("./file0", 0777)      = 0
[pid  7688] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7688] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7688] chdir("./file0")            = 0
[pid  7688] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7688] close(4)                    = 0
[pid  7688] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7687] <... futex resumed>)        = 0
[pid  7687] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7687] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7687] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7687] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7687] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7689 attached
, parent_tid=[2607], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2607
[pid  7689] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7687] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7689] <... set_robust_list resumed>) = 0
[pid  7687] <... futex resumed>)        = 0
[pid  7689] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7687] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7689] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7688] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7689] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7687] <... futex resumed>)        = 0
[pid  7688] <... mkdirat resumed>)      = 0
[pid  7687] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7687] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7689] creat("./file0", 0406 <unfinished ...>
[pid  7688] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7689] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7688] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7689] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7687] <... futex resumed>)        = 0
[pid  7687] close(3)                    = 0
[pid  7687] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7687] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7687] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7687] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7687] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7687] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7687] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(11 <unfinished ...>
[pid  7689] <... futex resumed>)        = 1
[pid  7687] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7689] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7687] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(21)                   = -1 EBADF (Bad file descriptor)
[  189.390988][ T7688] loop0: detected capacity change from 0 to 4096
[pid  7687] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7687] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7687] exit_group(0 <unfinished ...>
[pid  7689] <... futex resumed>)        = ?
[pid  7688] <... futex resumed>)        = ?
[pid  7687] <... exit_group resumed>)   = ?
[pid  7689] +++ exited with 0 +++
[pid  7688] +++ exited with 0 +++
[pid  7687] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2605, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./868", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./868", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./868/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./868/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./868/binderfs")    = 0
[pid  5067] umount2("./868/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./868/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./868/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./868/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./868/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./868/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./868")              = 0
[pid  5067] mkdir("./869", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2608
./strace-static-x86_64: Process 7690 attached
[pid  7690] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7690] chdir("./869")              = 0
[pid  7690] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7690] setpgid(0, 0)               = 0
[pid  7690] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7690] write(3, "1000", 4)         = 4
[pid  7690] close(3)                    = 0
[pid  7690] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7690] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7690] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7690] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7690] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7691 attached
, parent_tid=[2609], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2609
[pid  7690] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7690] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7691] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7691] memfd_create("syzkaller", 0) = 3
[pid  7691] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7691] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7691] munmap(0x7ff042e09000, 2097152) = 0
[pid  7691] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7691] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7691] close(3)                    = 0
[pid  7691] mkdir("./file0", 0777)      = 0
[pid  7691] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7691] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7691] chdir("./file0")            = 0
[pid  7691] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7691] close(4)                    = 0
[pid  7691] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7690] <... futex resumed>)        = 0
[pid  7691] <... futex resumed>)        = 1
[pid  7690] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7691] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7690] <... futex resumed>)        = 0
[pid  7690] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7690] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7690] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7691] <... mkdirat resumed>)      = 0
[pid  7690] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7692 attached
 <unfinished ...>
[pid  7691] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7690] <... clone resumed>, parent_tid=[2610], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2610
[pid  7691] <... futex resumed>)        = 0
[pid  7690] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7691] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7690] <... futex resumed>)        = 0
[pid  7690] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7692] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7692] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7692] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7690] <... futex resumed>)        = 0
[pid  7692] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7690] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7691] <... futex resumed>)        = 0
[pid  7690] <... futex resumed>)        = 1
[pid  7690] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7691] creat("./file0", 0406)      = 4
[pid  7691] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7690] <... futex resumed>)        = 0
[pid  7690] close(3)                    = 0
[pid  7690] close(4)                    = 0
[pid  7690] close(5 <unfinished ...>
[pid  7691] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7690] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7690] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7690] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7690] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7690] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7690] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(15)                   = -1 EBADF (Bad file descriptor)
[  189.537712][ T7691] loop0: detected capacity change from 0 to 4096
[pid  7690] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7690] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7690] exit_group(0 <unfinished ...>
[pid  7692] <... futex resumed>)        = ?
[pid  7691] <... futex resumed>)        = ?
[pid  7690] <... exit_group resumed>)   = ?
[pid  7692] +++ exited with 0 +++
[pid  7691] +++ exited with 0 +++
[pid  7690] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2608, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./869", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./869", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./869/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./869/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./869/binderfs")    = 0
[pid  5067] umount2("./869/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./869/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./869/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./869/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./869/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./869/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./869")              = 0
[pid  5067] mkdir("./870", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2611
./strace-static-x86_64: Process 7693 attached
[pid  7693] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7693] chdir("./870")              = 0
[pid  7693] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7693] setpgid(0, 0)               = 0
[pid  7693] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7693] write(3, "1000", 4)         = 4
[pid  7693] close(3)                    = 0
[pid  7693] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7693] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7693] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7693] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7693] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2612], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2612
[pid  7693] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7693] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7694 attached
 <unfinished ...>
[pid  7694] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7694] memfd_create("syzkaller", 0) = 3
[pid  7694] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7694] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7694] munmap(0x7ff042e09000, 2097152) = 0
[pid  7694] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7694] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7694] close(3)                    = 0
[pid  7694] mkdir("./file0", 0777)      = 0
[pid  7694] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7694] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7694] chdir("./file0")            = 0
[pid  7694] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7694] close(4)                    = 0
[pid  7694] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7693] <... futex resumed>)        = 0
[pid  7693] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7693] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7693] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7693] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7693] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2613], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2613
[pid  7693] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7693] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7694] <... futex resumed>)        = 1
[pid  7694] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7694] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7695 attached
[pid  7695] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7694] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7695] <... set_robust_list resumed>) = 0
[pid  7695] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7695] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7693] <... futex resumed>)        = 0
[pid  7693] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7693] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7695] <... futex resumed>)        = 1
[pid  7695] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7694] <... futex resumed>)        = 0
[pid  7694] creat("./file0", 0406)      = 4
[pid  7694] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7693] <... futex resumed>)        = 0
[pid  7693] close(3 <unfinished ...>
[pid  7694] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7693] <... close resumed>)        = 0
[pid  7693] close(4)                    = 0
[pid  7693] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7693] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7693] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7693] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7693] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7693] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(11)                   = -1 EBADF (Bad file descriptor)
[  189.682899][ T7694] loop0: detected capacity change from 0 to 4096
[pid  7693] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7693] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7693] exit_group(0 <unfinished ...>
[pid  7695] <... futex resumed>)        = ?
[pid  7694] <... futex resumed>)        = ?
[pid  7693] <... exit_group resumed>)   = ?
[pid  7695] +++ exited with 0 +++
[pid  7694] +++ exited with 0 +++
[pid  7693] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2611, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./870", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./870", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./870/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./870/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./870/binderfs")    = 0
[pid  5067] umount2("./870/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./870/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./870/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./870/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./870/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./870/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./870")              = 0
[pid  5067] mkdir("./871", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2614
./strace-static-x86_64: Process 7696 attached
[pid  7696] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7696] chdir("./871")              = 0
[pid  7696] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7696] setpgid(0, 0)               = 0
[pid  7696] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7696] write(3, "1000", 4)         = 4
[pid  7696] close(3)                    = 0
[pid  7696] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7696] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7696] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7696] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7696] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7697 attached
 <unfinished ...>
[pid  7697] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7696] <... clone resumed>, parent_tid=[2615], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2615
[pid  7697] <... set_robust_list resumed>) = 0
[pid  7697] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7696] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7697] <... futex resumed>)        = 0
[pid  7696] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7697] memfd_create("syzkaller", 0) = 3
[pid  7697] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7697] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7697] munmap(0x7ff042e09000, 2097152) = 0
[pid  7697] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7697] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7697] close(3)                    = 0
[pid  7697] mkdir("./file0", 0777)      = 0
[pid  7697] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7697] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7697] chdir("./file0")            = 0
[pid  7697] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7697] close(4)                    = 0
[pid  7697] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7696] <... futex resumed>)        = 0
[pid  7696] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7696] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7696] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7697] <... futex resumed>)        = 1
[pid  7696] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7696] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7696] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2616], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2616
[pid  7696] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7696] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7698 attached
 <unfinished ...>
[pid  7698] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7698] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7697] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7698] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7698] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7696] <... futex resumed>)        = 0
[pid  7696] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7697] <... mkdirat resumed>)      = 0
[pid  7696] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7697] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7698] creat("./file0", 0406 <unfinished ...>
[pid  7697] <... futex resumed>)        = 0
[pid  7698] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7697] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7698] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7696] <... futex resumed>)        = 0
[pid  7696] close(3)                    = 0
[pid  7696] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7696] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7696] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7696] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7696] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7696] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7696] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7698] <... futex resumed>)        = 1
[pid  7696] close(22 <unfinished ...>
[pid  7698] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7696] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[  189.837141][ T7697] loop0: detected capacity change from 0 to 4096
[pid  7696] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7696] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7696] exit_group(0 <unfinished ...>
[pid  7698] <... futex resumed>)        = ?
[pid  7696] <... exit_group resumed>)   = ?
[pid  7698] +++ exited with 0 +++
[pid  7697] <... futex resumed>)        = ?
[pid  7697] +++ exited with 0 +++
[pid  7696] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2614, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./871", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./871", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./871/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./871/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./871/binderfs")    = 0
[pid  5067] umount2("./871/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./871/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./871/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./871/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./871/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./871/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./871")              = 0
[pid  5067] mkdir("./872", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2617
./strace-static-x86_64: Process 7699 attached
[pid  7699] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7699] chdir("./872")              = 0
[pid  7699] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7699] setpgid(0, 0)               = 0
[pid  7699] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7699] write(3, "1000", 4)         = 4
[pid  7699] close(3)                    = 0
[pid  7699] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7699] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7699] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7699] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7699] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7700 attached
, parent_tid=[2618], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2618
[pid  7700] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7699] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7700] <... set_robust_list resumed>) = 0
[pid  7699] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7700] memfd_create("syzkaller", 0) = 3
[pid  7700] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7700] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7700] munmap(0x7ff042e09000, 2097152) = 0
[pid  7700] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7700] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7700] close(3)                    = 0
[pid  7700] mkdir("./file0", 0777)      = 0
[pid  7700] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7700] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7700] chdir("./file0")            = 0
[pid  7700] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7700] close(4)                    = 0
[pid  7700] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7700] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7699] <... futex resumed>)        = 0
[pid  7699] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7699] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7699] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7699] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7699] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2619], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2619
[pid  7699] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7699] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7700] <... futex resumed>)        = 0
[pid  7700] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7701 attached
 <unfinished ...>
[pid  7701] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7701] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7700] <... mkdirat resumed>)      = 0
[pid  7701] <... chdir resumed>)        = 0
[pid  7701] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7699] <... futex resumed>)        = 0
[pid  7701] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7699] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7701] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7699] <... futex resumed>)        = 0
[pid  7701] creat("./file0", 0406 <unfinished ...>
[pid  7699] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7700] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7700] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7701] <... creat resumed>)        = 4
[pid  7701] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7699] <... futex resumed>)        = 0
[pid  7701] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7699] close(3)                    = 0
[pid  7699] close(4)                    = 0
[pid  7699] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7699] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7699] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7699] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7699] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7699] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(26)                   = -1 EBADF (Bad file descriptor)
[  189.986966][ T7700] loop0: detected capacity change from 0 to 4096
[pid  7699] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7699] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7699] exit_group(0 <unfinished ...>
[pid  7701] <... futex resumed>)        = ?
[pid  7700] <... futex resumed>)        = ?
[pid  7699] <... exit_group resumed>)   = ?
[pid  7701] +++ exited with 0 +++
[pid  7700] +++ exited with 0 +++
[pid  7699] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2617, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./872", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./872", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./872/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./872/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./872/binderfs")    = 0
[pid  5067] umount2("./872/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./872/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./872/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./872/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./872/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./872/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./872")              = 0
[pid  5067] mkdir("./873", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2620
./strace-static-x86_64: Process 7702 attached
[pid  7702] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7702] chdir("./873")              = 0
[pid  7702] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7702] setpgid(0, 0)               = 0
[pid  7702] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7702] write(3, "1000", 4)         = 4
[pid  7702] close(3)                    = 0
[pid  7702] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7702] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7702] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7702] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7702] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2621], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2621
[pid  7702] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7702] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7703 attached
 <unfinished ...>
[pid  7703] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7703] memfd_create("syzkaller", 0) = 3
[pid  7703] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7703] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7703] munmap(0x7ff042e09000, 2097152) = 0
[pid  7703] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7703] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7703] close(3)                    = 0
[pid  7703] mkdir("./file0", 0777)      = 0
[pid  7703] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7703] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7703] chdir("./file0")            = 0
[pid  7703] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7703] close(4)                    = 0
[pid  7703] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7702] <... futex resumed>)        = 0
[pid  7702] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7702] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7702] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7702] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7702] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2622], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2622
[pid  7702] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7702] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7703] <... futex resumed>)        = 1
[pid  7703] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7704 attached
 <unfinished ...>
[pid  7704] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7703] <... mkdirat resumed>)      = 0
[pid  7703] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7703] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7704] <... set_robust_list resumed>) = 0
[pid  7704] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7704] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7702] <... futex resumed>)        = 0
[pid  7702] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7702] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7703] <... futex resumed>)        = 0
[pid  7703] creat("./file0", 0406 <unfinished ...>
[pid  7704] <... futex resumed>)        = 1
[pid  7704] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7703] <... creat resumed>)        = 4
[pid  7703] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7702] <... futex resumed>)        = 0
[pid  7702] close(3)                    = 0
[pid  7702] close(4)                    = 0
[pid  7702] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7702] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7702] close(7 <unfinished ...>
[pid  7703] <... futex resumed>)        = 1
[pid  7702] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7703] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7702] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7702] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7702] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(18)                   = -1 EBADF (Bad file descriptor)
[  190.136137][ T7703] loop0: detected capacity change from 0 to 4096
[pid  7702] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7702] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7702] exit_group(0 <unfinished ...>
[pid  7704] <... futex resumed>)        = ?
[pid  7703] <... futex resumed>)        = ?
[pid  7702] <... exit_group resumed>)   = ?
[pid  7704] +++ exited with 0 +++
[pid  7703] +++ exited with 0 +++
[pid  7702] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2620, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./873", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./873", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./873/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./873/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./873/binderfs")    = 0
[pid  5067] umount2("./873/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./873/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./873/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./873/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./873/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./873/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./873")              = 0
[pid  5067] mkdir("./874", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2623
./strace-static-x86_64: Process 7705 attached
[pid  7705] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7705] chdir("./874")              = 0
[pid  7705] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7705] setpgid(0, 0)               = 0
[pid  7705] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7705] write(3, "1000", 4)         = 4
[pid  7705] close(3)                    = 0
[pid  7705] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7705] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7705] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7705] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7705] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2624], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2624
./strace-static-x86_64: Process 7706 attached
[pid  7705] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7705] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7706] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7706] memfd_create("syzkaller", 0) = 3
[pid  7706] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7706] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7706] munmap(0x7ff042e09000, 2097152) = 0
[pid  7706] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7706] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7706] close(3)                    = 0
[pid  7706] mkdir("./file0", 0777)      = 0
[pid  7706] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7706] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7706] chdir("./file0")            = 0
[pid  7706] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7706] close(4)                    = 0
[pid  7706] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7705] <... futex resumed>)        = 0
[pid  7705] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7705] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7705] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7705] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7705] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7707 attached
 <unfinished ...>
[pid  7707] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7705] <... clone resumed>, parent_tid=[2625], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2625
[pid  7707] <... set_robust_list resumed>) = 0
[pid  7705] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7707] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7705] <... futex resumed>)        = 0
[pid  7705] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7707] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7706] <... futex resumed>)        = 1
[pid  7706] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7707] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7705] <... futex resumed>)        = 0
[pid  7707] <... futex resumed>)        = 1
[pid  7705] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7705] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7707] creat("./file0", 0406 <unfinished ...>
[pid  7706] <... mkdirat resumed>)      = 0
[pid  7707] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7707] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7706] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7705] <... futex resumed>)        = 0
[pid  7707] <... futex resumed>)        = 1
[pid  7705] close(3)                    = 0
[pid  7705] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7705] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7705] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7705] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7705] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7705] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7705] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(18 <unfinished ...>
[pid  7707] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7706] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7705] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7705] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7705] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7705] exit_group(0 <unfinished ...>
[pid  7706] <... futex resumed>)        = ?
[pid  7707] <... futex resumed>)        = ?
[pid  7705] <... exit_group resumed>)   = ?
[pid  7706] +++ exited with 0 +++
[pid  7707] +++ exited with 0 +++
[pid  7705] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2623, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./874", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  190.281863][ T7706] loop0: detected capacity change from 0 to 4096
[pid  5067] openat(AT_FDCWD, "./874", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./874/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./874/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./874/binderfs")    = 0
[pid  5067] umount2("./874/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./874/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./874/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./874/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./874/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./874/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./874")              = 0
[pid  5067] mkdir("./875", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2626
./strace-static-x86_64: Process 7708 attached
[pid  7708] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7708] chdir("./875")              = 0
[pid  7708] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7708] setpgid(0, 0)               = 0
[pid  7708] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7708] write(3, "1000", 4)         = 4
[pid  7708] close(3)                    = 0
[pid  7708] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7708] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7708] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7708] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7708] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2627], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2627
[pid  7708] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7708] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7709 attached
 <unfinished ...>
[pid  7709] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7709] memfd_create("syzkaller", 0) = 3
[pid  7709] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7709] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7709] munmap(0x7ff042e09000, 2097152) = 0
[pid  7709] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7709] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7709] close(3)                    = 0
[pid  7709] mkdir("./file0", 0777)      = 0
[pid  7709] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7709] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7709] chdir("./file0")            = 0
[pid  7709] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7709] close(4)                    = 0
[pid  7709] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7709] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7708] <... futex resumed>)        = 0
[pid  7708] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7708] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7708] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7708] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7708] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2628], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2628
[pid  7708] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7708] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7709] <... futex resumed>)        = 0
[pid  7709] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7709] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7709] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7710 attached
 <unfinished ...>
[pid  7710] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7710] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7710] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7708] <... futex resumed>)        = 0
[  190.426578][ T7709] loop0: detected capacity change from 0 to 4096
[pid  7708] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7710] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7709] <... futex resumed>)        = 0
[pid  7708] <... futex resumed>)        = 1
[pid  7708] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7709] creat("./file0", 0406)      = 4
[pid  7709] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7708] <... futex resumed>)        = 0
[pid  7708] close(3)                    = 0
[pid  7709] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7708] close(4)                    = 0
[pid  7708] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7708] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7708] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7708] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7708] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7708] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7708] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7708] exit_group(0 <unfinished ...>
[pid  7710] <... futex resumed>)        = ?
[pid  7709] <... futex resumed>)        = ?
[pid  7708] <... exit_group resumed>)   = ?
[pid  7710] +++ exited with 0 +++
[pid  7709] +++ exited with 0 +++
[pid  7708] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2626, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./875", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./875", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./875/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./875/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./875/binderfs")    = 0
[pid  5067] umount2("./875/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./875/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./875/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./875/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./875/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./875/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./875")              = 0
[pid  5067] mkdir("./876", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2629
./strace-static-x86_64: Process 7711 attached
[pid  7711] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7711] chdir("./876")              = 0
[pid  7711] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7711] setpgid(0, 0)               = 0
[pid  7711] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7711] write(3, "1000", 4)         = 4
[pid  7711] close(3)                    = 0
[pid  7711] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7711] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7711] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7711] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7711] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7712 attached
 <unfinished ...>
[pid  7712] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7712] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7711] <... clone resumed>, parent_tid=[2630], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2630
[pid  7711] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7712] <... futex resumed>)        = 0
[pid  7711] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7712] memfd_create("syzkaller", 0) = 3
[pid  7712] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7712] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7712] munmap(0x7ff042e09000, 2097152) = 0
[pid  7712] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7712] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7712] close(3)                    = 0
[pid  7712] mkdir("./file0", 0777)      = 0
[pid  7712] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7712] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7712] chdir("./file0")            = 0
[pid  7712] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7712] close(4)                    = 0
[pid  7712] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7712] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7711] <... futex resumed>)        = 0
[pid  7711] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7712] <... futex resumed>)        = 0
[pid  7712] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7711] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7711] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7711] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7711] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7713 attached
, parent_tid=[2631], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2631
[pid  7711] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7711] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7713] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7712] <... mkdirat resumed>)      = 0
[pid  7712] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7712] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7713] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7713] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7711] <... futex resumed>)        = 0
[pid  7713] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7711] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7712] <... futex resumed>)        = 0
[pid  7711] <... futex resumed>)        = 1
[pid  7711] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7712] creat("./file0", 0406)      = 4
[pid  7712] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7711] <... futex resumed>)        = 0
[pid  7712] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7711] close(3)                    = 0
[pid  7711] close(4)                    = 0
[pid  7711] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7711] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7711] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7711] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7711] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7711] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7711] close(28)                   = -1 EBADF (Bad file descriptor)
[  190.583983][ T7712] loop0: detected capacity change from 0 to 4096
[pid  7711] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7711] exit_group(0 <unfinished ...>
[pid  7713] <... futex resumed>)        = ?
[pid  7712] <... futex resumed>)        = ?
[pid  7711] <... exit_group resumed>)   = ?
[pid  7713] +++ exited with 0 +++
[pid  7712] +++ exited with 0 +++
[pid  7711] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2629, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./876", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./876", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./876/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./876/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./876/binderfs")    = 0
[pid  5067] umount2("./876/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./876/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./876/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./876/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./876/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./876/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./876")              = 0
[pid  5067] mkdir("./877", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2632
./strace-static-x86_64: Process 7714 attached
[pid  7714] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7714] chdir("./877")              = 0
[pid  7714] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7714] setpgid(0, 0)               = 0
[pid  7714] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7714] write(3, "1000", 4)         = 4
[pid  7714] close(3)                    = 0
[pid  7714] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7714] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7714] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7714] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7714] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7715 attached
, parent_tid=[2633], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2633
[pid  7715] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7714] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7714] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7715] memfd_create("syzkaller", 0) = 3
[pid  7715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7715] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7715] munmap(0x7ff042e09000, 2097152) = 0
[pid  7715] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7715] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7715] close(3)                    = 0
[pid  7715] mkdir("./file0", 0777)      = 0
[pid  7715] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7715] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7715] chdir("./file0")            = 0
[pid  7715] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7715] close(4)                    = 0
[pid  7715] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7715] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7714] <... futex resumed>)        = 0
[pid  7714] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7715] <... futex resumed>)        = 0
[pid  7714] <... futex resumed>)        = 1
[pid  7715] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7714] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7714] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7714] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7714] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2634], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2634
[pid  7714] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7714] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7716 attached
 <unfinished ...>
[pid  7716] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7715] <... mkdirat resumed>)      = 0
[pid  7715] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7716] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7716] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7714] <... futex resumed>)        = 0
[pid  7714] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7714] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7716] <... futex resumed>)        = 1
[pid  7716] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7714] <... futex resumed>)        = 0
[  190.722187][ T7715] loop0: detected capacity change from 0 to 4096
[pid  7714] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=44000000} <unfinished ...>
[pid  7715] <... futex resumed>)        = 1
[pid  7715] creat("./file0", 0406)      = 4
[pid  7715] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7714] <... futex resumed>)        = 0
[pid  7714] close(3)                    = 0
[pid  7714] close(4)                    = 0
[pid  7714] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7714] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7714] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7714] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7714] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7714] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7714] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7714] exit_group(0 <unfinished ...>
[pid  7716] <... futex resumed>)        = ?
[pid  7714] <... exit_group resumed>)   = ?
[pid  7716] +++ exited with 0 +++
[pid  7715] <... futex resumed>)        = ?
[pid  7715] +++ exited with 0 +++
[pid  7714] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2632, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./877", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./877", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./877/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./877/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./877/binderfs")    = 0
[pid  5067] umount2("./877/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./877/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./877/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./877/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./877/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./877/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./877")              = 0
[pid  5067] mkdir("./878", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2635
./strace-static-x86_64: Process 7717 attached
[pid  7717] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7717] chdir("./878")              = 0
[pid  7717] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7717] setpgid(0, 0)               = 0
[pid  7717] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7717] write(3, "1000", 4)         = 4
[pid  7717] close(3)                    = 0
[pid  7717] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7717] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7717] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7717] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7717] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2636], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2636
[pid  7717] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7717] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7718 attached
 <unfinished ...>
[pid  7718] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7718] memfd_create("syzkaller", 0) = 3
[pid  7718] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7718] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7718] munmap(0x7ff042e09000, 2097152) = 0
[pid  7718] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7718] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7718] close(3)                    = 0
[pid  7718] mkdir("./file0", 0777)      = 0
[pid  7718] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7718] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7718] chdir("./file0")            = 0
[pid  7718] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7718] close(4)                    = 0
[pid  7718] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7717] <... futex resumed>)        = 0
[pid  7718] <... futex resumed>)        = 1
[pid  7717] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7718] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7717] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7717] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7717] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7717] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2637], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2637
[pid  7717] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7717] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7718] <... mkdirat resumed>)      = 0
[pid  7718] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7719 attached
) = 0
[pid  7719] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7718] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7719] <... set_robust_list resumed>) = 0
[pid  7719] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7719] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7717] <... futex resumed>)        = 0
[pid  7717] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7718] <... futex resumed>)        = 0
[pid  7717] <... futex resumed>)        = 1
[pid  7718] creat("./file0", 0406 <unfinished ...>
[pid  7717] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7719] <... futex resumed>)        = 1
[pid  7719] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7718] <... creat resumed>)        = 4
[pid  7718] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7717] <... futex resumed>)        = 0
[pid  7717] close(3 <unfinished ...>
[pid  7718] <... futex resumed>)        = 1
[pid  7717] <... close resumed>)        = 0
[pid  7718] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7717] close(4)                    = 0
[pid  7717] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7717] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7717] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7717] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7717] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7717] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(13)                   = -1 EBADF (Bad file descriptor)
[  190.869010][ T7718] loop0: detected capacity change from 0 to 4096
[pid  7717] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7717] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7717] exit_group(0 <unfinished ...>
[pid  7719] <... futex resumed>)        = ?
[pid  7718] <... futex resumed>)        = ?
[pid  7717] <... exit_group resumed>)   = ?
[pid  7719] +++ exited with 0 +++
[pid  7718] +++ exited with 0 +++
[pid  7717] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2635, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./878", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./878", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./878/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./878/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./878/binderfs")    = 0
[pid  5067] umount2("./878/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./878/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./878/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./878/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./878/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./878/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./878")              = 0
[pid  5067] mkdir("./879", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2638
./strace-static-x86_64: Process 7720 attached
[pid  7720] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7720] chdir("./879")              = 0
[pid  7720] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7720] setpgid(0, 0)               = 0
[pid  7720] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7720] write(3, "1000", 4)         = 4
[pid  7720] close(3)                    = 0
[pid  7720] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7720] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7720] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7720] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7720] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7721 attached
, parent_tid=[2639], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2639
[pid  7720] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7720] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7721] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7721] memfd_create("syzkaller", 0) = 3
[pid  7721] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7721] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7721] munmap(0x7ff042e09000, 2097152) = 0
[pid  7721] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7721] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7721] close(3)                    = 0
[pid  7721] mkdir("./file0", 0777)      = 0
[pid  7721] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7721] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7721] chdir("./file0")            = 0
[pid  7721] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7721] close(4)                    = 0
[pid  7721] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7720] <... futex resumed>)        = 0
[pid  7720] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7720] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7720] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7720] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7720] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2640], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2640
[pid  7720] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7720] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7721] <... futex resumed>)        = 1
[pid  7721] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7722 attached
 <unfinished ...>
[pid  7722] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7722] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7722] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7721] <... mkdirat resumed>)      = 0
[pid  7721] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7721] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7722] <... futex resumed>)        = 1
[pid  7720] <... futex resumed>)        = 0
[pid  7720] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7720] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7721] <... futex resumed>)        = 0
[pid  7721] creat("./file0", 0406 <unfinished ...>
[pid  7722] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7721] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7721] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7720] <... futex resumed>)        = 0
[pid  7720] close(3)                    = 0
[pid  7720] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7720] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7720] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7720] close(7)                    = -1 EBADF (Bad file descriptor)
[  191.025265][ T7721] loop0: detected capacity change from 0 to 4096
[pid  7720] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7720] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7720] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7721] <... futex resumed>)        = 1
[pid  7720] close(16 <unfinished ...>
[pid  7721] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7720] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7720] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7720] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7720] exit_group(0 <unfinished ...>
[pid  7721] <... futex resumed>)        = ?
[pid  7720] <... exit_group resumed>)   = ?
[pid  7722] <... futex resumed>)        = ?
[pid  7721] +++ exited with 0 +++
[pid  7722] +++ exited with 0 +++
[pid  7720] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2638, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./879", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./879", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./879/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./879/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./879/binderfs")    = 0
[pid  5067] umount2("./879/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./879/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./879/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./879/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./879/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./879/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./879")              = 0
[pid  5067] mkdir("./880", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2641
./strace-static-x86_64: Process 7723 attached
[pid  7723] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7723] chdir("./880")              = 0
[pid  7723] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7723] setpgid(0, 0)               = 0
[pid  7723] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7723] write(3, "1000", 4)         = 4
[pid  7723] close(3)                    = 0
[pid  7723] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7723] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7723] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7723] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7723] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7724 attached
, parent_tid=[2642], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2642
[pid  7723] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7723] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7724] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7724] memfd_create("syzkaller", 0) = 3
[pid  7724] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7724] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7724] munmap(0x7ff042e09000, 2097152) = 0
[pid  7724] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7724] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7724] close(3)                    = 0
[pid  7724] mkdir("./file0", 0777)      = 0
[pid  7724] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7724] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7724] chdir("./file0")            = 0
[pid  7724] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7724] close(4)                    = 0
[pid  7724] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7723] <... futex resumed>)        = 0
[pid  7723] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7723] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7723] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7723] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7723] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2643], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2643
[pid  7723] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7723] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7724] <... futex resumed>)        = 1
[pid  7724] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7724] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7724] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7725 attached
 <unfinished ...>
[pid  7725] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7725] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7725] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7723] <... futex resumed>)        = 0
[pid  7723] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7723] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7724] <... futex resumed>)        = 0
[pid  7724] creat("./file0", 0406 <unfinished ...>
[pid  7725] <... futex resumed>)        = 1
[pid  7725] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7724] <... creat resumed>)        = 4
[pid  7724] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7723] <... futex resumed>)        = 0
[pid  7723] close(3)                    = 0
[pid  7723] close(4)                    = 0
[pid  7723] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7723] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7723] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7723] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7723] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7723] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7724] <... futex resumed>)        = 1
[pid  7723] close(17 <unfinished ...>
[pid  7724] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7723] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7723] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7723] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7723] exit_group(0 <unfinished ...>
[pid  7725] <... futex resumed>)        = ?
[pid  7724] <... futex resumed>)        = ?
[pid  7723] <... exit_group resumed>)   = ?
[pid  7725] +++ exited with 0 +++
[pid  7724] +++ exited with 0 +++
[pid  7723] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2641, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./880", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./880", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[  191.174311][ T7724] loop0: detected capacity change from 0 to 4096
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./880/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./880/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./880/binderfs")    = 0
[pid  5067] umount2("./880/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./880/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./880/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./880/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./880/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./880/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./880")              = 0
[pid  5067] mkdir("./881", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2644
./strace-static-x86_64: Process 7726 attached
[pid  7726] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7726] chdir("./881")              = 0
[pid  7726] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7726] setpgid(0, 0)               = 0
[pid  7726] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7726] write(3, "1000", 4)         = 4
[pid  7726] close(3)                    = 0
[pid  7726] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7726] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7726] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7726] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7726] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7727 attached
 <unfinished ...>
[pid  7727] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7726] <... clone resumed>, parent_tid=[2645], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2645
[pid  7727] <... set_robust_list resumed>) = 0
[pid  7726] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7726] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7727] memfd_create("syzkaller", 0) = 3
[pid  7727] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7727] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7727] munmap(0x7ff042e09000, 2097152) = 0
[pid  7727] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7727] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7727] close(3)                    = 0
[pid  7727] mkdir("./file0", 0777)      = 0
[pid  7727] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7727] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7727] chdir("./file0")            = 0
[pid  7727] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7727] close(4)                    = 0
[pid  7727] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7727] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7726] <... futex resumed>)        = 0
[pid  7726] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7726] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7726] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7726] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7726] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2646], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2646
[pid  7726] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7726] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7727] <... futex resumed>)        = 0
[pid  7727] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7728 attached
 <unfinished ...>
[pid  7728] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7728] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7727] <... mkdirat resumed>)      = 0
[pid  7727] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7727] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7728] <... chdir resumed>)        = 0
[pid  7728] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7726] <... futex resumed>)        = 0
[pid  7726] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7726] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7727] <... futex resumed>)        = 0
[pid  7727] creat("./file0", 0406 <unfinished ...>
[pid  7728] <... futex resumed>)        = 1
[pid  7728] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7727] <... creat resumed>)        = 4
[pid  7727] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7726] <... futex resumed>)        = 0
[pid  7726] close(3)                    = 0
[pid  7726] close(4)                    = 0
[pid  7726] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7726] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7726] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7726] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7726] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7726] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(17)                   = -1 EBADF (Bad file descriptor)
[  191.324008][ T7727] loop0: detected capacity change from 0 to 4096
[pid  7727] <... futex resumed>)        = 1
[pid  7726] close(18 <unfinished ...>
[pid  7727] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7726] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7726] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7726] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7726] exit_group(0 <unfinished ...>
[pid  7728] <... futex resumed>)        = ?
[pid  7727] <... futex resumed>)        = ?
[pid  7726] <... exit_group resumed>)   = ?
[pid  7728] +++ exited with 0 +++
[pid  7727] +++ exited with 0 +++
[pid  7726] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2644, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./881", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./881", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./881/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./881/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./881/binderfs")    = 0
[pid  5067] umount2("./881/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./881/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./881/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./881/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./881/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./881/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./881")              = 0
[pid  5067] mkdir("./882", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2647
./strace-static-x86_64: Process 7729 attached
[pid  7729] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7729] chdir("./882")              = 0
[pid  7729] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7729] setpgid(0, 0)               = 0
[pid  7729] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7729] write(3, "1000", 4)         = 4
[pid  7729] close(3)                    = 0
[pid  7729] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7729] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7729] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7729] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7729] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2648], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2648
./strace-static-x86_64: Process 7730 attached
[pid  7729] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7730] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7729] <... futex resumed>)        = 0
[pid  7730] <... set_robust_list resumed>) = 0
[pid  7729] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7730] memfd_create("syzkaller", 0) = 3
[pid  7730] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7730] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7730] munmap(0x7ff042e09000, 2097152) = 0
[pid  7730] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7730] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7730] close(3)                    = 0
[pid  7730] mkdir("./file0", 0777)      = 0
[pid  7730] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7730] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7730] chdir("./file0")            = 0
[pid  7730] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7730] close(4)                    = 0
[pid  7730] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7729] <... futex resumed>)        = 0
[pid  7729] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7729] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7729] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7729] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7729] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2649], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2649
[pid  7729] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7729] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7730] <... futex resumed>)        = 1
[pid  7730] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7730] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7730] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7731 attached
 <unfinished ...>
[pid  7731] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7731] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7731] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7729] <... futex resumed>)        = 0
[pid  7729] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7729] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7730] <... futex resumed>)        = 0
[pid  7730] creat("./file0", 0406 <unfinished ...>
[pid  7731] <... futex resumed>)        = 1
[pid  7731] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7730] <... creat resumed>)        = 4
[pid  7730] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7729] <... futex resumed>)        = 0
[pid  7729] close(3)                    = 0
[pid  7729] close(4)                    = 0
[pid  7729] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7729] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7729] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7729] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7729] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7729] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7730] <... futex resumed>)        = 1
[pid  7729] close(17 <unfinished ...>
[pid  7730] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7729] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7729] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7729] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7729] exit_group(0 <unfinished ...>
[pid  7731] <... futex resumed>)        = ?
[pid  7730] <... futex resumed>)        = ?
[pid  7729] <... exit_group resumed>)   = ?
[pid  7731] +++ exited with 0 +++
[pid  7730] +++ exited with 0 +++
[pid  7729] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2647, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./882", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./882", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./882/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./882/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./882/binderfs")    = 0
[  191.481054][ T7730] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./882/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./882/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./882/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./882/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./882/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./882/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./882")              = 0
[pid  5067] mkdir("./883", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2650
./strace-static-x86_64: Process 7732 attached
[pid  7732] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7732] chdir("./883")              = 0
[pid  7732] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7732] setpgid(0, 0)               = 0
[pid  7732] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7732] write(3, "1000", 4)         = 4
[pid  7732] close(3)                    = 0
[pid  7732] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7732] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7732] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7732] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7732] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7733 attached
 <unfinished ...>
[pid  7733] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7732] <... clone resumed>, parent_tid=[2651], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2651
[pid  7733] <... set_robust_list resumed>) = 0
[pid  7733] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7732] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7733] <... futex resumed>)        = 0
[pid  7732] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7733] memfd_create("syzkaller", 0) = 3
[pid  7733] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7733] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7733] munmap(0x7ff042e09000, 2097152) = 0
[pid  7733] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7733] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7733] close(3)                    = 0
[pid  7733] mkdir("./file0", 0777)      = 0
[pid  7733] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7733] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7733] chdir("./file0")            = 0
[pid  7733] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7733] close(4)                    = 0
[pid  7733] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7733] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7732] <... futex resumed>)        = 0
[pid  7732] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7732] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7732] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7732] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7732] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2652], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2652
[pid  7732] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7732] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7733] <... futex resumed>)        = 0
[pid  7733] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7734 attached
 <unfinished ...>
[pid  7734] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7734] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7733] <... mkdirat resumed>)      = 0
[pid  7733] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7733] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7734] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7732] <... futex resumed>)        = 0
[pid  7734] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7732] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7733] <... futex resumed>)        = 0
[pid  7732] <... futex resumed>)        = 1
[pid  7733] creat("./file0", 0406 <unfinished ...>
[pid  7732] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7733] <... creat resumed>)        = 4
[pid  7733] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7732] <... futex resumed>)        = 0
[pid  7732] close(3)                    = 0
[pid  7732] close(4)                    = 0
[pid  7732] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7732] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7733] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7732] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7732] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7732] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7732] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7732] close(29)                   = -1 EBADF (Bad file descriptor)
[  191.620813][ T7733] loop0: detected capacity change from 0 to 4096
[pid  7732] exit_group(0 <unfinished ...>
[pid  7733] <... futex resumed>)        = ?
[pid  7734] <... futex resumed>)        = ?
[pid  7732] <... exit_group resumed>)   = ?
[pid  7733] +++ exited with 0 +++
[pid  7734] +++ exited with 0 +++
[pid  7732] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2650, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./883", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./883", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./883/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./883/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./883/binderfs")    = 0
[pid  5067] umount2("./883/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./883/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./883/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./883/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./883/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./883/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./883")              = 0
[pid  5067] mkdir("./884", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2653
./strace-static-x86_64: Process 7735 attached
[pid  7735] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7735] chdir("./884")              = 0
[pid  7735] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7735] setpgid(0, 0)               = 0
[pid  7735] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7735] write(3, "1000", 4)         = 4
[pid  7735] close(3)                    = 0
[pid  7735] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7735] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7735] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7735] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7735] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7736 attached
, parent_tid=[2654], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2654
[pid  7735] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7736] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7735] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7736] <... set_robust_list resumed>) = 0
[pid  7736] memfd_create("syzkaller", 0) = 3
[pid  7736] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7736] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7736] munmap(0x7ff042e09000, 2097152) = 0
[pid  7736] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7736] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7736] close(3)                    = 0
[pid  7736] mkdir("./file0", 0777)      = 0
[pid  7736] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7736] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7736] chdir("./file0")            = 0
[pid  7736] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7736] close(4)                    = 0
[pid  7736] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7736] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7735] <... futex resumed>)        = 0
[pid  7735] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7735] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7735] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7736] <... futex resumed>)        = 0
[pid  7735] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7735] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7736] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7735] <... mprotect resumed>)     = 0
[pid  7735] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2655], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2655
[pid  7735] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7737 attached
) = 0
[pid  7737] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7735] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7737] <... set_robust_list resumed>) = 0
[pid  7737] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7737] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7735] <... futex resumed>)        = 0
[pid  7737] <... futex resumed>)        = 1
[pid  7735] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7737] creat("./file0", 0406 <unfinished ...>
[pid  7735] <... futex resumed>)        = 0
[pid  7735] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7737] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7737] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7735] <... futex resumed>)        = 0
[pid  7737] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7736] <... mkdirat resumed>)      = 0
[pid  7736] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7736] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7735] close(3)                    = 0
[pid  7735] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7735] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7735] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7735] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7735] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7735] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7735] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(13)                   = -1 EBADF (Bad file descriptor)
[  191.766350][ T7736] loop0: detected capacity change from 0 to 4096
[pid  7735] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7735] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7735] exit_group(0 <unfinished ...>
[pid  7737] <... futex resumed>)        = ?
[pid  7735] <... exit_group resumed>)   = ?
[pid  7737] +++ exited with 0 +++
[pid  7736] <... futex resumed>)        = ?
[pid  7736] +++ exited with 0 +++
[pid  7735] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2653, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./884", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./884", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./884/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./884/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./884/binderfs")    = 0
[pid  5067] umount2("./884/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./884/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./884/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./884/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./884/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./884/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./884")              = 0
[pid  5067] mkdir("./885", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2656
./strace-static-x86_64: Process 7738 attached
[pid  7738] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7738] chdir("./885")              = 0
[pid  7738] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7738] setpgid(0, 0)               = 0
[pid  7738] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7738] write(3, "1000", 4)         = 4
[pid  7738] close(3)                    = 0
[pid  7738] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7738] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7738] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7738] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7738] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2657], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2657
./strace-static-x86_64: Process 7739 attached
[pid  7739] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7739] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7738] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7739] <... futex resumed>)        = 0
[pid  7738] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7739] memfd_create("syzkaller", 0) = 3
[pid  7739] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7739] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7739] munmap(0x7ff042e09000, 2097152) = 0
[pid  7739] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7739] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7739] close(3)                    = 0
[pid  7739] mkdir("./file0", 0777)      = 0
[pid  7739] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7739] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7739] chdir("./file0")            = 0
[pid  7739] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7739] close(4)                    = 0
[pid  7739] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7738] <... futex resumed>)        = 0
[pid  7739] <... futex resumed>)        = 1
[pid  7739] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7738] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7738] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7738] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7738] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7738] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2658], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2658
./strace-static-x86_64: Process 7740 attached
[pid  7738] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7740] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7739] <... mkdirat resumed>)      = 0
[pid  7738] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7739] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7739] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7740] <... set_robust_list resumed>) = 0
[pid  7740] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7740] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7738] <... futex resumed>)        = 0
[pid  7740] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7738] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7739] <... futex resumed>)        = 0
[  191.926246][ T7739] loop0: detected capacity change from 0 to 4096
[pid  7738] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7739] creat("./file0", 0406)      = 4
[pid  7739] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7738] <... futex resumed>)        = 0
[pid  7739] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7738] close(3)                    = 0
[pid  7738] close(4)                    = 0
[pid  7738] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7738] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7738] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7738] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7738] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7738] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7738] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7738] exit_group(0 <unfinished ...>
[pid  7740] <... futex resumed>)        = ?
[pid  7739] <... futex resumed>)        = ?
[pid  7738] <... exit_group resumed>)   = ?
[pid  7740] +++ exited with 0 +++
[pid  7739] +++ exited with 0 +++
[pid  7738] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2656, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./885", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./885", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./885/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./885/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./885/binderfs")    = 0
[pid  5067] umount2("./885/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./885/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./885/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./885/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./885/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./885/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./885")              = 0
[pid  5067] mkdir("./886", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2659
./strace-static-x86_64: Process 7741 attached
[pid  7741] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7741] chdir("./886")              = 0
[pid  7741] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7741] setpgid(0, 0)               = 0
[pid  7741] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7741] write(3, "1000", 4)         = 4
[pid  7741] close(3)                    = 0
[pid  7741] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7741] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7741] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7741] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7741] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2660], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2660
[pid  7741] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7741] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7742 attached
 <unfinished ...>
[pid  7742] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7742] memfd_create("syzkaller", 0) = 3
[pid  7742] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7742] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7742] munmap(0x7ff042e09000, 2097152) = 0
[pid  7742] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7742] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7742] close(3)                    = 0
[pid  7742] mkdir("./file0", 0777)      = 0
[pid  7742] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7742] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7742] chdir("./file0")            = 0
[pid  7742] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7742] close(4)                    = 0
[pid  7742] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7741] <... futex resumed>)        = 0
[pid  7741] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7741] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7741] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7741] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7741] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2661], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2661
[pid  7741] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7741] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7742] <... futex resumed>)        = 1
[pid  7742] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7742] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7742] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7743 attached
 <unfinished ...>
[pid  7743] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7743] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7743] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7741] <... futex resumed>)        = 0
[pid  7741] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7741] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7742] <... futex resumed>)        = 0
[pid  7742] creat("./file0", 0406 <unfinished ...>
[pid  7743] <... futex resumed>)        = 1
[pid  7743] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7742] <... creat resumed>)        = 4
[pid  7742] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7741] <... futex resumed>)        = 0
[pid  7742] <... futex resumed>)        = 1
[pid  7741] close(3)                    = 0
[pid  7742] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7741] close(4)                    = 0
[pid  7741] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7741] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7741] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7741] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7741] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7741] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7741] close(28)                   = -1 EBADF (Bad file descriptor)
[  192.080660][ T7742] loop0: detected capacity change from 0 to 4096
[pid  7741] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7741] exit_group(0 <unfinished ...>
[pid  7743] <... futex resumed>)        = ?
[pid  7742] <... futex resumed>)        = ?
[pid  7741] <... exit_group resumed>)   = ?
[pid  7743] +++ exited with 0 +++
[pid  7742] +++ exited with 0 +++
[pid  7741] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2659, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./886", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./886", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./886/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./886/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./886/binderfs")    = 0
[pid  5067] umount2("./886/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./886/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./886/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./886/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./886/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./886/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./886")              = 0
[pid  5067] mkdir("./887", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2662
./strace-static-x86_64: Process 7744 attached
[pid  7744] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7744] chdir("./887")              = 0
[pid  7744] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7744] setpgid(0, 0)               = 0
[pid  7744] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7744] write(3, "1000", 4)         = 4
[pid  7744] close(3)                    = 0
[pid  7744] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7744] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7744] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7744] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7744] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2663], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2663
[pid  7744] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7744] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7745 attached
 <unfinished ...>
[pid  7745] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7745] memfd_create("syzkaller", 0) = 3
[pid  7745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7745] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7745] munmap(0x7ff042e09000, 2097152) = 0
[pid  7745] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7745] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7745] close(3)                    = 0
[pid  7745] mkdir("./file0", 0777)      = 0
[pid  7745] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7745] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7745] chdir("./file0")            = 0
[pid  7745] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7745] close(4)                    = 0
[pid  7745] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7744] <... futex resumed>)        = 0
[pid  7744] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7744] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7744] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7744] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7744] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2664], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2664
[pid  7744] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7744] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7745] <... futex resumed>)        = 1
[pid  7745] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7746 attached
 <unfinished ...>
[pid  7746] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7746] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7745] <... mkdirat resumed>)      = 0
[pid  7746] <... chdir resumed>)        = 0
[pid  7746] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7744] <... futex resumed>)        = 0
[pid  7744] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7744] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7746] <... futex resumed>)        = 1
[pid  7746] creat("./file0", 0406 <unfinished ...>
[pid  7745] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7745] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7746] <... creat resumed>)        = 4
[pid  7746] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7744] <... futex resumed>)        = 0
[pid  7746] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7744] close(3)                    = 0
[pid  7744] close(4)                    = 0
[pid  7744] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7744] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7744] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7744] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7744] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7744] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7744] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7744] exit_group(0 <unfinished ...>
[pid  7746] <... futex resumed>)        = ?
[pid  7745] <... futex resumed>)        = ?
[pid  7744] <... exit_group resumed>)   = ?
[pid  7746] +++ exited with 0 +++
[pid  7745] +++ exited with 0 +++
[pid  7744] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2662, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[  192.217553][ T7745] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./887", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./887", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./887/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./887/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./887/binderfs")    = 0
[pid  5067] umount2("./887/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./887/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./887/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./887/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./887/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./887/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./887")              = 0
[pid  5067] mkdir("./888", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2665
./strace-static-x86_64: Process 7747 attached
[pid  7747] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7747] chdir("./888")              = 0
[pid  7747] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7747] setpgid(0, 0)               = 0
[pid  7747] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7747] write(3, "1000", 4)         = 4
[pid  7747] close(3)                    = 0
[pid  7747] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7747] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7747] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7747] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7747] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7748 attached
 <unfinished ...>
[pid  7748] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7747] <... clone resumed>, parent_tid=[2666], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2666
[pid  7748] <... set_robust_list resumed>) = 0
[pid  7747] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7747] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7748] memfd_create("syzkaller", 0) = 3
[pid  7748] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7748] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7748] munmap(0x7ff042e09000, 2097152) = 0
[pid  7748] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7748] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7748] close(3)                    = 0
[pid  7748] mkdir("./file0", 0777)      = 0
[pid  7748] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7748] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7748] chdir("./file0")            = 0
[pid  7748] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7748] close(4)                    = 0
[pid  7748] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7747] <... futex resumed>)        = 0
[pid  7747] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7747] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7747] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7747] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7747] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2667], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2667
[pid  7747] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7747] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7748] <... futex resumed>)        = 1
[pid  7748] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7749 attached
 <unfinished ...>
[pid  7749] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7749] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7748] <... mkdirat resumed>)      = 0
[pid  7749] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7747] <... futex resumed>)        = 0
[pid  7747] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7747] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7749] <... futex resumed>)        = 1
[pid  7748] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7749] creat("./file0", 0406 <unfinished ...>
[pid  7748] <... futex resumed>)        = 0
[pid  7748] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7749] <... creat resumed>)        = 4
[pid  7749] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7747] <... futex resumed>)        = 0
[pid  7747] close(3)                    = 0
[pid  7747] close(4)                    = 0
[pid  7749] <... futex resumed>)        = 1
[pid  7747] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7747] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7747] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7747] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7747] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7747] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(25 <unfinished ...>
[pid  7749] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7747] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7747] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7747] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7747] exit_group(0 <unfinished ...>
[pid  7748] <... futex resumed>)        = ?
[  192.358105][ T7748] loop0: detected capacity change from 0 to 4096
[pid  7747] <... exit_group resumed>)   = ?
[pid  7749] <... futex resumed>)        = ?
[pid  7748] +++ exited with 0 +++
[pid  7749] +++ exited with 0 +++
[pid  7747] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2665, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./888", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./888", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./888/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./888/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./888/binderfs")    = 0
[pid  5067] umount2("./888/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./888/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./888/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./888/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./888/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./888/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./888")              = 0
[pid  5067] mkdir("./889", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2668
./strace-static-x86_64: Process 7750 attached
[pid  7750] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7750] chdir("./889")              = 0
[pid  7750] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7750] setpgid(0, 0)               = 0
[pid  7750] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7750] write(3, "1000", 4)         = 4
[pid  7750] close(3)                    = 0
[pid  7750] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7750] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7750] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7750] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7750] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7751 attached
 <unfinished ...>
[pid  7751] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7750] <... clone resumed>, parent_tid=[2669], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2669
[pid  7751] <... set_robust_list resumed>) = 0
[pid  7751] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7750] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7751] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7750] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7751] memfd_create("syzkaller", 0) = 3
[pid  7751] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7751] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7751] munmap(0x7ff042e09000, 2097152) = 0
[pid  7751] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7751] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7751] close(3)                    = 0
[pid  7751] mkdir("./file0", 0777)      = 0
[pid  7751] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7751] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7751] chdir("./file0")            = 0
[pid  7751] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7751] close(4)                    = 0
[pid  7751] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7750] <... futex resumed>)        = 0
[pid  7750] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7750] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7750] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7750] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7750] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2670], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2670
[pid  7750] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7750] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7751] <... futex resumed>)        = 1
[pid  7751] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7752 attached
 <unfinished ...>
[pid  7752] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7752] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7752] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7750] <... futex resumed>)        = 0
[pid  7750] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7750] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7751] <... mkdirat resumed>)      = 0
[pid  7751] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7751] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7752] <... futex resumed>)        = 1
[pid  7752] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7752] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7750] <... futex resumed>)        = 0
[pid  7750] close(3)                    = 0
[pid  7752] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7750] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7750] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7750] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7750] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7750] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7750] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7750] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7750] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7750] exit_group(0 <unfinished ...>
[pid  7751] <... futex resumed>)        = ?
[pid  7750] <... exit_group resumed>)   = ?
[pid  7751] +++ exited with 0 +++
[pid  7752] <... futex resumed>)        = ?
[pid  7752] +++ exited with 0 +++
[pid  7750] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2668, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./889", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./889", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./889/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./889/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./889/binderfs")    = 0
[  192.501943][ T7751] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./889/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./889/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./889/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./889/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./889/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./889/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./889")              = 0
[pid  5067] mkdir("./890", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2671
./strace-static-x86_64: Process 7753 attached
[pid  7753] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7753] chdir("./890")              = 0
[pid  7753] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7753] setpgid(0, 0)               = 0
[pid  7753] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7753] write(3, "1000", 4)         = 4
[pid  7753] close(3)                    = 0
[pid  7753] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7753] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7753] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7753] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7753] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2672], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2672
[pid  7753] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7753] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7754 attached
 <unfinished ...>
[pid  7754] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7754] memfd_create("syzkaller", 0) = 3
[pid  7754] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7754] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7754] munmap(0x7ff042e09000, 2097152) = 0
[pid  7754] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7754] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7754] close(3)                    = 0
[pid  7754] mkdir("./file0", 0777)      = 0
[pid  7754] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7754] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7754] chdir("./file0")            = 0
[pid  7754] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7754] close(4)                    = 0
[pid  7754] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7754] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7753] <... futex resumed>)        = 0
[pid  7753] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7753] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7754] <... futex resumed>)        = 0
[pid  7754] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7753] <... futex resumed>)        = 0
[pid  7753] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7753] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7753] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2673], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2673
[pid  7753] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7753] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7755 attached
 <unfinished ...>
[pid  7755] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7755] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7754] <... mkdirat resumed>)      = 0
[pid  7754] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7754] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7755] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7753] <... futex resumed>)        = 0
[pid  7753] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7754] <... futex resumed>)        = 0
[pid  7753] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7754] creat("./file0", 0406 <unfinished ...>
[pid  7755] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7754] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7754] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7753] <... futex resumed>)        = 0
[pid  7754] <... futex resumed>)        = 1
[pid  7753] close(3 <unfinished ...>
[pid  7754] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7753] <... close resumed>)        = 0
[pid  7753] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7753] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7753] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7753] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7753] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7753] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7753] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(21)                   = -1 EBADF (Bad file descriptor)
[  192.636952][ T7754] loop0: detected capacity change from 0 to 4096
[pid  7753] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7753] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7753] exit_group(0 <unfinished ...>
[pid  7755] <... futex resumed>)        = ?
[pid  7754] <... futex resumed>)        = ?
[pid  7753] <... exit_group resumed>)   = ?
[pid  7754] +++ exited with 0 +++
[pid  7755] +++ exited with 0 +++
[pid  7753] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2671, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./890", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./890", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./890/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./890/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./890/binderfs")    = 0
[pid  5067] umount2("./890/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./890/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./890/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./890/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./890/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./890/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./890")              = 0
[pid  5067] mkdir("./891", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2674
./strace-static-x86_64: Process 7756 attached
[pid  7756] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7756] chdir("./891")              = 0
[pid  7756] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7756] setpgid(0, 0)               = 0
[pid  7756] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7756] write(3, "1000", 4)         = 4
[pid  7756] close(3)                    = 0
[pid  7756] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7756] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7756] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7756] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7756] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7757 attached
, parent_tid=[2675], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2675
[pid  7756] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7757] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7756] <... futex resumed>)        = 0
[pid  7756] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7757] memfd_create("syzkaller", 0) = 3
[pid  7757] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7757] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7757] munmap(0x7ff042e09000, 2097152) = 0
[pid  7757] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7757] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7757] close(3)                    = 0
[pid  7757] mkdir("./file0", 0777)      = 0
[pid  7757] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7757] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7757] chdir("./file0")            = 0
[pid  7757] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7757] close(4)                    = 0
[pid  7757] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7757] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7756] <... futex resumed>)        = 0
[pid  7756] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7756] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7756] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7756] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7756] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2676], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2676
[pid  7756] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7756] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7758 attached
 <unfinished ...>
[pid  7758] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7758] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7757] <... futex resumed>)        = 0
[pid  7757] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7758] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7758] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7756] <... futex resumed>)        = 0
[pid  7758] creat("./file0", 0406 <unfinished ...>
[pid  7756] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7756] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7757] <... mkdirat resumed>)      = 0
[pid  7757] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7757] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7758] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7758] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7756] <... futex resumed>)        = 0
[pid  7758] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7756] close(3)                    = 0
[pid  7756] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7756] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7756] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7756] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7756] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7756] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7756] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7756] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7756] exit_group(0 <unfinished ...>
[pid  7758] <... futex resumed>)        = ?
[pid  7757] <... futex resumed>)        = ?
[pid  7756] <... exit_group resumed>)   = ?
[pid  7758] +++ exited with 0 +++
[pid  7757] +++ exited with 0 +++
[pid  7756] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2674, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./891", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./891", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./891/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./891/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./891/binderfs")    = 0
[pid  5067] umount2("./891/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./891/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./891/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./891/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./891/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./891/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./891")              = 0
[pid  5067] mkdir("./892", 0777)        = 0
[  192.786121][ T7757] loop0: detected capacity change from 0 to 4096
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2677
./strace-static-x86_64: Process 7759 attached
[pid  7759] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7759] chdir("./892")              = 0
[pid  7759] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7759] setpgid(0, 0)               = 0
[pid  7759] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7759] write(3, "1000", 4)         = 4
[pid  7759] close(3)                    = 0
[pid  7759] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7759] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7759] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7759] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7759] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7760 attached
 <unfinished ...>
[pid  7760] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7760] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7759] <... clone resumed>, parent_tid=[2678], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2678
[pid  7759] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7760] <... futex resumed>)        = 0
[pid  7759] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7760] memfd_create("syzkaller", 0) = 3
[pid  7760] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7760] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7760] munmap(0x7ff042e09000, 2097152) = 0
[pid  7760] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7760] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7760] close(3)                    = 0
[pid  7760] mkdir("./file0", 0777)      = 0
[pid  7760] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7760] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7760] chdir("./file0")            = 0
[pid  7760] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7760] close(4)                    = 0
[pid  7760] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7759] <... futex resumed>)        = 0
[pid  7759] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7759] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7759] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7759] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7759] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2679], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2679
[pid  7759] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7759] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7760] <... futex resumed>)        = 1
[pid  7760] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7761 attached
 <unfinished ...>
[pid  7761] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7761] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7760] <... mkdirat resumed>)      = 0
[pid  7761] <... chdir resumed>)        = 0
[pid  7760] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7761] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7760] <... futex resumed>)        = 0
[pid  7761] <... futex resumed>)        = 1
[pid  7759] <... futex resumed>)        = 0
[pid  7761] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7760] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7759] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7760] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7759] <... futex resumed>)        = 0
[pid  7760] creat("./file0", 0406 <unfinished ...>
[pid  7759] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7760] <... creat resumed>)        = 4
[  192.914287][ T7760] loop0: detected capacity change from 0 to 4096
[pid  7760] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7759] <... futex resumed>)        = 0
[pid  7760] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7759] close(3)                    = 0
[pid  7759] close(4)                    = 0
[pid  7759] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7759] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7759] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7759] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7759] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7759] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7759] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7759] exit_group(0)               = ?
[pid  7761] <... futex resumed>)        = ?
[pid  7760] <... futex resumed>)        = ?
[pid  7761] +++ exited with 0 +++
[pid  7760] +++ exited with 0 +++
[pid  7759] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2677, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./892", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./892", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./892/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./892/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./892/binderfs")    = 0
[pid  5067] umount2("./892/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./892/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./892/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./892/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./892/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./892/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./892")              = 0
[pid  5067] mkdir("./893", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2680
./strace-static-x86_64: Process 7762 attached
[pid  7762] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7762] chdir("./893")              = 0
[pid  7762] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7762] setpgid(0, 0)               = 0
[pid  7762] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7762] write(3, "1000", 4)         = 4
[pid  7762] close(3)                    = 0
[pid  7762] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7762] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7762] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7762] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7762] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2681], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2681
[pid  7762] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7762] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7763 attached
 <unfinished ...>
[pid  7763] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7763] memfd_create("syzkaller", 0) = 3
[pid  7763] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7763] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7763] munmap(0x7ff042e09000, 2097152) = 0
[pid  7763] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7763] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7763] close(3)                    = 0
[pid  7763] mkdir("./file0", 0777)      = 0
[pid  7763] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7763] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7763] chdir("./file0")            = 0
[pid  7763] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7763] close(4)                    = 0
[pid  7763] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7762] <... futex resumed>)        = 0
[pid  7762] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7762] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7763] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7762] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7762] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7763] <... mkdirat resumed>)      = 0
[pid  7762] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7763] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7762] <... clone resumed>, parent_tid=[2682], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2682
[pid  7762] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7762] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7763] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7764 attached
 <unfinished ...>
[pid  7764] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7764] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7764] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7762] <... futex resumed>)        = 0
[pid  7762] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7763] <... futex resumed>)        = 0
[pid  7762] <... futex resumed>)        = 1
[pid  7763] creat("./file0", 0406 <unfinished ...>
[pid  7762] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7764] <... futex resumed>)        = 1
[pid  7764] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7763] <... creat resumed>)        = 4
[pid  7763] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7762] <... futex resumed>)        = 0
[pid  7763] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7762] close(3)                    = 0
[pid  7762] close(4)                    = 0
[pid  7762] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7762] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7762] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7762] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7762] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7762] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(25)                   = -1 EBADF (Bad file descriptor)
[  193.062507][ T7763] loop0: detected capacity change from 0 to 4096
[pid  7762] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7762] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7762] exit_group(0 <unfinished ...>
[pid  7764] <... futex resumed>)        = ?
[pid  7763] <... futex resumed>)        = ?
[pid  7762] <... exit_group resumed>)   = ?
[pid  7764] +++ exited with 0 +++
[pid  7763] +++ exited with 0 +++
[pid  7762] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2680, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./893", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./893", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./893/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./893/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./893/binderfs")    = 0
[pid  5067] umount2("./893/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./893/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./893/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./893/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./893/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./893/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./893")              = 0
[pid  5067] mkdir("./894", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2683
./strace-static-x86_64: Process 7765 attached
[pid  7765] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7765] chdir("./894")              = 0
[pid  7765] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7765] setpgid(0, 0)               = 0
[pid  7765] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7765] write(3, "1000", 4)         = 4
[pid  7765] close(3)                    = 0
[pid  7765] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7765] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7765] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7765] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7765] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7766 attached
, parent_tid=[2684], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2684
[pid  7766] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7765] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7766] <... set_robust_list resumed>) = 0
[pid  7765] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7766] memfd_create("syzkaller", 0) = 3
[pid  7766] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7766] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7766] munmap(0x7ff042e09000, 2097152) = 0
[pid  7766] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7766] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7766] close(3)                    = 0
[pid  7766] mkdir("./file0", 0777)      = 0
[pid  7766] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7766] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7766] chdir("./file0")            = 0
[pid  7766] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7766] close(4)                    = 0
[pid  7766] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7765] <... futex resumed>)        = 0
[pid  7766] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7765] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7765] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7765] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7765] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7765] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2685], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2685
[pid  7765] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7765] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7766] <... futex resumed>)        = 0
[pid  7766] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7767 attached
 <unfinished ...>
[pid  7767] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7767] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7766] <... mkdirat resumed>)      = 0
[pid  7766] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7766] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7767] <... chdir resumed>)        = 0
[pid  7767] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7765] <... futex resumed>)        = 0
[pid  7765] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7765] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7766] <... futex resumed>)        = 0
[pid  7766] creat("./file0", 0406 <unfinished ...>
[pid  7767] <... futex resumed>)        = 1
[pid  7767] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7766] <... creat resumed>)        = 4
[pid  7766] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7765] <... futex resumed>)        = 0
[pid  7765] close(3)                    = 0
[pid  7765] close(4)                    = 0
[pid  7765] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7765] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7765] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7765] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7765] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7765] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7766] <... futex resumed>)        = 1
[pid  7765] close(11 <unfinished ...>
[pid  7766] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7765] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[  193.217683][ T7766] loop0: detected capacity change from 0 to 4096
[pid  7765] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7765] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7765] exit_group(0 <unfinished ...>
[pid  7767] <... futex resumed>)        = ?
[pid  7766] <... futex resumed>)        = ?
[pid  7765] <... exit_group resumed>)   = ?
[pid  7767] +++ exited with 0 +++
[pid  7766] +++ exited with 0 +++
[pid  7765] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2683, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./894", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./894", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./894/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./894/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./894/binderfs")    = 0
[pid  5067] umount2("./894/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./894/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./894/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./894/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./894/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./894/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./894")              = 0
[pid  5067] mkdir("./895", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2686
./strace-static-x86_64: Process 7768 attached
[pid  7768] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7768] chdir("./895")              = 0
[pid  7768] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7768] setpgid(0, 0)               = 0
[pid  7768] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7768] write(3, "1000", 4)         = 4
[pid  7768] close(3)                    = 0
[pid  7768] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7768] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7768] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7768] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7768] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7769 attached
, parent_tid=[2687], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2687
[pid  7768] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7768] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7769] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7769] memfd_create("syzkaller", 0) = 3
[pid  7769] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7769] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7769] munmap(0x7ff042e09000, 2097152) = 0
[pid  7769] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7769] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7769] close(3)                    = 0
[pid  7769] mkdir("./file0", 0777)      = 0
[pid  7769] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7769] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7769] chdir("./file0")            = 0
[pid  7769] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7769] close(4)                    = 0
[pid  7769] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7768] <... futex resumed>)        = 0
[pid  7768] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7768] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7768] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7768] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7769] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7768] <... mprotect resumed>)     = 0
[pid  7768] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2688], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2688
[pid  7768] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7768] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7770 attached
 <unfinished ...>
[pid  7770] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7770] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7769] <... mkdirat resumed>)      = 0
[pid  7769] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7769] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7770] <... chdir resumed>)        = 0
[pid  7770] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7768] <... futex resumed>)        = 0
[pid  7768] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7769] <... futex resumed>)        = 0
[pid  7768] <... futex resumed>)        = 1
[pid  7769] creat("./file0", 0406 <unfinished ...>
[pid  7768] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7770] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7769] <... creat resumed>)        = 4
[pid  7769] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7768] <... futex resumed>)        = 0
[pid  7769] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7768] close(3)                    = 0
[pid  7768] close(4)                    = 0
[pid  7768] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7768] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7768] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7768] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7768] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7768] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(25)                   = -1 EBADF (Bad file descriptor)
[  193.374102][ T7769] loop0: detected capacity change from 0 to 4096
[pid  7768] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7768] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7768] exit_group(0 <unfinished ...>
[pid  7770] <... futex resumed>)        = ?
[pid  7768] <... exit_group resumed>)   = ?
[pid  7770] +++ exited with 0 +++
[pid  7769] <... futex resumed>)        = ?
[pid  7769] +++ exited with 0 +++
[pid  7768] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2686, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./895", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./895", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./895/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./895/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./895/binderfs")    = 0
[pid  5067] umount2("./895/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./895/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./895/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./895/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./895/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./895/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./895")              = 0
[pid  5067] mkdir("./896", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2689
./strace-static-x86_64: Process 7771 attached
[pid  7771] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7771] chdir("./896")              = 0
[pid  7771] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7771] setpgid(0, 0)               = 0
[pid  7771] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7771] write(3, "1000", 4)         = 4
[pid  7771] close(3)                    = 0
[pid  7771] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7771] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7771] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7771] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7771] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7772 attached
, parent_tid=[2690], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2690
[pid  7771] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7771] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7772] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7772] memfd_create("syzkaller", 0) = 3
[pid  7772] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7772] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7772] munmap(0x7ff042e09000, 2097152) = 0
[pid  7772] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7772] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7772] close(3)                    = 0
[pid  7772] mkdir("./file0", 0777)      = 0
[pid  7772] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7772] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7772] chdir("./file0")            = 0
[pid  7772] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7772] close(4)                    = 0
[pid  7772] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7772] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7771] <... futex resumed>)        = 0
[pid  7771] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7771] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7771] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7771] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7771] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2691], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2691
[pid  7771] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7771] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7772] <... futex resumed>)        = 0
[pid  7772] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7773 attached
 <unfinished ...>
[pid  7773] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7773] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7773] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7771] <... futex resumed>)        = 0
[pid  7773] <... futex resumed>)        = 1
[pid  7771] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7773] creat("./file0", 0406 <unfinished ...>
[pid  7771] <... futex resumed>)        = 0
[pid  7772] <... mkdirat resumed>)      = 0
[pid  7771] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7772] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7773] <... creat resumed>)        = 4
[pid  7773] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7772] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7773] <... futex resumed>)        = 1
[pid  7771] <... futex resumed>)        = 0
[pid  7771] close(3 <unfinished ...>
[pid  7773] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7771] <... close resumed>)        = 0
[pid  7771] close(4)                    = 0
[pid  7771] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7771] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7771] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7771] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7771] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7771] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7771] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7771] exit_group(0 <unfinished ...>
[pid  7772] <... futex resumed>)        = ?
[pid  7771] <... exit_group resumed>)   = ?
[pid  7773] <... futex resumed>)        = ?
[pid  7772] +++ exited with 0 +++
[pid  7773] +++ exited with 0 +++
[pid  7771] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2689, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./896", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./896", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./896/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./896/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./896/binderfs")    = 0
[  193.522731][ T7772] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./896/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./896/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./896/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./896/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./896/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./896/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./896")              = 0
[pid  5067] mkdir("./897", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2692
./strace-static-x86_64: Process 7774 attached
[pid  7774] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7774] chdir("./897")              = 0
[pid  7774] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7774] setpgid(0, 0)               = 0
[pid  7774] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7774] write(3, "1000", 4)         = 4
[pid  7774] close(3)                    = 0
[pid  7774] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7774] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7774] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7774] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7774] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2693], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2693
[pid  7774] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7774] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7775 attached
 <unfinished ...>
[pid  7775] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7775] memfd_create("syzkaller", 0) = 3
[pid  7775] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7775] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7775] munmap(0x7ff042e09000, 2097152) = 0
[pid  7775] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7775] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7775] close(3)                    = 0
[pid  7775] mkdir("./file0", 0777)      = 0
[pid  7775] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7775] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7775] chdir("./file0")            = 0
[pid  7775] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7775] close(4)                    = 0
[pid  7775] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7774] <... futex resumed>)        = 0
[pid  7774] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7774] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7774] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7774] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7774] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2694], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2694
[pid  7774] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7774] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7775] <... futex resumed>)        = 1
[pid  7775] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7776 attached
 <unfinished ...>
[pid  7776] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7776] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7775] <... mkdirat resumed>)      = 0
[pid  7775] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7775] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7776] <... chdir resumed>)        = 0
[pid  7776] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7774] <... futex resumed>)        = 0
[pid  7774] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7774] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7775] <... futex resumed>)        = 0
[pid  7775] creat("./file0", 0406 <unfinished ...>
[pid  7776] <... futex resumed>)        = 1
[pid  7776] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7775] <... creat resumed>)        = 4
[pid  7775] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7774] <... futex resumed>)        = 0
[pid  7775] <... futex resumed>)        = 1
[pid  7774] close(3 <unfinished ...>
[pid  7775] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7774] <... close resumed>)        = 0
[pid  7774] close(4)                    = 0
[pid  7774] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7774] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7774] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7774] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7774] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7774] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7774] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7774] exit_group(0 <unfinished ...>
[pid  7776] <... futex resumed>)        = ?
[pid  7775] <... futex resumed>)        = ?
[pid  7774] <... exit_group resumed>)   = ?
[pid  7776] +++ exited with 0 +++
[pid  7775] +++ exited with 0 +++
[pid  7774] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2692, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[  193.659083][ T7775] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./897", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./897", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./897/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./897/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./897/binderfs")    = 0
[pid  5067] umount2("./897/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./897/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./897/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./897/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./897/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./897/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./897")              = 0
[pid  5067] mkdir("./898", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7777 attached
 <unfinished ...>
[pid  7777] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7777] chdir("./898")              = 0
[pid  7777] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7777] setpgid(0, 0)               = 0
[pid  7777] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2695
[pid  7777] <... openat resumed>)       = 3
[pid  7777] write(3, "1000", 4)         = 4
[pid  7777] close(3)                    = 0
[pid  7777] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7777] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7777] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7777] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7777] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2696], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2696
[pid  7777] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7777] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7778 attached
 <unfinished ...>
[pid  7778] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7778] memfd_create("syzkaller", 0) = 3
[pid  7778] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7778] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7778] munmap(0x7ff042e09000, 2097152) = 0
[pid  7778] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7778] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7778] close(3)                    = 0
[pid  7778] mkdir("./file0", 0777)      = 0
[pid  7778] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7778] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7778] chdir("./file0")            = 0
[pid  7778] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7778] close(4)                    = 0
[pid  7778] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7777] <... futex resumed>)        = 0
[pid  7777] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7777] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7777] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7777] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7777] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2697], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2697
[pid  7777] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7777] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7778] <... futex resumed>)        = 1
[pid  7778] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7779 attached
 <unfinished ...>
[pid  7779] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7779] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7778] <... mkdirat resumed>)      = 0
[pid  7778] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7778] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7779] <... chdir resumed>)        = 0
[pid  7779] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7777] <... futex resumed>)        = 0
[pid  7777] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7778] <... futex resumed>)        = 0
[pid  7777] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7779] <... futex resumed>)        = 1
[pid  7779] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7778] creat("./file0", 0406)      = 4
[pid  7778] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7777] <... futex resumed>)        = 0
[pid  7778] <... futex resumed>)        = 1
[pid  7777] close(3)                    = 0
[pid  7777] close(4 <unfinished ...>
[pid  7778] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7777] <... close resumed>)        = 0
[pid  7777] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7777] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7777] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7777] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7777] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7777] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(16)                   = -1 EBADF (Bad file descriptor)
[  193.794082][ T7778] loop0: detected capacity change from 0 to 4096
[pid  7777] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7777] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7777] exit_group(0 <unfinished ...>
[pid  7778] <... futex resumed>)        = ?
[pid  7779] <... futex resumed>)        = ?
[pid  7777] <... exit_group resumed>)   = ?
[pid  7779] +++ exited with 0 +++
[pid  7778] +++ exited with 0 +++
[pid  7777] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2695, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./898", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./898", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./898/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./898/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./898/binderfs")    = 0
[pid  5067] umount2("./898/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./898/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./898/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./898/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./898/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./898/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./898")              = 0
[pid  5067] mkdir("./899", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2698
./strace-static-x86_64: Process 7780 attached
[pid  7780] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7780] chdir("./899")              = 0
[pid  7780] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7780] setpgid(0, 0)               = 0
[pid  7780] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7780] write(3, "1000", 4)         = 4
[pid  7780] close(3)                    = 0
[pid  7780] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7780] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7780] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7780] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7780] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7781 attached
 <unfinished ...>
[pid  7781] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7781] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7780] <... clone resumed>, parent_tid=[2699], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2699
[pid  7780] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7781] <... futex resumed>)        = 0
[pid  7780] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7781] memfd_create("syzkaller", 0) = 3
[pid  7781] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7781] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7781] munmap(0x7ff042e09000, 2097152) = 0
[pid  7781] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7781] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7781] close(3)                    = 0
[pid  7781] mkdir("./file0", 0777)      = 0
[pid  7781] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7781] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7781] chdir("./file0")            = 0
[pid  7781] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7781] close(4)                    = 0
[pid  7781] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7780] <... futex resumed>)        = 0
[pid  7780] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7780] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7780] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7780] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7780] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2700], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2700
[pid  7780] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7780] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7781] <... futex resumed>)        = 1
[  193.958767][ T7781] loop0: detected capacity change from 0 to 4096
[pid  7781] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7782 attached
 <unfinished ...>
[pid  7782] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7782] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7782] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7780] <... futex resumed>)        = 0
[pid  7782] creat("./file0", 0406 <unfinished ...>
[pid  7780] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7780] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7781] <... mkdirat resumed>)      = 0
[pid  7782] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7782] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7780] <... futex resumed>)        = 0
[pid  7782] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7781] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7780] close(3 <unfinished ...>
[pid  7781] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7780] <... close resumed>)        = 0
[pid  7780] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7780] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7780] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7780] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7780] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7780] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7780] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7780] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7780] exit_group(0 <unfinished ...>
[pid  7782] <... futex resumed>)        = ?
[pid  7781] <... futex resumed>)        = ?
[pid  7780] <... exit_group resumed>)   = ?
[pid  7782] +++ exited with 0 +++
[pid  7781] +++ exited with 0 +++
[pid  7780] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2698, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./899", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./899", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./899/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./899/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./899/binderfs")    = 0
[pid  5067] umount2("./899/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./899/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./899/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./899/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./899/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./899/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./899")              = 0
[pid  5067] mkdir("./900", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2701
./strace-static-x86_64: Process 7783 attached
[pid  7783] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7783] chdir("./900")              = 0
[pid  7783] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7783] setpgid(0, 0)               = 0
[pid  7783] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7783] write(3, "1000", 4)         = 4
[pid  7783] close(3)                    = 0
[pid  7783] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7783] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7783] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7783] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7783] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2702], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2702
[pid  7783] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7783] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7784 attached
 <unfinished ...>
[pid  7784] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7784] memfd_create("syzkaller", 0) = 3
[pid  7784] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7784] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7784] munmap(0x7ff042e09000, 2097152) = 0
[pid  7784] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7784] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7784] close(3)                    = 0
[pid  7784] mkdir("./file0", 0777)      = 0
[pid  7784] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7784] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7784] chdir("./file0")            = 0
[pid  7784] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7784] close(4)                    = 0
[pid  7784] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7783] <... futex resumed>)        = 0
[pid  7783] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7783] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7783] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[  194.206726][ T7784] loop0: detected capacity change from 0 to 4096
[pid  7783] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7783] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2703], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2703
[pid  7783] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7783] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7784] <... futex resumed>)        = 1
[pid  7784] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7785 attached
 <unfinished ...>
[pid  7785] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7785] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7785] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7783] <... futex resumed>)        = 0
[pid  7783] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7785] creat("./file0", 0406 <unfinished ...>
[pid  7783] <... futex resumed>)        = 0
[pid  7783] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7784] <... mkdirat resumed>)      = 0
[pid  7784] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7785] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7785] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7783] <... futex resumed>)        = 0
[pid  7785] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7783] close(3)                    = 0
[pid  7783] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7783] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7783] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7783] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7783] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7783] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7783] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7784] <... futex resumed>)        = 0
[pid  7783] close(14 <unfinished ...>
[pid  7784] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7783] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7783] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7783] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7783] exit_group(0 <unfinished ...>
[pid  7785] <... futex resumed>)        = ?
[pid  7784] <... futex resumed>)        = ?
[pid  7783] <... exit_group resumed>)   = ?
[pid  7785] +++ exited with 0 +++
[pid  7784] +++ exited with 0 +++
[pid  7783] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2701, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./900", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./900", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./900/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./900/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./900/binderfs")    = 0
[pid  5067] umount2("./900/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./900/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./900/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./900/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./900/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./900/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./900")              = 0
[pid  5067] mkdir("./901", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2704
./strace-static-x86_64: Process 7786 attached
[pid  7786] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7786] chdir("./901")              = 0
[pid  7786] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7786] setpgid(0, 0)               = 0
[pid  7786] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7786] write(3, "1000", 4)         = 4
[pid  7786] close(3)                    = 0
[pid  7786] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7786] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7786] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7786] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7786] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2705], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2705
[pid  7786] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7786] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7787 attached
 <unfinished ...>
[pid  7787] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7787] memfd_create("syzkaller", 0) = 3
[pid  7787] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7787] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7787] munmap(0x7ff042e09000, 2097152) = 0
[pid  7787] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7787] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7787] close(3)                    = 0
[pid  7787] mkdir("./file0", 0777)      = 0
[pid  7787] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7787] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7787] chdir("./file0")            = 0
[pid  7787] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7787] close(4)                    = 0
[pid  7787] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[  194.457229][ T7787] loop0: detected capacity change from 0 to 4096
[pid  7787] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7786] <... futex resumed>)        = 0
[pid  7786] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7786] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7786] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7787] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7786] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7786] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7787] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7786] <... mprotect resumed>)     = 0
[pid  7786] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2706], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2706
[pid  7786] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7786] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7788 attached
 <unfinished ...>
[pid  7788] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7788] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7787] <... mkdirat resumed>)      = 0
[pid  7787] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7787] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7788] <... chdir resumed>)        = 0
[pid  7788] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7786] <... futex resumed>)        = 0
[pid  7788] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7786] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7786] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7787] <... futex resumed>)        = 0
[pid  7787] creat("./file0", 0406)      = 4
[pid  7787] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7786] <... futex resumed>)        = 0
[pid  7786] close(3)                    = 0
[pid  7786] close(4)                    = 0
[pid  7786] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7786] close(6 <unfinished ...>
[pid  7787] <... futex resumed>)        = 1
[pid  7786] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7786] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7786] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7786] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7787] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7786] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7786] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7786] exit_group(0 <unfinished ...>
[pid  7788] <... futex resumed>)        = ?
[pid  7787] <... futex resumed>)        = ?
[pid  7786] <... exit_group resumed>)   = ?
[pid  7788] +++ exited with 0 +++
[pid  7787] +++ exited with 0 +++
[pid  7786] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2704, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./901", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./901", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./901/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./901/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./901/binderfs")    = 0
[pid  5067] umount2("./901/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./901/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./901/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./901/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./901/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./901/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./901")              = 0
[pid  5067] mkdir("./902", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2707
./strace-static-x86_64: Process 7789 attached
[pid  7789] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7789] chdir("./902")              = 0
[pid  7789] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7789] setpgid(0, 0)               = 0
[pid  7789] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7789] write(3, "1000", 4)         = 4
[pid  7789] close(3)                    = 0
[pid  7789] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7789] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7789] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7789] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7789] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7790 attached
 <unfinished ...>
[pid  7790] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7790] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7789] <... clone resumed>, parent_tid=[2708], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2708
[pid  7789] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7789] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7790] <... futex resumed>)        = 0
[pid  7790] memfd_create("syzkaller", 0) = 3
[pid  7790] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7790] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7790] munmap(0x7ff042e09000, 2097152) = 0
[pid  7790] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7790] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7790] close(3)                    = 0
[pid  7790] mkdir("./file0", 0777)      = 0
[pid  7790] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7790] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7790] chdir("./file0")            = 0
[pid  7790] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7790] close(4)                    = 0
[pid  7790] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7789] <... futex resumed>)        = 0
[pid  7789] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7789] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7789] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7789] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7789] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7790] <... futex resumed>)        = 1
[pid  7790] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7789] <... clone resumed>, parent_tid=[2709], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2709
[pid  7789] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7789] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7791 attached
 <unfinished ...>
[pid  7790] <... mkdirat resumed>)      = 0
[pid  7790] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7790] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7791] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7791] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7791] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7789] <... futex resumed>)        = 0
[pid  7789] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7790] <... futex resumed>)        = 0
[pid  7789] <... futex resumed>)        = 1
[pid  7790] creat("./file0", 0406 <unfinished ...>
[pid  7789] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7791] <... futex resumed>)        = 1
[pid  7790] <... creat resumed>)        = 4
[pid  7790] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7789] <... futex resumed>)        = 0
[pid  7790] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7789] close(3)                    = 0
[pid  7789] close(4)                    = 0
[pid  7789] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7789] close(6 <unfinished ...>
[pid  7791] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7789] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7789] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7789] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7789] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7789] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(20)                   = -1 EBADF (Bad file descriptor)
[  194.637217][ T7790] loop0: detected capacity change from 0 to 4096
[pid  7789] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7789] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7789] exit_group(0 <unfinished ...>
[pid  7791] <... futex resumed>)        = ?
[pid  7790] <... futex resumed>)        = ?
[pid  7789] <... exit_group resumed>)   = ?
[pid  7791] +++ exited with 0 +++
[pid  7790] +++ exited with 0 +++
[pid  7789] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2707, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./902", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./902", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./902/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./902/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./902/binderfs")    = 0
[pid  5067] umount2("./902/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./902/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./902/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./902/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./902/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./902/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./902")              = 0
[pid  5067] mkdir("./903", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2710
./strace-static-x86_64: Process 7792 attached
[pid  7792] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7792] chdir("./903")              = 0
[pid  7792] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7792] setpgid(0, 0)               = 0
[pid  7792] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7792] write(3, "1000", 4)         = 4
[pid  7792] close(3)                    = 0
[pid  7792] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7792] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7792] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7792] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7792] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7793 attached
, parent_tid=[2711], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2711
[pid  7792] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7793] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7792] <... futex resumed>)        = 0
[pid  7793] <... set_robust_list resumed>) = 0
[pid  7792] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7793] memfd_create("syzkaller", 0) = 3
[pid  7793] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7793] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7793] munmap(0x7ff042e09000, 2097152) = 0
[pid  7793] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7793] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7793] close(3)                    = 0
[pid  7793] mkdir("./file0", 0777)      = 0
[pid  7793] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7793] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7793] chdir("./file0")            = 0
[pid  7793] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7793] close(4)                    = 0
[pid  7793] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7792] <... futex resumed>)        = 0
[pid  7792] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7792] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7793] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7792] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7792] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7792] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7794 attached
, parent_tid=[2712], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2712
[pid  7792] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7792] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7794] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7793] <... mkdirat resumed>)      = 0
[pid  7793] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7793] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7794] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7794] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7792] <... futex resumed>)        = 0
[pid  7792] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7793] <... futex resumed>)        = 0
[pid  7792] <... futex resumed>)        = 1
[pid  7792] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7793] creat("./file0", 0406 <unfinished ...>
[  194.785238][ T7793] loop0: detected capacity change from 0 to 4096
[pid  7794] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7793] <... creat resumed>)        = 4
[pid  7793] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7792] <... futex resumed>)        = 0
[pid  7793] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7792] close(3)                    = 0
[pid  7792] close(4)                    = 0
[pid  7792] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7792] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7792] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7792] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7792] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7792] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7792] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7792] exit_group(0 <unfinished ...>
[pid  7794] <... futex resumed>)        = ?
[pid  7793] <... futex resumed>)        = ?
[pid  7792] <... exit_group resumed>)   = ?
[pid  7794] +++ exited with 0 +++
[pid  7793] +++ exited with 0 +++
[pid  7792] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2710, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./903", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./903", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./903/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./903/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./903/binderfs")    = 0
[pid  5067] umount2("./903/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./903/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./903/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./903/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./903/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./903/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./903")              = 0
[pid  5067] mkdir("./904", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2713
./strace-static-x86_64: Process 7795 attached
[pid  7795] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7795] chdir("./904")              = 0
[pid  7795] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7795] setpgid(0, 0)               = 0
[pid  7795] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7795] write(3, "1000", 4)         = 4
[pid  7795] close(3)                    = 0
[pid  7795] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7795] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7795] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7795] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7795] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2714], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2714
[pid  7795] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7795] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7796 attached
 <unfinished ...>
[pid  7796] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7796] memfd_create("syzkaller", 0) = 3
[pid  7796] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7796] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7796] munmap(0x7ff042e09000, 2097152) = 0
[pid  7796] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7796] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7796] close(3)                    = 0
[pid  7796] mkdir("./file0", 0777)      = 0
[pid  7796] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7796] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7796] chdir("./file0")            = 0
[pid  7796] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7796] close(4)                    = 0
[pid  7796] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7796] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7795] <... futex resumed>)        = 0
[pid  7795] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7795] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7795] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7795] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7795] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2715], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2715
[pid  7795] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7795] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7796] <... futex resumed>)        = 0
[pid  7796] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7797 attached
 <unfinished ...>
[pid  7797] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7797] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7796] <... mkdirat resumed>)      = 0
[pid  7797] <... chdir resumed>)        = 0
[pid  7796] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7797] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7796] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7797] <... futex resumed>)        = 1
[pid  7797] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7795] <... futex resumed>)        = 0
[pid  7795] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7795] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7796] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7796] creat("./file0", 0406)      = 4
[pid  7796] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7795] <... futex resumed>)        = 0
[pid  7795] close(3)                    = 0
[pid  7795] close(4)                    = 0
[pid  7795] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7795] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7795] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7795] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7795] close(9 <unfinished ...>
[pid  7796] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7795] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7795] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7795] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7795] exit_group(0 <unfinished ...>
[pid  7797] <... futex resumed>)        = ?
[pid  7796] <... futex resumed>)        = ?
[pid  7795] <... exit_group resumed>)   = ?
[pid  7797] +++ exited with 0 +++
[pid  7796] +++ exited with 0 +++
[pid  7795] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2713, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./904", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./904", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./904/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./904/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[  194.937306][ T7796] loop0: detected capacity change from 0 to 4096
[pid  5067] unlink("./904/binderfs")    = 0
[pid  5067] umount2("./904/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./904/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./904/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./904/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./904/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./904/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./904")              = 0
[pid  5067] mkdir("./905", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2716
./strace-static-x86_64: Process 7798 attached
[pid  7798] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7798] chdir("./905")              = 0
[pid  7798] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7798] setpgid(0, 0)               = 0
[pid  7798] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7798] write(3, "1000", 4)         = 4
[pid  7798] close(3)                    = 0
[pid  7798] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7798] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7798] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7798] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7798] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7799 attached
, parent_tid=[2717], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2717
[pid  7798] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7798] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7799] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7799] memfd_create("syzkaller", 0) = 3
[pid  7799] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7799] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7799] munmap(0x7ff042e09000, 2097152) = 0
[pid  7799] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7799] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7799] close(3)                    = 0
[pid  7799] mkdir("./file0", 0777)      = 0
[pid  7799] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7799] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7799] chdir("./file0")            = 0
[pid  7799] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7799] close(4)                    = 0
[pid  7799] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7798] <... futex resumed>)        = 0
[pid  7798] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7798] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7798] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7798] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7798] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2718], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2718
[pid  7798] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7798] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7799] <... futex resumed>)        = 1
[pid  7799] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7800 attached
) = 0
[pid  7800] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7800] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7800] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7798] <... futex resumed>)        = 0
[pid  7799] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7798] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7798] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = 0
[pid  7798] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7799] <... futex resumed>)        = 1
[pid  7799] creat("./file0", 0406 <unfinished ...>
[pid  7800] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7799] <... creat resumed>)        = 4
[pid  7799] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7798] <... futex resumed>)        = 0
[pid  7798] close(3)                    = 0
[pid  7798] close(4)                    = 0
[pid  7798] close(5)                    = -1 EBADF (Bad file descriptor)
[  195.078843][ T7799] loop0: detected capacity change from 0 to 4096
[pid  7798] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7798] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7798] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7798] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7798] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(11 <unfinished ...>
[pid  7799] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7798] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7798] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7798] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7798] exit_group(0 <unfinished ...>
[pid  7800] <... futex resumed>)        = ?
[pid  7798] <... exit_group resumed>)   = ?
[pid  7799] <... futex resumed>)        = ?
[pid  7800] +++ exited with 0 +++
[pid  7799] +++ exited with 0 +++
[pid  7798] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2716, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./905", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./905", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./905/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./905/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./905/binderfs")    = 0
[pid  5067] umount2("./905/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./905/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./905/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./905/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./905/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./905/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./905")              = 0
[pid  5067] mkdir("./906", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7801 attached
 <unfinished ...>
[pid  7801] set_robust_list(0x5555570e75e0, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2719
[pid  7801] <... set_robust_list resumed>) = 0
[pid  7801] chdir("./906")              = 0
[pid  7801] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7801] setpgid(0, 0)               = 0
[pid  7801] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7801] write(3, "1000", 4)         = 4
[pid  7801] close(3)                    = 0
[pid  7801] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7801] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7801] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7801] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7801] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7802 attached
, parent_tid=[2720], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2720
[pid  7801] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7801] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7802] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7802] memfd_create("syzkaller", 0) = 3
[pid  7802] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7802] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7802] munmap(0x7ff042e09000, 2097152) = 0
[pid  7802] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7802] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7802] close(3)                    = 0
[pid  7802] mkdir("./file0", 0777)      = 0
[pid  7802] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7802] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7802] chdir("./file0")            = 0
[pid  7802] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7802] close(4)                    = 0
[pid  7802] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7801] <... futex resumed>)        = 0
[pid  7802] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7801] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7801] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7801] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7801] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7801] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2721], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2721
[pid  7801] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 7803 attached
[pid  7801] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7802] <... mkdirat resumed>)      = 0
[pid  7802] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7802] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7803] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7803] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7803] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7801] <... futex resumed>)        = 0
[pid  7803] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7801] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7802] <... futex resumed>)        = 0
[pid  7801] <... futex resumed>)        = 1
[pid  7802] creat("./file0", 0406 <unfinished ...>
[pid  7801] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7802] <... creat resumed>)        = 4
[pid  7802] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7801] <... futex resumed>)        = 0
[pid  7802] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7801] close(3)                    = 0
[pid  7801] close(4)                    = 0
[pid  7801] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7801] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7801] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7801] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7801] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7801] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(17)                   = -1 EBADF (Bad file descriptor)
[  195.244656][ T7802] loop0: detected capacity change from 0 to 4096
[pid  7801] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7801] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7801] exit_group(0 <unfinished ...>
[pid  7803] <... futex resumed>)        = ?
[pid  7802] <... futex resumed>)        = ?
[pid  7801] <... exit_group resumed>)   = ?
[pid  7803] +++ exited with 0 +++
[pid  7802] +++ exited with 0 +++
[pid  7801] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2719, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./906", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./906", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./906/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./906/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./906/binderfs")    = 0
[pid  5067] umount2("./906/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./906/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./906/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./906/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./906/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./906/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./906")              = 0
[pid  5067] mkdir("./907", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2722
./strace-static-x86_64: Process 7804 attached
[pid  7804] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7804] chdir("./907")              = 0
[pid  7804] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7804] setpgid(0, 0)               = 0
[pid  7804] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7804] write(3, "1000", 4)         = 4
[pid  7804] close(3)                    = 0
[pid  7804] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7804] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7804] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7804] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7804] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2723], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2723
[pid  7804] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7804] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7805 attached
 <unfinished ...>
[pid  7805] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7805] memfd_create("syzkaller", 0) = 3
[pid  7805] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7805] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7805] munmap(0x7ff042e09000, 2097152) = 0
[pid  7805] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7805] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7805] close(3)                    = 0
[pid  7805] mkdir("./file0", 0777)      = 0
[pid  7805] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7805] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7805] chdir("./file0")            = 0
[pid  7805] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7805] close(4)                    = 0
[pid  7805] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7804] <... futex resumed>)        = 0
[pid  7805] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7804] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7804] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7804] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7805] <... futex resumed>)        = 0
[pid  7804] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7804] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7804] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7806 attached
, parent_tid=[2724], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2724
[pid  7806] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7804] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7806] <... set_robust_list resumed>) = 0
[pid  7804] <... futex resumed>)        = 0
[pid  7804] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7806] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7806] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7804] <... futex resumed>)        = 0
[pid  7806] <... futex resumed>)        = 1
[pid  7804] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7804] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7805] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7806] creat("./file0", 0406 <unfinished ...>
[pid  7805] <... mkdirat resumed>)      = 0
[pid  7805] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7805] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7806] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7806] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7804] <... futex resumed>)        = 0
[pid  7804] close(3 <unfinished ...>
[pid  7806] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7804] <... close resumed>)        = 0
[pid  7804] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7804] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7804] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7804] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7804] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7804] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7804] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7804] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7804] exit_group(0 <unfinished ...>
[pid  7806] <... futex resumed>)        = ?
[pid  7805] <... futex resumed>)        = ?
[pid  7804] <... exit_group resumed>)   = ?
[pid  7806] +++ exited with 0 +++
[pid  7805] +++ exited with 0 +++
[  195.393249][ T7805] loop0: detected capacity change from 0 to 4096
[pid  7804] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2722, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./907", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./907", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./907/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./907/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./907/binderfs")    = 0
[pid  5067] umount2("./907/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./907/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./907/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./907/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./907/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./907/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./907")              = 0
[pid  5067] mkdir("./908", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2725
./strace-static-x86_64: Process 7807 attached
[pid  7807] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7807] chdir("./908")              = 0
[pid  7807] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7807] setpgid(0, 0)               = 0
[pid  7807] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7807] write(3, "1000", 4)         = 4
[pid  7807] close(3)                    = 0
[pid  7807] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7807] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7807] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7807] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7807] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2726], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2726
./strace-static-x86_64: Process 7808 attached
[pid  7807] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7808] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7807] <... futex resumed>)        = 0
[pid  7808] <... set_robust_list resumed>) = 0
[pid  7807] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7808] memfd_create("syzkaller", 0) = 3
[pid  7808] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7808] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7808] munmap(0x7ff042e09000, 2097152) = 0
[pid  7808] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7808] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7808] close(3)                    = 0
[pid  7808] mkdir("./file0", 0777)      = 0
[pid  7808] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7808] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7808] chdir("./file0")            = 0
[pid  7808] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7808] close(4)                    = 0
[pid  7808] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7807] <... futex resumed>)        = 0
[pid  7807] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7807] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7807] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7807] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7807] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2727], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2727
[pid  7807] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7807] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7808] <... futex resumed>)        = 1
[pid  7808] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7809 attached
 <unfinished ...>
[pid  7809] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7809] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7808] <... mkdirat resumed>)      = 0
[pid  7808] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7808] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7809] <... chdir resumed>)        = 0
[pid  7809] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7807] <... futex resumed>)        = 0
[pid  7807] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7807] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7808] <... futex resumed>)        = 0
[pid  7808] creat("./file0", 0406 <unfinished ...>
[pid  7809] <... futex resumed>)        = 1
[pid  7809] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7808] <... creat resumed>)        = 4
[pid  7808] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7807] <... futex resumed>)        = 0
[pid  7807] close(3)                    = 0
[pid  7807] close(4)                    = 0
[pid  7807] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7807] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7807] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7807] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7807] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7807] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(12 <unfinished ...>
[pid  7808] <... futex resumed>)        = 1
[pid  7807] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7808] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7807] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7807] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7807] exit_group(0 <unfinished ...>
[pid  7808] <... futex resumed>)        = ?
[pid  7807] <... exit_group resumed>)   = ?
[pid  7808] +++ exited with 0 +++
[pid  7809] <... futex resumed>)        = ?
[pid  7809] +++ exited with 0 +++
[pid  7807] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2725, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./908", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./908", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./908/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./908/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./908/binderfs")    = 0
[  195.532929][ T7808] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./908/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./908/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./908/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./908/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./908/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./908/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./908")              = 0
[pid  5067] mkdir("./909", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2728
./strace-static-x86_64: Process 7810 attached
[pid  7810] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7810] chdir("./909")              = 0
[pid  7810] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7810] setpgid(0, 0)               = 0
[pid  7810] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7810] write(3, "1000", 4)         = 4
[pid  7810] close(3)                    = 0
[pid  7810] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7810] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7810] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7810] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7810] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2729], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2729
[pid  7810] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7810] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7811 attached
 <unfinished ...>
[pid  7811] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7811] memfd_create("syzkaller", 0) = 3
[pid  7811] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7811] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7811] munmap(0x7ff042e09000, 2097152) = 0
[pid  7811] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7811] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7811] close(3)                    = 0
[pid  7811] mkdir("./file0", 0777)      = 0
[pid  7811] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7811] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7811] chdir("./file0")            = 0
[pid  7811] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7811] close(4)                    = 0
[pid  7811] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7810] <... futex resumed>)        = 0
[pid  7810] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7810] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7810] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7810] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7810] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2730], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2730
[pid  7810] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7810] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7811] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7812 attached
 <unfinished ...>
[pid  7812] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7811] <... mkdirat resumed>)      = 0
[pid  7811] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7811] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7812] <... set_robust_list resumed>) = 0
[pid  7812] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7812] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7810] <... futex resumed>)        = 0
[pid  7810] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7810] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7811] <... futex resumed>)        = 0
[pid  7811] creat("./file0", 0406 <unfinished ...>
[pid  7812] <... futex resumed>)        = 1
[pid  7812] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7811] <... creat resumed>)        = 4
[pid  7811] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7810] <... futex resumed>)        = 0
[pid  7810] close(3)                    = 0
[pid  7810] close(4)                    = 0
[pid  7810] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7810] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7810] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7810] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7810] close(9 <unfinished ...>
[pid  7811] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7810] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7810] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7810] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7810] exit_group(0 <unfinished ...>
[pid  7812] <... futex resumed>)        = ?
[  195.661682][ T7811] loop0: detected capacity change from 0 to 4096
[pid  7811] <... futex resumed>)        = ?
[pid  7810] <... exit_group resumed>)   = ?
[pid  7812] +++ exited with 0 +++
[pid  7811] +++ exited with 0 +++
[pid  7810] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2728, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./909", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./909", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./909/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./909/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./909/binderfs")    = 0
[pid  5067] umount2("./909/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./909/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./909/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./909/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./909/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./909/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./909")              = 0
[pid  5067] mkdir("./910", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2731
./strace-static-x86_64: Process 7813 attached
[pid  7813] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7813] chdir("./910")              = 0
[pid  7813] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7813] setpgid(0, 0)               = 0
[pid  7813] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7813] write(3, "1000", 4)         = 4
[pid  7813] close(3)                    = 0
[pid  7813] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7813] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7813] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7813] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7813] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7814 attached
, parent_tid=[2732], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2732
[pid  7813] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7813] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7814] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7814] memfd_create("syzkaller", 0) = 3
[pid  7814] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7814] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7814] munmap(0x7ff042e09000, 2097152) = 0
[pid  7814] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7814] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7814] close(3)                    = 0
[pid  7814] mkdir("./file0", 0777)      = 0
[pid  7814] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7814] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7814] chdir("./file0")            = 0
[pid  7814] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7814] close(4)                    = 0
[pid  7814] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7813] <... futex resumed>)        = 0
[pid  7813] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7813] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7813] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7814] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7813] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7814] <... mkdirat resumed>)      = 0
[pid  7813] <... mprotect resumed>)     = 0
[pid  7814] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7813] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7815 attached
 <unfinished ...>
[pid  7814] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7813] <... clone resumed>, parent_tid=[2733], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2733
[pid  7813] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7813] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7815] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7815] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7815] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7813] <... futex resumed>)        = 0
[pid  7815] <... futex resumed>)        = 1
[pid  7813] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7815] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7814] <... futex resumed>)        = 0
[pid  7813] <... futex resumed>)        = 1
[pid  7814] creat("./file0", 0406 <unfinished ...>
[pid  7813] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7814] <... creat resumed>)        = 4
[pid  7814] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7813] <... futex resumed>)        = 0
[pid  7814] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7813] close(3)                    = 0
[pid  7813] close(4)                    = 0
[pid  7813] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7813] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7813] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7813] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7813] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7813] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(13)                   = -1 EBADF (Bad file descriptor)
[  195.801489][ T7814] loop0: detected capacity change from 0 to 4096
[pid  7813] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7813] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7813] exit_group(0 <unfinished ...>
[pid  7815] <... futex resumed>)        = ?
[pid  7814] <... futex resumed>)        = ?
[pid  7813] <... exit_group resumed>)   = ?
[pid  7815] +++ exited with 0 +++
[pid  7814] +++ exited with 0 +++
[pid  7813] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2731, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./910", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./910", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./910/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./910/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./910/binderfs")    = 0
[pid  5067] umount2("./910/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./910/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./910/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./910/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./910/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./910/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./910")              = 0
[pid  5067] mkdir("./911", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7816 attached
 <unfinished ...>
[pid  7816] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7816] chdir("./911")              = 0
[pid  7816] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7816] setpgid(0, 0)               = 0
[pid  7816] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7816] write(3, "1000", 4)         = 4
[pid  7816] close(3)                    = 0
[pid  5067] <... clone resumed>, child_tidptr=0x5555570e75d0) = 2734
[pid  7816] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7816] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7816] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7816] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7816] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7817 attached
, parent_tid=[2735], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2735
[pid  7817] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7816] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7817] <... set_robust_list resumed>) = 0
[pid  7816] <... futex resumed>)        = 0
[pid  7816] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7817] memfd_create("syzkaller", 0) = 3
[pid  7817] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7817] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7817] munmap(0x7ff042e09000, 2097152) = 0
[pid  7817] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7817] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7817] close(3)                    = 0
[pid  7817] mkdir("./file0", 0777)      = 0
[pid  7817] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7817] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7817] chdir("./file0")            = 0
[pid  7817] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7817] close(4)                    = 0
[pid  7817] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7816] <... futex resumed>)        = 0
[pid  7816] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7816] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7816] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7816] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7816] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2736], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2736
[pid  7816] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7816] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7817] <... futex resumed>)        = 1
[pid  7817] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7817] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7817] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7818 attached
 <unfinished ...>
[pid  7818] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7818] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7818] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7816] <... futex resumed>)        = 0
[pid  7816] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7816] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7817] <... futex resumed>)        = 0
[pid  7817] creat("./file0", 0406 <unfinished ...>
[pid  7818] <... futex resumed>)        = 1
[pid  7818] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7817] <... creat resumed>)        = 4
[pid  7817] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7816] <... futex resumed>)        = 0
[pid  7816] close(3)                    = 0
[pid  7816] close(4)                    = 0
[pid  7816] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7816] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7816] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7816] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7816] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7816] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(20 <unfinished ...>
[pid  7817] <... futex resumed>)        = 1
[pid  7816] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7817] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7816] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7816] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7816] exit_group(0 <unfinished ...>
[pid  7818] <... futex resumed>)        = ?
[pid  7817] <... futex resumed>)        = ?
[pid  7816] <... exit_group resumed>)   = ?
[pid  7818] +++ exited with 0 +++
[pid  7817] +++ exited with 0 +++
[pid  7816] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2734, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[  195.950691][ T7817] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./911", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./911", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./911/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./911/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./911/binderfs")    = 0
[pid  5067] umount2("./911/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./911/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./911/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./911/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./911/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./911/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./911")              = 0
[pid  5067] mkdir("./912", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7819 attached
, child_tidptr=0x5555570e75d0) = 2737
[pid  7819] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7819] chdir("./912")              = 0
[pid  7819] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7819] setpgid(0, 0)               = 0
[pid  7819] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7819] write(3, "1000", 4)         = 4
[pid  7819] close(3)                    = 0
[pid  7819] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7819] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7819] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7819] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7819] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2738], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2738
./strace-static-x86_64: Process 7820 attached
[pid  7819] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7820] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7819] <... futex resumed>)        = 0
[pid  7820] <... set_robust_list resumed>) = 0
[pid  7819] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7820] memfd_create("syzkaller", 0) = 3
[pid  7820] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7820] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7820] munmap(0x7ff042e09000, 2097152) = 0
[pid  7820] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7820] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7820] close(3)                    = 0
[pid  7820] mkdir("./file0", 0777)      = 0
[pid  7820] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7820] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7820] chdir("./file0")            = 0
[pid  7820] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7820] close(4)                    = 0
[pid  7820] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7819] <... futex resumed>)        = 0
[pid  7819] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7820] <... futex resumed>)        = 1
[pid  7819] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7820] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7819] <... futex resumed>)        = 0
[pid  7819] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7819] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7819] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2739], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2739
[pid  7819] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7819] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7820] <... mkdirat resumed>)      = 0
[pid  7820] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7820] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7821 attached
 <unfinished ...>
[pid  7821] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7821] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7821] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7819] <... futex resumed>)        = 0
[pid  7819] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7820] <... futex resumed>)        = 0
[pid  7819] <... futex resumed>)        = 1
[pid  7820] creat("./file0", 0406 <unfinished ...>
[pid  7819] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7821] <... futex resumed>)        = 1
[pid  7821] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7820] <... creat resumed>)        = 4
[pid  7820] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7819] <... futex resumed>)        = 0
[pid  7820] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7819] close(3)                    = 0
[pid  7819] close(4)                    = 0
[pid  7819] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7819] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7819] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7819] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7819] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7819] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7819] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7819] exit_group(0 <unfinished ...>
[pid  7821] <... futex resumed>)        = ?
[pid  7820] <... futex resumed>)        = ?
[pid  7819] <... exit_group resumed>)   = ?
[pid  7821] +++ exited with 0 +++
[pid  7820] +++ exited with 0 +++
[pid  7819] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2737, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./912", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./912", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./912/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./912/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./912/binderfs")    = 0
[  196.103053][ T7820] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./912/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./912/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./912/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./912/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./912/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./912/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./912")              = 0
[pid  5067] mkdir("./913", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2740
./strace-static-x86_64: Process 7822 attached
[pid  7822] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7822] chdir("./913")              = 0
[pid  7822] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7822] setpgid(0, 0)               = 0
[pid  7822] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7822] write(3, "1000", 4)         = 4
[pid  7822] close(3)                    = 0
[pid  7822] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7822] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7822] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7822] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7822] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7823 attached
, parent_tid=[2741], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2741
[pid  7822] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7822] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7823] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7823] memfd_create("syzkaller", 0) = 3
[pid  7823] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7823] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7823] munmap(0x7ff042e09000, 2097152) = 0
[pid  7823] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7823] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7823] close(3)                    = 0
[pid  7823] mkdir("./file0", 0777)      = 0
[pid  7823] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7823] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7823] chdir("./file0")            = 0
[pid  7823] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7823] close(4)                    = 0
[pid  7823] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7823] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7822] <... futex resumed>)        = 0
[pid  7822] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7822] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7822] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7822] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7822] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2742], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2742
[pid  7822] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7822] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7823] <... futex resumed>)        = 0
[pid  7823] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7824 attached
 <unfinished ...>
[pid  7824] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7824] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7823] <... mkdirat resumed>)      = 0
[pid  7823] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7823] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7824] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7822] <... futex resumed>)        = 0
[pid  7822] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7822] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7823] <... futex resumed>)        = 0
[pid  7823] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7823] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7822] <... futex resumed>)        = 0
[pid  7822] close(3)                    = 0
[pid  7822] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7822] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7822] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7822] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7822] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7822] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7822] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(17 <unfinished ...>
[pid  7823] <... futex resumed>)        = 1
[pid  7822] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7823] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7822] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7824] <... futex resumed>)        = 1
[pid  7822] close(26 <unfinished ...>
[pid  7824] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7822] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7822] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7822] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7822] exit_group(0 <unfinished ...>
[pid  7824] <... futex resumed>)        = ?
[pid  7823] <... futex resumed>)        = ?
[pid  7822] <... exit_group resumed>)   = ?
[  196.249130][ T7823] loop0: detected capacity change from 0 to 4096
[pid  7824] +++ exited with 0 +++
[pid  7823] +++ exited with 0 +++
[pid  7822] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2740, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./913", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./913", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./913/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./913/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./913/binderfs")    = 0
[pid  5067] umount2("./913/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./913/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./913/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./913/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./913/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./913/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./913")              = 0
[pid  5067] mkdir("./914", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2743
./strace-static-x86_64: Process 7825 attached
[pid  7825] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7825] chdir("./914")              = 0
[pid  7825] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7825] setpgid(0, 0)               = 0
[pid  7825] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7825] write(3, "1000", 4)         = 4
[pid  7825] close(3)                    = 0
[pid  7825] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7825] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7825] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7825] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7825] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2744], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2744
[pid  7825] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7825] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7826 attached
 <unfinished ...>
[pid  7826] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7826] memfd_create("syzkaller", 0) = 3
[pid  7826] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7826] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7826] munmap(0x7ff042e09000, 2097152) = 0
[pid  7826] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7826] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7826] close(3)                    = 0
[pid  7826] mkdir("./file0", 0777)      = 0
[pid  7826] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7826] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7826] chdir("./file0")            = 0
[pid  7826] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7826] close(4)                    = 0
[pid  7826] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7825] <... futex resumed>)        = 0
[pid  7825] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7825] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7825] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7825] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7825] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2745], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2745
[pid  7825] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7825] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7826] <... futex resumed>)        = 1
[pid  7826] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7826] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7826] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7827 attached
 <unfinished ...>
[pid  7827] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7827] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7827] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7825] <... futex resumed>)        = 0
[pid  7825] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7825] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7826] <... futex resumed>)        = 0
[pid  7826] creat("./file0", 0406 <unfinished ...>
[pid  7827] <... futex resumed>)        = 1
[pid  7827] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7826] <... creat resumed>)        = 4
[pid  7826] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7825] <... futex resumed>)        = 0
[pid  7825] close(3)                    = 0
[pid  7825] close(4)                    = 0
[pid  7825] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7825] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7825] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7825] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7825] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7825] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7826] <... futex resumed>)        = 1
[pid  7825] close(15 <unfinished ...>
[pid  7826] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7825] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7825] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7825] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7825] exit_group(0 <unfinished ...>
[pid  7827] <... futex resumed>)        = ?
[pid  7826] <... futex resumed>)        = ?
[pid  7825] <... exit_group resumed>)   = ?
[pid  7827] +++ exited with 0 +++
[pid  7826] +++ exited with 0 +++
[pid  7825] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2743, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./914", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./914", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[  196.387444][ T7826] loop0: detected capacity change from 0 to 4096
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./914/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./914/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./914/binderfs")    = 0
[pid  5067] umount2("./914/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./914/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./914/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./914/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./914/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./914/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./914")              = 0
[pid  5067] mkdir("./915", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2746
./strace-static-x86_64: Process 7828 attached
[pid  7828] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7828] chdir("./915")              = 0
[pid  7828] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7828] setpgid(0, 0)               = 0
[pid  7828] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7828] write(3, "1000", 4)         = 4
[pid  7828] close(3)                    = 0
[pid  7828] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7828] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7828] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7828] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7828] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2747], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2747
[pid  7828] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7828] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7829 attached
 <unfinished ...>
[pid  7829] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7829] memfd_create("syzkaller", 0) = 3
[pid  7829] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7829] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7829] munmap(0x7ff042e09000, 2097152) = 0
[pid  7829] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7829] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7829] close(3)                    = 0
[pid  7829] mkdir("./file0", 0777)      = 0
[pid  7829] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7829] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7829] chdir("./file0")            = 0
[pid  7829] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7829] close(4)                    = 0
[pid  7829] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7828] <... futex resumed>)        = 0
[pid  7828] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7828] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7828] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7828] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7828] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2748], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2748
[pid  7828] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7828] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7829] <... futex resumed>)        = 1
[pid  7829] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7830 attached
 <unfinished ...>
[pid  7830] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7830] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7830] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7828] <... futex resumed>)        = 0
[pid  7828] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7828] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7830] creat("./file0", 0406 <unfinished ...>
[pid  7829] <... mkdirat resumed>)      = 0
[pid  7829] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7830] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7830] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7828] <... futex resumed>)        = 0
[pid  7830] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7828] close(3)                    = 0
[pid  7828] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7828] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7828] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7828] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7828] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7828] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7828] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(13 <unfinished ...>
[pid  7829] <... futex resumed>)        = 0
[pid  7829] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7828] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7828] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(25)                   = -1 EBADF (Bad file descriptor)
[  196.520885][ T7829] loop0: detected capacity change from 0 to 4096
[pid  7828] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7828] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7828] exit_group(0 <unfinished ...>
[pid  7829] <... futex resumed>)        = ?
[pid  7830] <... futex resumed>)        = ?
[pid  7828] <... exit_group resumed>)   = ?
[pid  7829] +++ exited with 0 +++
[pid  7830] +++ exited with 0 +++
[pid  7828] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2746, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./915", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./915", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./915/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./915/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./915/binderfs")    = 0
[pid  5067] umount2("./915/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./915/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./915/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./915/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./915/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./915/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./915")              = 0
[pid  5067] mkdir("./916", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2749
./strace-static-x86_64: Process 7831 attached
[pid  7831] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7831] chdir("./916")              = 0
[pid  7831] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7831] setpgid(0, 0)               = 0
[pid  7831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7831] write(3, "1000", 4)         = 4
[pid  7831] close(3)                    = 0
[pid  7831] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7831] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7831] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7831] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7831] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7832 attached
, parent_tid=[2750], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2750
[pid  7831] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7831] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7832] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7832] memfd_create("syzkaller", 0) = 3
[pid  7832] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7832] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7832] munmap(0x7ff042e09000, 2097152) = 0
[pid  7832] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7832] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7832] close(3)                    = 0
[pid  7832] mkdir("./file0", 0777)      = 0
[pid  7832] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7832] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7832] chdir("./file0")            = 0
[pid  7832] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7832] close(4)                    = 0
[pid  7832] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7832] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7831] <... futex resumed>)        = 0
[pid  7831] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7831] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7831] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7831] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7831] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7832] <... futex resumed>)        = 0
./strace-static-x86_64: Process 7833 attached
[pid  7831] <... clone resumed>, parent_tid=[2751], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2751
[pid  7833] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7831] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7833] <... set_robust_list resumed>) = 0
[pid  7831] <... futex resumed>)        = 0
[pid  7831] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7833] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7832] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7833] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7833] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7832] <... mkdirat resumed>)      = 0
[pid  7832] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7832] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7833] <... futex resumed>)        = 1
[pid  7831] <... futex resumed>)        = 0
[pid  7833] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7831] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7832] <... futex resumed>)        = 0
[pid  7831] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7832] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[  196.672478][ T7832] loop0: detected capacity change from 0 to 4096
[pid  7832] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7831] <... futex resumed>)        = 0
[pid  7831] close(3)                    = 0
[pid  7831] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7831] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7831] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7831] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7831] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7831] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7831] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(21 <unfinished ...>
[pid  7832] <... futex resumed>)        = 1
[pid  7831] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7832] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7831] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7831] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7831] exit_group(0 <unfinished ...>
[pid  7833] <... futex resumed>)        = ?
[pid  7832] <... futex resumed>)        = ?
[pid  7831] <... exit_group resumed>)   = ?
[pid  7833] +++ exited with 0 +++
[pid  7832] +++ exited with 0 +++
[pid  7831] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2749, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./916", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./916", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./916/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./916/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./916/binderfs")    = 0
[pid  5067] umount2("./916/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./916/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./916/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./916/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./916/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./916/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./916")              = 0
[pid  5067] mkdir("./917", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2752
./strace-static-x86_64: Process 7834 attached
[pid  7834] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7834] chdir("./917")              = 0
[pid  7834] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7834] setpgid(0, 0)               = 0
[pid  7834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7834] write(3, "1000", 4)         = 4
[pid  7834] close(3)                    = 0
[pid  7834] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7834] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7834] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7834] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7834] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2753], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2753
./strace-static-x86_64: Process 7835 attached
[pid  7834] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7834] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7835] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7835] memfd_create("syzkaller", 0) = 3
[pid  7835] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7835] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7835] munmap(0x7ff042e09000, 2097152) = 0
[pid  7835] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7835] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7835] close(3)                    = 0
[pid  7835] mkdir("./file0", 0777)      = 0
[pid  7835] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7835] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7835] chdir("./file0")            = 0
[pid  7835] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7835] close(4)                    = 0
[pid  7835] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7834] <... futex resumed>)        = 0
[pid  7834] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7834] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7834] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7834] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7834] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2754], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2754
[pid  7834] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7834] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7836 attached
 <unfinished ...>
[pid  7836] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7836] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7835] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7836] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7836] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7834] <... futex resumed>)        = 0
[pid  7834] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7835] <... mkdirat resumed>)      = 0
[pid  7834] <... futex resumed>)        = 0
[pid  7834] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7836] creat("./file0", 0406 <unfinished ...>
[pid  7835] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7836] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7835] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7836] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7834] <... futex resumed>)        = 0
[pid  7836] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7834] close(3)                    = 0
[pid  7834] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7834] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7834] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7834] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7834] close(8)                    = -1 EBADF (Bad file descriptor)
[  196.823796][ T7835] loop0: detected capacity change from 0 to 4096
[pid  7834] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7834] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7834] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7834] exit_group(0 <unfinished ...>
[pid  7836] <... futex resumed>)        = ?
[pid  7835] <... futex resumed>)        = ?
[pid  7834] <... exit_group resumed>)   = ?
[pid  7836] +++ exited with 0 +++
[pid  7835] +++ exited with 0 +++
[pid  7834] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2752, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./917", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./917", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./917/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./917/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./917/binderfs")    = 0
[pid  5067] umount2("./917/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./917/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./917/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./917/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./917/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./917/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./917")              = 0
[pid  5067] mkdir("./918", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2755
./strace-static-x86_64: Process 7837 attached
[pid  7837] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7837] chdir("./918")              = 0
[pid  7837] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7837] setpgid(0, 0)               = 0
[pid  7837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7837] write(3, "1000", 4)         = 4
[pid  7837] close(3)                    = 0
[pid  7837] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7837] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7837] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7837] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7837] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7838 attached
, parent_tid=[2756], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2756
[pid  7837] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7837] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7838] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7838] memfd_create("syzkaller", 0) = 3
[pid  7838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7838] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7838] munmap(0x7ff042e09000, 2097152) = 0
[pid  7838] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7838] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7838] close(3)                    = 0
[pid  7838] mkdir("./file0", 0777)      = 0
[pid  7838] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7838] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7838] chdir("./file0")            = 0
[pid  7838] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7838] close(4)                    = 0
[pid  7838] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7837] <... futex resumed>)        = 0
[pid  7838] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7837] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7837] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7837] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7837] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7837] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7839 attached
 <unfinished ...>
[pid  7838] <... mkdirat resumed>)      = 0
[pid  7837] <... clone resumed>, parent_tid=[2757], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2757
[pid  7837] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7839] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7838] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7837] <... futex resumed>)        = 0
[pid  7837] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7839] <... set_robust_list resumed>) = 0
[pid  7839] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7839] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7837] <... futex resumed>)        = 0
[pid  7839] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7838] <... futex resumed>)        = 0
[pid  7837] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7837] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7838] creat("./file0", 0406)      = 4
[pid  7838] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7837] <... futex resumed>)        = 0
[pid  7837] close(3)                    = 0
[pid  7837] close(4)                    = 0
[pid  7837] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7837] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7837] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7837] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7837] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7837] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7838] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7837] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(22)                   = -1 EBADF (Bad file descriptor)
[  196.982139][ T7838] loop0: detected capacity change from 0 to 4096
[pid  7837] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7837] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7837] exit_group(0 <unfinished ...>
[pid  7839] <... futex resumed>)        = ?
[pid  7838] <... futex resumed>)        = ?
[pid  7837] <... exit_group resumed>)   = ?
[pid  7839] +++ exited with 0 +++
[pid  7838] +++ exited with 0 +++
[pid  7837] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2755, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./918", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./918", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./918/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./918/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./918/binderfs")    = 0
[pid  5067] umount2("./918/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./918/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./918/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./918/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./918/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./918/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./918")              = 0
[pid  5067] mkdir("./919", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2758
./strace-static-x86_64: Process 7840 attached
[pid  7840] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7840] chdir("./919")              = 0
[pid  7840] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7840] setpgid(0, 0)               = 0
[pid  7840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7840] write(3, "1000", 4)         = 4
[pid  7840] close(3)                    = 0
[pid  7840] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7840] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7840] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7840] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7840] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7841 attached
, parent_tid=[2759], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2759
[pid  7841] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7840] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7840] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7841] <... set_robust_list resumed>) = 0
[pid  7841] memfd_create("syzkaller", 0) = 3
[pid  7841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7841] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7841] munmap(0x7ff042e09000, 2097152) = 0
[pid  7841] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7841] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7841] close(3)                    = 0
[pid  7841] mkdir("./file0", 0777)      = 0
[pid  7841] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7841] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7841] chdir("./file0")            = 0
[pid  7841] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7841] close(4)                    = 0
[pid  7841] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7840] <... futex resumed>)        = 0
[pid  7840] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7840] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7840] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7840] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7840] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2760], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2760
[pid  7840] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7840] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7841] <... futex resumed>)        = 1
[pid  7841] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7841] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7841] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7842 attached
 <unfinished ...>
[pid  7842] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7842] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7842] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7840] <... futex resumed>)        = 0
[pid  7840] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7840] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7841] <... futex resumed>)        = 0
[pid  7841] creat("./file0", 0406 <unfinished ...>
[pid  7842] <... futex resumed>)        = 1
[pid  7842] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7841] <... creat resumed>)        = 4
[pid  7841] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7840] <... futex resumed>)        = 0
[pid  7840] close(3)                    = 0
[pid  7840] close(4)                    = 0
[pid  7840] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7840] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7840] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7840] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7840] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7840] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7841] <... futex resumed>)        = 1
[pid  7840] close(24 <unfinished ...>
[pid  7841] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7840] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7840] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7840] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7840] exit_group(0 <unfinished ...>
[pid  7842] <... futex resumed>)        = ?
[pid  7841] <... futex resumed>)        = ?
[pid  7840] <... exit_group resumed>)   = ?
[pid  7842] +++ exited with 0 +++
[pid  7841] +++ exited with 0 +++
[pid  7840] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2758, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./919", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./919", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./919/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./919/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./919/binderfs")    = 0
[  197.129579][ T7841] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./919/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./919/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./919/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./919/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./919/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./919/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./919")              = 0
[pid  5067] mkdir("./920", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2761
./strace-static-x86_64: Process 7843 attached
[pid  7843] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7843] chdir("./920")              = 0
[pid  7843] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7843] setpgid(0, 0)               = 0
[pid  7843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7843] write(3, "1000", 4)         = 4
[pid  7843] close(3)                    = 0
[pid  7843] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7843] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7843] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7843] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7843] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7844 attached
, parent_tid=[2762], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2762
[pid  7843] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7843] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7844] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7844] memfd_create("syzkaller", 0) = 3
[pid  7844] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7844] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7844] munmap(0x7ff042e09000, 2097152) = 0
[pid  7844] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7844] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7844] close(3)                    = 0
[pid  7844] mkdir("./file0", 0777)      = 0
[pid  7844] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7844] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7844] chdir("./file0")            = 0
[pid  7844] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7844] close(4)                    = 0
[pid  7844] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7844] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7843] <... futex resumed>)        = 0
[pid  7843] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7843] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7843] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7843] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7844] <... futex resumed>)        = 0
[pid  7843] <... mprotect resumed>)     = 0
[pid  7843] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2763], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2763
[pid  7843] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7843] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7844] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7845 attached
 <unfinished ...>
[pid  7845] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7845] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7844] <... mkdirat resumed>)      = 0
[pid  7844] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7844] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7845] <... chdir resumed>)        = 0
[pid  7845] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7843] <... futex resumed>)        = 0
[pid  7843] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7844] <... futex resumed>)        = 0
[pid  7843] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7844] creat("./file0", 0406 <unfinished ...>
[pid  7845] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7844] <... creat resumed>)        = 4
[pid  7844] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7843] <... futex resumed>)        = 0
[  197.268110][ T7844] loop0: detected capacity change from 0 to 4096
[pid  7844] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7843] close(3)                    = 0
[pid  7843] close(4)                    = 0
[pid  7843] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7843] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7843] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7843] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7843] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7843] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7843] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7843] exit_group(0 <unfinished ...>
[pid  7845] <... futex resumed>)        = ?
[pid  7843] <... exit_group resumed>)   = ?
[pid  7845] +++ exited with 0 +++
[pid  7844] <... futex resumed>)        = ?
[pid  7844] +++ exited with 0 +++
[pid  7843] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2761, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./920", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./920", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./920/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./920/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./920/binderfs")    = 0
[pid  5067] umount2("./920/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./920/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./920/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./920/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./920/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./920/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./920")              = 0
[pid  5067] mkdir("./921", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2764
./strace-static-x86_64: Process 7846 attached
[pid  7846] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7846] chdir("./921")              = 0
[pid  7846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7846] setpgid(0, 0)               = 0
[pid  7846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7846] write(3, "1000", 4)         = 4
[pid  7846] close(3)                    = 0
[pid  7846] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7846] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7846] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7846] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7846] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2765], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2765
[pid  7846] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7846] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7847 attached
 <unfinished ...>
[pid  7847] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7847] memfd_create("syzkaller", 0) = 3
[pid  7847] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7847] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7847] munmap(0x7ff042e09000, 2097152) = 0
[pid  7847] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7847] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7847] close(3)                    = 0
[pid  7847] mkdir("./file0", 0777)      = 0
[pid  7847] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7847] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7847] chdir("./file0")            = 0
[pid  7847] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7847] close(4)                    = 0
[pid  7847] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7846] <... futex resumed>)        = 0
[pid  7846] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7846] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7846] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7846] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7846] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2766], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2766
[pid  7847] <... futex resumed>)        = 1
[pid  7846] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7847] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7846] <... futex resumed>)        = 0
[pid  7846] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7848 attached
 <unfinished ...>
[pid  7848] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7847] <... mkdirat resumed>)      = 0
[pid  7847] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7847] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7848] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7848] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7846] <... futex resumed>)        = 0
[pid  7846] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7847] <... futex resumed>)        = 0
[pid  7846] <... futex resumed>)        = 1
[pid  7847] creat("./file0", 0406 <unfinished ...>
[pid  7846] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7848] <... futex resumed>)        = 1
[pid  7848] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7847] <... creat resumed>)        = 4
[pid  7847] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7846] <... futex resumed>)        = 0
[pid  7846] close(3)                    = 0
[pid  7846] close(4)                    = 0
[pid  7846] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7846] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7846] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7847] <... futex resumed>)        = 1
[pid  7846] close(8 <unfinished ...>
[pid  7847] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7846] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7846] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7846] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7846] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7846] exit_group(0 <unfinished ...>
[pid  7848] <... futex resumed>)        = ?
[pid  7847] <... futex resumed>)        = ?
[  197.417754][ T7847] loop0: detected capacity change from 0 to 4096
[pid  7846] <... exit_group resumed>)   = ?
[pid  7848] +++ exited with 0 +++
[pid  7847] +++ exited with 0 +++
[pid  7846] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2764, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./921", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./921", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./921/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./921/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./921/binderfs")    = 0
[pid  5067] umount2("./921/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./921/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./921/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./921/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./921/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./921/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./921")              = 0
[pid  5067] mkdir("./922", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2767
./strace-static-x86_64: Process 7849 attached
[pid  7849] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7849] chdir("./922")              = 0
[pid  7849] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7849] setpgid(0, 0)               = 0
[pid  7849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7849] write(3, "1000", 4)         = 4
[pid  7849] close(3)                    = 0
[pid  7849] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7849] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7849] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7849] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7849] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7850 attached
, parent_tid=[2768], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2768
[pid  7849] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7849] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7850] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7850] memfd_create("syzkaller", 0) = 3
[pid  7850] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7850] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7850] munmap(0x7ff042e09000, 2097152) = 0
[pid  7850] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7850] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7850] close(3)                    = 0
[pid  7850] mkdir("./file0", 0777)      = 0
[pid  7850] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7850] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7850] chdir("./file0")            = 0
[pid  7850] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7850] close(4)                    = 0
[pid  7850] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7849] <... futex resumed>)        = 0
[pid  7849] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7849] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7849] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7849] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7849] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2769], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2769
[pid  7849] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7849] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7850] <... futex resumed>)        = 1
[pid  7850] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7850] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7850] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7851 attached
 <unfinished ...>
[pid  7851] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7851] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7851] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7849] <... futex resumed>)        = 0
[pid  7851] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7849] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7849] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7850] <... futex resumed>)        = 0
[pid  7850] creat("./file0", 0406)      = 4
[pid  7850] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7849] <... futex resumed>)        = 0
[pid  7849] close(3)                    = 0
[pid  7850] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7849] close(4)                    = 0
[pid  7849] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7849] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7849] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7849] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7849] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7849] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7849] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7849] exit_group(0 <unfinished ...>
[pid  7851] <... futex resumed>)        = ?
[pid  7850] <... futex resumed>)        = ?
[pid  7851] +++ exited with 0 +++
[pid  7849] <... exit_group resumed>)   = ?
[pid  7850] +++ exited with 0 +++
[pid  7849] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2767, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=2 /* 0.02 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./922", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./922", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[  197.572841][ T7850] loop0: detected capacity change from 0 to 4096
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./922/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./922/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./922/binderfs")    = 0
[pid  5067] umount2("./922/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./922/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./922/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./922/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./922/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./922/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./922")              = 0
[pid  5067] mkdir("./923", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2770
./strace-static-x86_64: Process 7852 attached
[pid  7852] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7852] chdir("./923")              = 0
[pid  7852] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7852] setpgid(0, 0)               = 0
[pid  7852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7852] write(3, "1000", 4)         = 4
[pid  7852] close(3)                    = 0
[pid  7852] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7852] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7852] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7852] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7852] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7853 attached
 <unfinished ...>
[pid  7853] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7852] <... clone resumed>, parent_tid=[2771], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2771
[pid  7853] <... set_robust_list resumed>) = 0
[pid  7853] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7852] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7853] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7852] <... futex resumed>)        = 0
[pid  7852] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7853] memfd_create("syzkaller", 0) = 3
[pid  7853] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7853] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7853] munmap(0x7ff042e09000, 2097152) = 0
[pid  7853] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7853] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7853] close(3)                    = 0
[pid  7853] mkdir("./file0", 0777)      = 0
[pid  7853] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7853] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7853] chdir("./file0")            = 0
[pid  7853] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7853] close(4)                    = 0
[pid  7853] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7852] <... futex resumed>)        = 0
[pid  7853] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7852] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7853] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7852] <... futex resumed>)        = 0
[pid  7853] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7852] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7852] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7853] <... mkdirat resumed>)      = 0
[pid  7852] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7853] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7852] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7853] <... futex resumed>)        = 0
[pid  7852] <... mprotect resumed>)     = 0
[pid  7853] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7852] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2772], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2772
[pid  7852] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7852] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7854 attached
 <unfinished ...>
[pid  7854] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7854] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7854] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7852] <... futex resumed>)        = 0
[pid  7854] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7852] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7853] <... futex resumed>)        = 0
[pid  7852] <... futex resumed>)        = 1
[  197.718285][ T7853] loop0: detected capacity change from 0 to 4096
[pid  7852] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7853] creat("./file0", 0406)      = 4
[pid  7853] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7852] <... futex resumed>)        = 0
[pid  7852] close(3 <unfinished ...>
[pid  7853] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7852] <... close resumed>)        = 0
[pid  7852] close(4)                    = 0
[pid  7852] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7852] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7852] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7852] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7852] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7852] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7852] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7852] exit_group(0 <unfinished ...>
[pid  7854] <... futex resumed>)        = ?
[pid  7853] <... futex resumed>)        = ?
[pid  7852] <... exit_group resumed>)   = ?
[pid  7854] +++ exited with 0 +++
[pid  7853] +++ exited with 0 +++
[pid  7852] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2770, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./923", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./923", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./923/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./923/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./923/binderfs")    = 0
[pid  5067] umount2("./923/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./923/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./923/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./923/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./923/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./923/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./923")              = 0
[pid  5067] mkdir("./924", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2773
./strace-static-x86_64: Process 7855 attached
[pid  7855] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7855] chdir("./924")              = 0
[pid  7855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7855] setpgid(0, 0)               = 0
[pid  7855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7855] write(3, "1000", 4)         = 4
[pid  7855] close(3)                    = 0
[pid  7855] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7855] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7855] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7855] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7855] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7856 attached
, parent_tid=[2774], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2774
[pid  7856] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7856] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7855] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7855] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7856] <... futex resumed>)        = 0
[pid  7856] memfd_create("syzkaller", 0) = 3
[pid  7856] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7856] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7856] munmap(0x7ff042e09000, 2097152) = 0
[pid  7856] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7856] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7856] close(3)                    = 0
[pid  7856] mkdir("./file0", 0777)      = 0
[pid  7856] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7856] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7856] chdir("./file0")            = 0
[pid  7856] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7856] close(4)                    = 0
[pid  7856] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7856] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7855] <... futex resumed>)        = 0
[pid  7855] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7855] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7855] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7855] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7855] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2775], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2775
[pid  7855] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7855] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7856] <... futex resumed>)        = 0
[pid  7856] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7857 attached
 <unfinished ...>
[pid  7857] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7857] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7856] <... mkdirat resumed>)      = 0
[pid  7857] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7855] <... futex resumed>)        = 0
[pid  7855] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7855] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7857] <... futex resumed>)        = 1
[pid  7857] creat("./file0", 0406 <unfinished ...>
[pid  7856] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7856] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7857] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7857] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7855] <... futex resumed>)        = 0
[pid  7855] close(3)                    = 0
[pid  7855] close(4 <unfinished ...>
[pid  7857] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7855] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7855] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7855] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7855] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7855] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7855] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7855] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(22)                   = -1 EBADF (Bad file descriptor)
[  197.868526][ T7856] loop0: detected capacity change from 0 to 4096
[pid  7855] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7855] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7855] exit_group(0)               = ?
[pid  7857] <... futex resumed>)        = ?
[pid  7856] <... futex resumed>)        = ?
[pid  7857] +++ exited with 0 +++
[pid  7856] +++ exited with 0 +++
[pid  7855] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2773, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./924", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./924", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./924/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./924/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./924/binderfs")    = 0
[pid  5067] umount2("./924/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./924/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./924/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./924/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./924/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./924/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./924")              = 0
[pid  5067] mkdir("./925", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2776
./strace-static-x86_64: Process 7858 attached
[pid  7858] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7858] chdir("./925")              = 0
[pid  7858] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7858] setpgid(0, 0)               = 0
[pid  7858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7858] write(3, "1000", 4)         = 4
[pid  7858] close(3)                    = 0
[pid  7858] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7858] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7858] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7858] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7858] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2777], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2777
./strace-static-x86_64: Process 7859 attached
[pid  7858] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7858] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7859] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7859] memfd_create("syzkaller", 0) = 3
[pid  7859] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7859] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7859] munmap(0x7ff042e09000, 2097152) = 0
[pid  7859] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7859] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7859] close(3)                    = 0
[pid  7859] mkdir("./file0", 0777)      = 0
[pid  7859] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7859] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7859] chdir("./file0")            = 0
[pid  7859] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7859] close(4)                    = 0
[pid  7859] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7858] <... futex resumed>)        = 0
[pid  7858] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7858] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7859] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7858] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7858] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7858] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2778], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2778
[pid  7858] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7858] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7859] <... mkdirat resumed>)      = 0
[pid  7859] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7859] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7860 attached
 <unfinished ...>
[pid  7860] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7860] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7860] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7858] <... futex resumed>)        = 0
[pid  7860] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7858] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7859] <... futex resumed>)        = 0
[pid  7858] <... futex resumed>)        = 1
[pid  7859] creat("./file0", 0406 <unfinished ...>
[pid  7858] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7859] <... creat resumed>)        = 4
[pid  7859] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7858] <... futex resumed>)        = 0
[pid  7859] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7858] close(3)                    = 0
[pid  7858] close(4)                    = 0
[pid  7858] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7858] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7858] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7858] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7858] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7858] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(22)                   = -1 EBADF (Bad file descriptor)
[  198.029278][ T7859] loop0: detected capacity change from 0 to 4096
[pid  7858] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7858] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7858] exit_group(0 <unfinished ...>
[pid  7860] <... futex resumed>)        = ?
[pid  7859] <... futex resumed>)        = ?
[pid  7858] <... exit_group resumed>)   = ?
[pid  7860] +++ exited with 0 +++
[pid  7859] +++ exited with 0 +++
[pid  7858] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2776, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./925", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./925", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./925/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./925/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./925/binderfs")    = 0
[pid  5067] umount2("./925/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./925/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./925/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./925/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./925/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./925/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./925")              = 0
[pid  5067] mkdir("./926", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2779
./strace-static-x86_64: Process 7861 attached
[pid  7861] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7861] chdir("./926")              = 0
[pid  7861] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7861] setpgid(0, 0)               = 0
[pid  7861] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7861] write(3, "1000", 4)         = 4
[pid  7861] close(3)                    = 0
[pid  7861] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7861] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7861] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7861] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7861] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7862 attached
, parent_tid=[2780], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2780
[pid  7862] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7861] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7861] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7862] <... set_robust_list resumed>) = 0
[pid  7862] memfd_create("syzkaller", 0) = 3
[pid  7862] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7862] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7862] munmap(0x7ff042e09000, 2097152) = 0
[pid  7862] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7862] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7862] close(3)                    = 0
[pid  7862] mkdir("./file0", 0777)      = 0
[pid  7862] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7862] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7862] chdir("./file0")            = 0
[pid  7862] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7862] close(4)                    = 0
[pid  7862] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7862] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7861] <... futex resumed>)        = 0
[pid  7861] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7861] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7861] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7861] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7861] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2781], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2781
[pid  7861] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7861] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7862] <... futex resumed>)        = 0
[pid  7862] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7863 attached
 <unfinished ...>
[pid  7863] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7863] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7863] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7861] <... futex resumed>)        = 0
[pid  7861] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7862] <... mkdirat resumed>)      = 0
[pid  7862] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7861] <... futex resumed>)        = 0
[pid  7862] <... futex resumed>)        = 0
[pid  7861] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7863] <... futex resumed>)        = 1
[pid  7863] creat("./file0", 0406 <unfinished ...>
[pid  7862] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7863] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7863] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7861] <... futex resumed>)        = 0
[pid  7861] close(3)                    = 0
[pid  7861] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7861] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7861] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7861] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7861] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7861] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7861] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7863] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7861] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7861] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7861] exit_group(0 <unfinished ...>
[pid  7863] <... futex resumed>)        = ?
[pid  7862] <... futex resumed>)        = ?
[pid  7861] <... exit_group resumed>)   = ?
[pid  7862] +++ exited with 0 +++
[pid  7863] +++ exited with 0 +++
[pid  7861] +++ exited with 0 +++
[  198.177301][ T7862] loop0: detected capacity change from 0 to 4096
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2779, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./926", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./926", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./926/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./926/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./926/binderfs")    = 0
[pid  5067] umount2("./926/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./926/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./926/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./926/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./926/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./926/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./926")              = 0
[pid  5067] mkdir("./927", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2782
./strace-static-x86_64: Process 7864 attached
[pid  7864] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7864] chdir("./927")              = 0
[pid  7864] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7864] setpgid(0, 0)               = 0
[pid  7864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7864] write(3, "1000", 4)         = 4
[pid  7864] close(3)                    = 0
[pid  7864] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7864] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7864] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7864] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7864] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2783], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2783
[pid  7864] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7864] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7865 attached
 <unfinished ...>
[pid  7865] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7865] memfd_create("syzkaller", 0) = 3
[pid  7865] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7865] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7865] munmap(0x7ff042e09000, 2097152) = 0
[pid  7865] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7865] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7865] close(3)                    = 0
[pid  7865] mkdir("./file0", 0777)      = 0
[pid  7865] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7865] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7865] chdir("./file0")            = 0
[pid  7865] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7865] close(4)                    = 0
[pid  7865] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7864] <... futex resumed>)        = 0
[pid  7864] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7864] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7864] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7864] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7864] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2784], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2784
[pid  7864] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7864] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7865] <... futex resumed>)        = 1
[pid  7865] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7866 attached
 <unfinished ...>
[pid  7866] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7866] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7865] <... mkdirat resumed>)      = 0
[pid  7866] <... chdir resumed>)        = 0
[pid  7866] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7864] <... futex resumed>)        = 0
[pid  7864] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7864] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7866] <... futex resumed>)        = 1
[pid  7866] creat("./file0", 0406 <unfinished ...>
[pid  7865] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7865] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7866] <... creat resumed>)        = 4
[pid  7866] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7864] <... futex resumed>)        = 0
[pid  7864] close(3)                    = 0
[pid  7864] close(4)                    = 0
[pid  7864] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7864] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7864] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7864] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7864] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7864] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(27 <unfinished ...>
[pid  7866] <... futex resumed>)        = 1
[pid  7864] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7866] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7864] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7864] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7864] exit_group(0 <unfinished ...>
[pid  7866] <... futex resumed>)        = ?
[pid  7864] <... exit_group resumed>)   = ?
[pid  7866] +++ exited with 0 +++
[pid  7865] <... futex resumed>)        = ?
[pid  7865] +++ exited with 0 +++
[pid  7864] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2782, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[  198.308098][ T7865] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./927", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./927", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./927/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./927/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./927/binderfs")    = 0
[pid  5067] umount2("./927/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./927/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./927/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./927/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./927/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./927/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./927")              = 0
[pid  5067] mkdir("./928", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2785
./strace-static-x86_64: Process 7867 attached
[pid  7867] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7867] chdir("./928")              = 0
[pid  7867] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7867] setpgid(0, 0)               = 0
[pid  7867] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7867] write(3, "1000", 4)         = 4
[pid  7867] close(3)                    = 0
[pid  7867] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7867] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7867] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7867] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7867] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2786], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2786
./strace-static-x86_64: Process 7868 attached
[pid  7868] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7868] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7867] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7868] <... futex resumed>)        = 0
[pid  7867] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7868] memfd_create("syzkaller", 0) = 3
[pid  7868] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7868] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7868] munmap(0x7ff042e09000, 2097152) = 0
[pid  7868] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7868] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7868] close(3)                    = 0
[pid  7868] mkdir("./file0", 0777)      = 0
[pid  7868] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7868] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7868] chdir("./file0")            = 0
[pid  7868] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7868] close(4)                    = 0
[pid  7868] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7867] <... futex resumed>)        = 0
[pid  7868] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7867] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7867] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7868] <... futex resumed>)        = 0
[pid  7867] <... futex resumed>)        = 0
[pid  7868] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7867] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7867] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7867] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2787], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2787
[pid  7867] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7867] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7869 attached
 <unfinished ...>
[pid  7869] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7869] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7869] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7868] <... mkdirat resumed>)      = 0
[pid  7868] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7868] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7867] <... futex resumed>)        = 0
[pid  7869] <... futex resumed>)        = 1
[pid  7867] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7867] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7868] <... futex resumed>)        = 0
[pid  7868] creat("./file0", 0406 <unfinished ...>
[pid  7869] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7868] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7868] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7867] <... futex resumed>)        = 0
[pid  7867] close(3)                    = 0
[pid  7867] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7867] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7867] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7867] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7867] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7867] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7867] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7868] <... futex resumed>)        = 1
[pid  7867] close(12 <unfinished ...>
[pid  7868] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7867] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7867] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7867] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7867] exit_group(0 <unfinished ...>
[pid  7869] <... futex resumed>)        = ?
[pid  7868] <... futex resumed>)        = ?
[pid  7867] <... exit_group resumed>)   = ?
[  198.454817][ T7868] loop0: detected capacity change from 0 to 4096
[pid  7869] +++ exited with 0 +++
[pid  7868] +++ exited with 0 +++
[pid  7867] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2785, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./928", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./928", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./928/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./928/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./928/binderfs")    = 0
[pid  5067] umount2("./928/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./928/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./928/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./928/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./928/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./928/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./928")              = 0
[pid  5067] mkdir("./929", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2788
./strace-static-x86_64: Process 7870 attached
[pid  7870] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7870] chdir("./929")              = 0
[pid  7870] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7870] setpgid(0, 0)               = 0
[pid  7870] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7870] write(3, "1000", 4)         = 4
[pid  7870] close(3)                    = 0
[pid  7870] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7870] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7870] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7870] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7870] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7871 attached
, parent_tid=[2789], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2789
[pid  7870] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7870] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7871] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7871] memfd_create("syzkaller", 0) = 3
[pid  7871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7871] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7871] munmap(0x7ff042e09000, 2097152) = 0
[pid  7871] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7871] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7871] close(3)                    = 0
[pid  7871] mkdir("./file0", 0777)      = 0
[pid  7871] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7871] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7871] chdir("./file0")            = 0
[pid  7871] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7871] close(4)                    = 0
[pid  7871] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7870] <... futex resumed>)        = 0
[pid  7871] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7870] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7871] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7870] <... futex resumed>)        = 0
[pid  7871] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7870] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7870] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7871] <... mkdirat resumed>)      = 0
[pid  7871] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7870] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7871] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7870] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7870] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2790], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2790
[pid  7870] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7870] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7872 attached
 <unfinished ...>
[pid  7872] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7872] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7872] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7870] <... futex resumed>)        = 0
[pid  7870] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7871] <... futex resumed>)        = 0
[pid  7870] <... futex resumed>)        = 1
[pid  7871] creat("./file0", 0406 <unfinished ...>
[  198.593883][ T7871] loop0: detected capacity change from 0 to 4096
[pid  7870] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7872] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7871] <... creat resumed>)        = 4
[pid  7871] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7870] <... futex resumed>)        = 0
[pid  7871] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7870] close(3)                    = 0
[pid  7870] close(4)                    = 0
[pid  7870] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7870] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7870] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7870] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7870] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7870] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7870] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7870] exit_group(0 <unfinished ...>
[pid  7872] <... futex resumed>)        = ?
[pid  7871] <... futex resumed>)        = ?
[pid  7870] <... exit_group resumed>)   = ?
[pid  7872] +++ exited with 0 +++
[pid  7871] +++ exited with 0 +++
[pid  7870] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2788, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./929", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./929", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./929/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./929/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./929/binderfs")    = 0
[pid  5067] umount2("./929/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./929/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./929/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./929/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./929/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./929/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./929")              = 0
[pid  5067] mkdir("./930", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2791
./strace-static-x86_64: Process 7873 attached
[pid  7873] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7873] chdir("./930")              = 0
[pid  7873] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7873] setpgid(0, 0)               = 0
[pid  7873] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7873] write(3, "1000", 4)         = 4
[pid  7873] close(3)                    = 0
[pid  7873] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7873] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7873] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7873] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7873] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2792], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2792
[pid  7873] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7873] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7874 attached
 <unfinished ...>
[pid  7874] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7874] memfd_create("syzkaller", 0) = 3
[pid  7874] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7874] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7874] munmap(0x7ff042e09000, 2097152) = 0
[pid  7874] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7874] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7874] close(3)                    = 0
[pid  7874] mkdir("./file0", 0777)      = 0
[pid  7874] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7874] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7874] chdir("./file0")            = 0
[pid  7874] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7874] close(4)                    = 0
[pid  7874] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7873] <... futex resumed>)        = 0
[pid  7873] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7873] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7873] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7873] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7873] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2793], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2793
[pid  7873] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7873] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7874] <... futex resumed>)        = 1
[pid  7874] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7875 attached
 <unfinished ...>
[pid  7875] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7875] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7875] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7873] <... futex resumed>)        = 0
[pid  7875] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7873] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7875] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7873] <... futex resumed>)        = 0
[pid  7875] creat("./file0", 0406 <unfinished ...>
[pid  7873] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7874] <... mkdirat resumed>)      = 0
[pid  7874] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7874] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7875] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7875] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7873] <... futex resumed>)        = 0
[pid  7873] close(3)                    = 0
[pid  7873] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7873] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7873] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7873] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7873] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7873] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7873] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(17 <unfinished ...>
[pid  7875] <... futex resumed>)        = 1
[pid  7873] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7875] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7873] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(24)                   = -1 EBADF (Bad file descriptor)
[  198.743947][ T7874] loop0: detected capacity change from 0 to 4096
[pid  7873] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7873] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7873] exit_group(0 <unfinished ...>
[pid  7875] <... futex resumed>)        = ?
[pid  7874] <... futex resumed>)        = ?
[pid  7873] <... exit_group resumed>)   = ?
[pid  7875] +++ exited with 0 +++
[pid  7874] +++ exited with 0 +++
[pid  7873] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2791, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./930", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./930", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./930/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./930/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./930/binderfs")    = 0
[pid  5067] umount2("./930/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./930/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./930/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./930/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./930/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./930/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./930")              = 0
[pid  5067] mkdir("./931", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2794
./strace-static-x86_64: Process 7876 attached
[pid  7876] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7876] chdir("./931")              = 0
[pid  7876] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7876] setpgid(0, 0)               = 0
[pid  7876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7876] write(3, "1000", 4)         = 4
[pid  7876] close(3)                    = 0
[pid  7876] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7876] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7876] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7876] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7876] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7877 attached
 <unfinished ...>
[pid  7877] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7877] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7876] <... clone resumed>, parent_tid=[2795], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2795
[pid  7876] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7877] <... futex resumed>)        = 0
[pid  7876] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7877] memfd_create("syzkaller", 0) = 3
[pid  7877] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7877] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7877] munmap(0x7ff042e09000, 2097152) = 0
[pid  7877] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7877] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7877] close(3)                    = 0
[pid  7877] mkdir("./file0", 0777)      = 0
[pid  7877] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7877] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7877] chdir("./file0")            = 0
[pid  7877] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7877] close(4)                    = 0
[pid  7877] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7876] <... futex resumed>)        = 0
[pid  7877] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7876] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7876] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7876] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7876] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7876] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7878 attached
 <unfinished ...>
[pid  7878] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7876] <... clone resumed>, parent_tid=[2796], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2796
[pid  7878] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)
[pid  7877] <... mkdirat resumed>)      = 0
[pid  7876] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7878] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7876] <... futex resumed>)        = 0
[pid  7876] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7878] <... chdir resumed>)        = 0
[pid  7878] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7877] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7876] <... futex resumed>)        = 0
[pid  7878] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7876] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7877] <... futex resumed>)        = 0
[pid  7876] <... futex resumed>)        = 0
[pid  7877] creat("./file0", 0406 <unfinished ...>
[pid  7876] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7877] <... creat resumed>)        = 4
[pid  7877] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7876] <... futex resumed>)        = 0
[pid  7877] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7876] close(3)                    = 0
[pid  7876] close(4)                    = 0
[pid  7876] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7876] close(6)                    = -1 EBADF (Bad file descriptor)
[  198.897657][ T7877] loop0: detected capacity change from 0 to 4096
[pid  7876] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7876] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7876] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7876] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7876] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7876] exit_group(0 <unfinished ...>
[pid  7877] <... futex resumed>)        = ?
[pid  7878] <... futex resumed>)        = ?
[pid  7876] <... exit_group resumed>)   = ?
[pid  7877] +++ exited with 0 +++
[pid  7878] +++ exited with 0 +++
[pid  7876] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2794, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./931", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./931", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./931/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./931/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./931/binderfs")    = 0
[pid  5067] umount2("./931/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./931/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./931/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./931/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./931/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./931/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./931")              = 0
[pid  5067] mkdir("./932", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2797
./strace-static-x86_64: Process 7879 attached
[pid  7879] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7879] chdir("./932")              = 0
[pid  7879] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7879] setpgid(0, 0)               = 0
[pid  7879] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7879] write(3, "1000", 4)         = 4
[pid  7879] close(3)                    = 0
[pid  7879] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7879] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7879] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7879] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7879] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2798], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2798
[pid  7879] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7879] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7880 attached
 <unfinished ...>
[pid  7880] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7880] memfd_create("syzkaller", 0) = 3
[pid  7880] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7880] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7880] munmap(0x7ff042e09000, 2097152) = 0
[pid  7880] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7880] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7880] close(3)                    = 0
[pid  7880] mkdir("./file0", 0777)      = 0
[pid  7880] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7880] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7880] chdir("./file0")            = 0
[pid  7880] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7880] close(4)                    = 0
[pid  7880] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7879] <... futex resumed>)        = 0
[pid  7879] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7879] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7879] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7879] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7879] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2799], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2799
[pid  7879] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7879] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7880] <... futex resumed>)        = 1
[pid  7880] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7881 attached
 <unfinished ...>
[pid  7881] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7881] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7880] <... mkdirat resumed>)      = 0
[pid  7880] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7881] <... chdir resumed>)        = 0
[pid  7880] <... futex resumed>)        = 0
[pid  7881] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7879] <... futex resumed>)        = 0
[pid  7879] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7879] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7881] <... futex resumed>)        = 1
[pid  7881] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7880] creat("./file0", 0406)      = 4
[pid  7880] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7879] <... futex resumed>)        = 0
[pid  7879] close(3)                    = 0
[pid  7879] close(4)                    = 0
[pid  7879] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7879] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7879] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7879] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7879] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7879] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7879] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7879] exit_group(0 <unfinished ...>
[pid  7881] <... futex resumed>)        = ?
[pid  7879] <... exit_group resumed>)   = ?
[pid  7881] +++ exited with 0 +++
[pid  7880] <... futex resumed>)        = ?
[pid  7880] +++ exited with 0 +++
[pid  7879] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2797, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./932", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./932", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./932/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./932/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./932/binderfs")    = 0
[  199.044362][ T7880] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./932/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./932/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./932/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./932/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./932/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./932/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./932")              = 0
[pid  5067] mkdir("./933", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2800
./strace-static-x86_64: Process 7882 attached
[pid  7882] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7882] chdir("./933")              = 0
[pid  7882] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7882] setpgid(0, 0)               = 0
[pid  7882] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7882] write(3, "1000", 4)         = 4
[pid  7882] close(3)                    = 0
[pid  7882] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7882] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7882] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7882] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7882] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2801], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2801
[pid  7882] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7882] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7883 attached
 <unfinished ...>
[pid  7883] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7883] memfd_create("syzkaller", 0) = 3
[pid  7883] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7883] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7883] munmap(0x7ff042e09000, 2097152) = 0
[pid  7883] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7883] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7883] close(3)                    = 0
[pid  7883] mkdir("./file0", 0777)      = 0
[pid  7883] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7883] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7883] chdir("./file0")            = 0
[pid  7883] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7883] close(4)                    = 0
[pid  7883] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7882] <... futex resumed>)        = 0
[pid  7882] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7882] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7882] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7882] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7882] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2802], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2802
[pid  7882] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7882] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7883] <... futex resumed>)        = 1
[pid  7883] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7883] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7883] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7884 attached
 <unfinished ...>
[pid  7884] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7884] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7884] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7882] <... futex resumed>)        = 0
[pid  7882] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7882] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7883] <... futex resumed>)        = 0
[pid  7883] creat("./file0", 0406 <unfinished ...>
[pid  7884] <... futex resumed>)        = 1
[pid  7884] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7883] <... creat resumed>)        = 4
[pid  7883] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7882] <... futex resumed>)        = 0
[pid  7882] close(3)                    = 0
[pid  7882] close(4)                    = 0
[pid  7882] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7882] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7882] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7882] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7882] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7882] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(12 <unfinished ...>
[pid  7883] <... futex resumed>)        = 1
[pid  7882] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7883] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7882] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7882] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7882] exit_group(0 <unfinished ...>
[pid  7884] <... futex resumed>)        = ?
[pid  7883] <... futex resumed>)        = ?
[pid  7882] <... exit_group resumed>)   = ?
[pid  7884] +++ exited with 0 +++
[pid  7883] +++ exited with 0 +++
[pid  7882] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2800, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./933", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./933", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./933/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./933/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./933/binderfs")    = 0
[  199.173571][ T7883] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./933/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./933/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./933/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./933/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./933/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./933/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./933")              = 0
[pid  5067] mkdir("./934", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2803
./strace-static-x86_64: Process 7885 attached
[pid  7885] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7885] chdir("./934")              = 0
[pid  7885] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7885] setpgid(0, 0)               = 0
[pid  7885] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7885] write(3, "1000", 4)         = 4
[pid  7885] close(3)                    = 0
[pid  7885] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7885] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7885] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7885] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7885] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2804], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2804
[pid  7885] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7885] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7886 attached
 <unfinished ...>
[pid  7886] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7886] memfd_create("syzkaller", 0) = 3
[pid  7886] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7886] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7886] munmap(0x7ff042e09000, 2097152) = 0
[pid  7886] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7886] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7886] close(3)                    = 0
[pid  7886] mkdir("./file0", 0777)      = 0
[pid  7886] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7886] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7886] chdir("./file0")            = 0
[pid  7886] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7886] close(4)                    = 0
[pid  7886] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7885] <... futex resumed>)        = 0
[pid  7885] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7885] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7885] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7885] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7886] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7885] <... mprotect resumed>)     = 0
[pid  7885] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2805], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2805
[pid  7885] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7885] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7887 attached
 <unfinished ...>
[pid  7887] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7887] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7886] <... mkdirat resumed>)      = 0
[pid  7887] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7886] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7885] <... futex resumed>)        = 0
[pid  7885] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7887] <... futex resumed>)        = 1
[pid  7885] <... futex resumed>)        = 0
[pid  7887] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7886] <... futex resumed>)        = 0
[pid  7885] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7886] creat("./file0", 0406)      = 4
[pid  7886] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7885] <... futex resumed>)        = 0
[pid  7885] close(3)                    = 0
[pid  7885] close(4)                    = 0
[pid  7885] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7885] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7885] close(7 <unfinished ...>
[pid  7886] <... futex resumed>)        = 1
[pid  7885] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7886] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7885] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7885] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7885] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7885] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7885] exit_group(0 <unfinished ...>
[pid  7887] <... futex resumed>)        = ?
[pid  7886] <... futex resumed>)        = ?
[pid  7885] <... exit_group resumed>)   = ?
[pid  7887] +++ exited with 0 +++
[pid  7886] +++ exited with 0 +++
[pid  7885] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2803, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./934", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./934", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./934/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./934/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./934/binderfs")    = 0
[  199.307791][ T7886] loop0: detected capacity change from 0 to 4096
[pid  5067] umount2("./934/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./934/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./934/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./934/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./934/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./934/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./934")              = 0
[pid  5067] mkdir("./935", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2806
./strace-static-x86_64: Process 7888 attached
[pid  7888] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7888] chdir("./935")              = 0
[pid  7888] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7888] setpgid(0, 0)               = 0
[pid  7888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7888] write(3, "1000", 4)         = 4
[pid  7888] close(3)                    = 0
[pid  7888] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7888] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7888] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7888] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7888] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7889 attached
, parent_tid=[2807], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2807
[pid  7888] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7888] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7889] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7889] memfd_create("syzkaller", 0) = 3
[pid  7889] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7889] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7889] munmap(0x7ff042e09000, 2097152) = 0
[pid  7889] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7889] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7889] close(3)                    = 0
[pid  7889] mkdir("./file0", 0777)      = 0
[pid  7889] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7889] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7889] chdir("./file0")            = 0
[pid  7889] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7889] close(4)                    = 0
[pid  7889] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7889] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7888] <... futex resumed>)        = 0
[pid  7888] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7888] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7888] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7888] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7889] <... futex resumed>)        = 0
[pid  7888] <... mprotect resumed>)     = 0
[pid  7889] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7888] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7890 attached
 <unfinished ...>
[pid  7889] <... mkdirat resumed>)      = 0
[pid  7890] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7889] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7888] <... clone resumed>, parent_tid=[2808], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2808
[pid  7890] <... set_robust_list resumed>) = 0
[pid  7889] <... futex resumed>)        = 0
[pid  7888] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7890] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7889] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7888] <... futex resumed>)        = 0
[pid  7890] <... chdir resumed>)        = 0
[pid  7888] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7890] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7888] <... futex resumed>)        = 0
[pid  7890] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7888] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7889] <... futex resumed>)        = 0
[pid  7888] <... futex resumed>)        = 1
[pid  7889] creat("./file0", 0406 <unfinished ...>
[pid  7888] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7889] <... creat resumed>)        = 4
[pid  7889] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7888] <... futex resumed>)        = 0
[  199.449434][ T7889] loop0: detected capacity change from 0 to 4096
[pid  7888] close(3 <unfinished ...>
[pid  7889] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7888] <... close resumed>)        = 0
[pid  7888] close(4)                    = 0
[pid  7888] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7888] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7888] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7888] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7888] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7888] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7888] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7888] exit_group(0 <unfinished ...>
[pid  7890] <... futex resumed>)        = ?
[pid  7889] <... futex resumed>)        = ?
[pid  7888] <... exit_group resumed>)   = ?
[pid  7890] +++ exited with 0 +++
[pid  7889] +++ exited with 0 +++
[pid  7888] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2806, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./935", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./935", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./935/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./935/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./935/binderfs")    = 0
[pid  5067] umount2("./935/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./935/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./935/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./935/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./935/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./935/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./935")              = 0
[pid  5067] mkdir("./936", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2809
./strace-static-x86_64: Process 7891 attached
[pid  7891] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7891] chdir("./936")              = 0
[pid  7891] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7891] setpgid(0, 0)               = 0
[pid  7891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7891] write(3, "1000", 4)         = 4
[pid  7891] close(3)                    = 0
[pid  7891] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7891] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7891] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7891] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7891] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2810], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2810
[pid  7891] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7891] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7892 attached
 <unfinished ...>
[pid  7892] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7892] memfd_create("syzkaller", 0) = 3
[pid  7892] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7892] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7892] munmap(0x7ff042e09000, 2097152) = 0
[pid  7892] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7892] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7892] close(3)                    = 0
[pid  7892] mkdir("./file0", 0777)      = 0
[pid  7892] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7892] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7892] chdir("./file0")            = 0
[pid  7892] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7892] close(4)                    = 0
[pid  7892] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7891] <... futex resumed>)        = 0
[pid  7891] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7891] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7891] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7891] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7891] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2811], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2811
[pid  7891] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7891] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7892] <... futex resumed>)        = 1
[pid  7892] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7893 attached
 <unfinished ...>
[pid  7893] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7893] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7893] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7891] <... futex resumed>)        = 0
[pid  7891] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7891] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7893] creat("./file0", 0406 <unfinished ...>
[pid  7892] <... mkdirat resumed>)      = 0
[pid  7892] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7892] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7893] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7893] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7891] <... futex resumed>)        = 0
[pid  7891] close(3)                    = 0
[pid  7891] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7891] close(5 <unfinished ...>
[pid  7893] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7891] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7891] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7891] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7891] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7891] close(9)                    = -1 EBADF (Bad file descriptor)
[  199.598712][ T7892] loop0: detected capacity change from 0 to 4096
[pid  7891] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7891] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7891] exit_group(0 <unfinished ...>
[pid  7893] <... futex resumed>)        = ?
[pid  7892] <... futex resumed>)        = ?
[pid  7891] <... exit_group resumed>)   = ?
[pid  7893] +++ exited with 0 +++
[pid  7892] +++ exited with 0 +++
[pid  7891] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2809, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] umount2("./936", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./936", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./936/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./936/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./936/binderfs")    = 0
[pid  5067] umount2("./936/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./936/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./936/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./936/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./936/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./936/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./936")              = 0
[pid  5067] mkdir("./937", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2812
./strace-static-x86_64: Process 7894 attached
[pid  7894] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7894] chdir("./937")              = 0
[pid  7894] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7894] setpgid(0, 0)               = 0
[pid  7894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7894] write(3, "1000", 4)         = 4
[pid  7894] close(3)                    = 0
[pid  7894] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7894] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7894] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7894] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7894] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2813], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2813
./strace-static-x86_64: Process 7895 attached
[pid  7894] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7895] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7894] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7895] memfd_create("syzkaller", 0) = 3
[pid  7895] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7895] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7895] munmap(0x7ff042e09000, 2097152) = 0
[pid  7895] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7895] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7895] close(3)                    = 0
[pid  7895] mkdir("./file0", 0777)      = 0
[pid  7895] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7895] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7895] chdir("./file0")            = 0
[pid  7895] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7895] close(4)                    = 0
[pid  7895] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7894] <... futex resumed>)        = 0
[pid  7895] <... futex resumed>)        = 1
[pid  7895] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7894] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7894] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7894] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7894] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7894] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2814], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2814
[pid  7894] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7894] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7896 attached
 <unfinished ...>
[pid  7896] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7895] <... futex resumed>)        = 0
[pid  7895] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7896] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = -1 ENOENT (No such file or directory)
[pid  7896] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7894] <... futex resumed>)        = 0
[pid  7894] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7895] <... mkdirat resumed>)      = 0
[pid  7894] <... futex resumed>)        = 0
[pid  7894] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7895] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7896] <... futex resumed>)        = 1
[pid  7895] <... futex resumed>)        = 0
[pid  7895] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7896] creat("./file0", 0406)      = -1 EISDIR (Is a directory)
[pid  7896] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7894] <... futex resumed>)        = 0
[pid  7894] close(3)                    = 0
[pid  7894] close(4)                    = -1 EBADF (Bad file descriptor)
[  199.753591][ T7895] loop0: detected capacity change from 0 to 4096
[pid  7894] close(5 <unfinished ...>
[pid  7896] <... futex resumed>)        = 1
[pid  7894] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7894] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7894] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7894] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7894] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7894] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7896] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7894] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7894] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7894] exit_group(0 <unfinished ...>
[pid  7896] <... futex resumed>)        = ?
[pid  7895] <... futex resumed>)        = ?
[pid  7894] <... exit_group resumed>)   = ?
[pid  7896] +++ exited with 0 +++
[pid  7895] +++ exited with 0 +++
[pid  7894] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2812, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5067] umount2("./937", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./937", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./937/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./937/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./937/binderfs")    = 0
[pid  5067] umount2("./937/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./937/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./937/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./937/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./937/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./937/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./937")              = 0
[pid  5067] mkdir("./938", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2815
./strace-static-x86_64: Process 7897 attached
[pid  7897] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7897] chdir("./938")              = 0
[pid  7897] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7897] setpgid(0, 0)               = 0
[pid  7897] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7897] write(3, "1000", 4)         = 4
[pid  7897] close(3)                    = 0
[pid  7897] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7897] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7897] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7897] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7897] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7898 attached
, parent_tid=[2816], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2816
[pid  7898] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7897] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7897] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7898] <... set_robust_list resumed>) = 0
[pid  7898] memfd_create("syzkaller", 0) = 3
[pid  7898] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7898] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7898] munmap(0x7ff042e09000, 2097152) = 0
[pid  7898] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7898] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7898] close(3)                    = 0
[pid  7898] mkdir("./file0", 0777)      = 0
[pid  7898] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7898] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7898] chdir("./file0")            = 0
[pid  7898] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7898] close(4)                    = 0
[pid  7898] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7897] <... futex resumed>)        = 0
[pid  7897] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7897] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7897] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7897] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7897] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2817], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2817
[pid  7897] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7897] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 7899 attached
 <unfinished ...>
[pid  7899] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7898] <... futex resumed>)        = 1
[pid  7899] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7898] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7899] <... chdir resumed>)        = -1 ENOENT (No such file or directory)
[pid  7899] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7897] <... futex resumed>)        = 0
[pid  7897] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7899] creat("./file0", 0406 <unfinished ...>
[pid  7898] <... mkdirat resumed>)      = 0
[pid  7897] <... futex resumed>)        = 0
[pid  7897] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7899] <... creat resumed>)        = -1 EISDIR (Is a directory)
[pid  7898] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7899] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7898] <... futex resumed>)        = 0
[pid  7899] <... futex resumed>)        = 1
[pid  7898] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7897] <... futex resumed>)        = 0
[pid  7899] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7897] close(3)                    = 0
[pid  7897] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7897] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7897] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7897] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7897] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7897] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7897] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(20)                   = -1 EBADF (Bad file descriptor)
[  199.910447][ T7898] loop0: detected capacity change from 0 to 4096
[pid  7897] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7897] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7897] exit_group(0 <unfinished ...>
[pid  7899] <... futex resumed>)        = ?
[pid  7898] <... futex resumed>)        = ?
[pid  7897] <... exit_group resumed>)   = ?
[pid  7899] +++ exited with 0 +++
[pid  7898] +++ exited with 0 +++
[pid  7897] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2815, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./938", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./938", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./938/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./938/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./938/binderfs")    = 0
[pid  5067] umount2("./938/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./938/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./938/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./938/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./938/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./938/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./938")              = 0
[pid  5067] mkdir("./939", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2818
./strace-static-x86_64: Process 7900 attached
[pid  7900] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7900] chdir("./939")              = 0
[pid  7900] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7900] setpgid(0, 0)               = 0
[pid  7900] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7900] write(3, "1000", 4)         = 4
[pid  7900] close(3)                    = 0
[pid  7900] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7900] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7900] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7900] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7900] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2819], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2819
[pid  7900] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7900] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7901 attached
 <unfinished ...>
[pid  7901] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7901] memfd_create("syzkaller", 0) = 3
[pid  7901] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7901] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7901] munmap(0x7ff042e09000, 2097152) = 0
[pid  7901] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7901] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7901] close(3)                    = 0
[pid  7901] mkdir("./file0", 0777)      = 0
[pid  7901] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7901] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7901] chdir("./file0")            = 0
[pid  7901] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7901] close(4)                    = 0
[pid  7901] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7900] <... futex resumed>)        = 0
[pid  7900] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7900] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7900] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7900] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7901] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7900] <... mprotect resumed>)     = 0
[pid  7900] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7902 attached
, parent_tid=[2820], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2820
[pid  7900] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7900] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7902] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7902] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7901] <... mkdirat resumed>)      = 0
[pid  7901] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7902] <... chdir resumed>)        = 0
[pid  7902] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7901] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7902] <... futex resumed>)        = 1
[pid  7900] <... futex resumed>)        = 0
[pid  7900] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7902] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7901] <... futex resumed>)        = 0
[pid  7900] <... futex resumed>)        = 1
[pid  7900] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[  200.050841][ T7901] loop0: detected capacity change from 0 to 4096
[pid  7901] creat("./file0", 0406)      = 4
[pid  7901] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7900] <... futex resumed>)        = 0
[pid  7900] close(3)                    = 0
[pid  7900] close(4)                    = 0
[pid  7900] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7900] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7900] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7900] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7900] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7900] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7901] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7900] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7900] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7900] exit_group(0 <unfinished ...>
[pid  7902] <... futex resumed>)        = ?
[pid  7901] <... futex resumed>)        = ?
[pid  7900] <... exit_group resumed>)   = ?
[pid  7902] +++ exited with 0 +++
[pid  7901] +++ exited with 0 +++
[pid  7900] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2818, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./939", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./939", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./939/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./939/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./939/binderfs")    = 0
[pid  5067] umount2("./939/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./939/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./939/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./939/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./939/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./939/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./939")              = 0
[pid  5067] mkdir("./940", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2821
./strace-static-x86_64: Process 7903 attached
[pid  7903] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7903] chdir("./940")              = 0
[pid  7903] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7903] setpgid(0, 0)               = 0
[pid  7903] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7903] write(3, "1000", 4)         = 4
[pid  7903] close(3)                    = 0
[pid  7903] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7903] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7903] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7903] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7903] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2822], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2822
[pid  7903] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7903] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7904 attached
 <unfinished ...>
[pid  7904] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7904] memfd_create("syzkaller", 0) = 3
[pid  7904] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7904] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7904] munmap(0x7ff042e09000, 2097152) = 0
[pid  7904] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7904] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7904] close(3)                    = 0
[pid  7904] mkdir("./file0", 0777)      = 0
[pid  7904] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7904] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7904] chdir("./file0")            = 0
[pid  7904] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7904] close(4)                    = 0
[pid  7904] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7903] <... futex resumed>)        = 0
[pid  7903] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7903] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7903] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7903] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7903] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  7904] <... futex resumed>)        = 1
./strace-static-x86_64: Process 7905 attached
[pid  7903] <... clone resumed>, parent_tid=[2823], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2823
[pid  7903] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7903] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7904] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7905] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7905] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7904] <... mkdirat resumed>)      = 0
[pid  7905] <... chdir resumed>)        = 0
[pid  7905] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7904] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7903] <... futex resumed>)        = 0
[pid  7904] <... futex resumed>)        = 0
[pid  7903] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7904] creat("./file0", 0406 <unfinished ...>
[pid  7903] <... futex resumed>)        = 0
[pid  7903] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[  200.195724][ T7904] loop0: detected capacity change from 0 to 4096
[pid  7905] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7904] <... creat resumed>)        = 4
[pid  7904] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7903] <... futex resumed>)        = 0
[pid  7903] close(3)                    = 0
[pid  7903] close(4)                    = 0
[pid  7903] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7903] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7903] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7903] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7903] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7903] close(10 <unfinished ...>
[pid  7904] <... futex resumed>)        = 1
[pid  7903] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7904] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7903] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7903] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7903] exit_group(0 <unfinished ...>
[pid  7904] <... futex resumed>)        = ?
[pid  7903] <... exit_group resumed>)   = ?
[pid  7904] +++ exited with 0 +++
[pid  7905] <... futex resumed>)        = ?
[pid  7905] +++ exited with 0 +++
[pid  7903] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2821, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./940", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./940", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./940/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./940/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./940/binderfs")    = 0
[pid  5067] umount2("./940/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./940/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./940/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./940/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./940/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./940/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./940")              = 0
[pid  5067] mkdir("./941", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2824
./strace-static-x86_64: Process 7906 attached
[pid  7906] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7906] chdir("./941")              = 0
[pid  7906] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7906] setpgid(0, 0)               = 0
[pid  7906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7906] write(3, "1000", 4)         = 4
[pid  7906] close(3)                    = 0
[pid  7906] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7906] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7906] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7906] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2825], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2825
./strace-static-x86_64: Process 7907 attached
[pid  7906] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7906] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7907] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7907] memfd_create("syzkaller", 0) = 3
[pid  7907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7907] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7907] munmap(0x7ff042e09000, 2097152) = 0
[pid  7907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7907] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7907] close(3)                    = 0
[pid  7907] mkdir("./file0", 0777)      = 0
[pid  7907] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7907] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7907] chdir("./file0")            = 0
[pid  7907] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7907] close(4)                    = 0
[pid  7907] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7907] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7906] <... futex resumed>)        = 0
[pid  7906] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7907] <... futex resumed>)        = 0
[pid  7907] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7906] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7906] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7906] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7908 attached
, parent_tid=[2826], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2826
[pid  7906] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7906] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7907] <... mkdirat resumed>)      = 0
[pid  7907] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7907] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7908] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7908] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7908] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7906] <... futex resumed>)        = 0
[pid  7906] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7907] <... futex resumed>)        = 0
[pid  7906] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7907] creat("./file0", 0406 <unfinished ...>
[pid  7908] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7907] <... creat resumed>)        = 4
[pid  7907] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7906] <... futex resumed>)        = 0
[pid  7907] <... futex resumed>)        = 1
[pid  7906] close(3)                    = 0
[pid  7906] close(4)                    = 0
[pid  7906] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7906] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7906] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7906] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7906] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7907] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7906] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(18)                   = -1 EBADF (Bad file descriptor)
[  200.348063][ T7907] loop0: detected capacity change from 0 to 4096
[pid  7906] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7906] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7906] exit_group(0 <unfinished ...>
[pid  7907] <... futex resumed>)        = ?
[pid  7906] <... exit_group resumed>)   = ?
[pid  7907] +++ exited with 0 +++
[pid  7908] <... futex resumed>)        = ?
[pid  7908] +++ exited with 0 +++
[pid  7906] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2824, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./941", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./941", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./941/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./941/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./941/binderfs")    = 0
[pid  5067] umount2("./941/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./941/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./941/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./941/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./941/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./941/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./941")              = 0
[pid  5067] mkdir("./942", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2827
./strace-static-x86_64: Process 7909 attached
[pid  7909] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7909] chdir("./942")              = 0
[pid  7909] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7909] setpgid(0, 0)               = 0
[pid  7909] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7909] write(3, "1000", 4)         = 4
[pid  7909] close(3)                    = 0
[pid  7909] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7909] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7909] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7909] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7909] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7910 attached
, parent_tid=[2828], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2828
[pid  7909] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7909] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7910] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7910] memfd_create("syzkaller", 0) = 3
[pid  7910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7910] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7910] munmap(0x7ff042e09000, 2097152) = 0
[pid  7910] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7910] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7910] close(3)                    = 0
[pid  7910] mkdir("./file0", 0777)      = 0
[pid  7910] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7910] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7910] chdir("./file0")            = 0
[pid  7910] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7910] close(4)                    = 0
[pid  7910] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7910] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7909] <... futex resumed>)        = 0
[pid  7909] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7909] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7909] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7909] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7909] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2829], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2829
[pid  7909] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7909] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7910] <... futex resumed>)        = 0
[pid  7910] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7911 attached
 <unfinished ...>
[pid  7911] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7910] <... mkdirat resumed>)      = 0
[pid  7911] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7910] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7911] <... chdir resumed>)        = 0
[pid  7911] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7909] <... futex resumed>)        = 0
[pid  7909] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7911] <... futex resumed>)        = 1
[pid  7910] <... futex resumed>)        = 0
[pid  7909] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7911] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7910] creat("./file0", 0406)      = 4
[pid  7910] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7909] <... futex resumed>)        = 0
[pid  7909] close(3)                    = 0
[pid  7909] close(4)                    = 0
[pid  7909] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7909] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7909] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7909] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7909] close(9 <unfinished ...>
[pid  7910] <... futex resumed>)        = 1
[pid  7909] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7910] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7909] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(16)                   = -1 EBADF (Bad file descriptor)
[  200.505583][ T7910] loop0: detected capacity change from 0 to 4096
[pid  7909] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7909] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7909] exit_group(0 <unfinished ...>
[pid  7911] <... futex resumed>)        = ?
[pid  7910] <... futex resumed>)        = ?
[pid  7909] <... exit_group resumed>)   = ?
[pid  7911] +++ exited with 0 +++
[pid  7910] +++ exited with 0 +++
[pid  7909] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2827, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./942", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./942", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./942/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./942/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./942/binderfs")    = 0
[pid  5067] umount2("./942/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./942/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./942/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./942/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./942/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./942/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./942")              = 0
[pid  5067] mkdir("./943", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2830
./strace-static-x86_64: Process 7912 attached
[pid  7912] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7912] chdir("./943")              = 0
[pid  7912] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7912] setpgid(0, 0)               = 0
[pid  7912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7912] write(3, "1000", 4)         = 4
[pid  7912] close(3)                    = 0
[pid  7912] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7912] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7912] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7912] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7912] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7913 attached
, parent_tid=[2831], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2831
[pid  7913] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7912] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7913] <... set_robust_list resumed>) = 0
[pid  7912] <... futex resumed>)        = 0
[pid  7912] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7913] memfd_create("syzkaller", 0) = 3
[pid  7913] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7913] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7913] munmap(0x7ff042e09000, 2097152) = 0
[pid  7913] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7913] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7913] close(3)                    = 0
[pid  7913] mkdir("./file0", 0777)      = 0
[pid  7913] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7913] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7913] chdir("./file0")            = 0
[pid  7913] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7913] close(4)                    = 0
[pid  7913] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7913] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7912] <... futex resumed>)        = 0
[pid  7912] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7913] <... futex resumed>)        = 0
[pid  7912] <... futex resumed>)        = 1
[pid  7913] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7912] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7912] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7912] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7913] <... mkdirat resumed>)      = 0
[pid  7912] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7914 attached
 <unfinished ...>
[pid  7913] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7914] set_robust_list(0x7ff0430089e0, 24 <unfinished ...>
[pid  7913] <... futex resumed>)        = 0
[pid  7912] <... clone resumed>, parent_tid=[2832], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2832
[pid  7914] <... set_robust_list resumed>) = 0
[pid  7913] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7912] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7912] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7914] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7914] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7912] <... futex resumed>)        = 0
[pid  7914] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7912] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7913] <... futex resumed>)        = 0
[pid  7912] <... futex resumed>)        = 1
[pid  7913] creat("./file0", 0406 <unfinished ...>
[pid  7912] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7913] <... creat resumed>)        = 4
[pid  7913] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7912] <... futex resumed>)        = 0
[pid  7913] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7912] close(3)                    = 0
[pid  7912] close(4)                    = 0
[pid  7912] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7912] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7912] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7912] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7912] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7912] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(25)                   = -1 EBADF (Bad file descriptor)
[  200.651369][ T7913] loop0: detected capacity change from 0 to 4096
[pid  7912] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7912] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7912] exit_group(0 <unfinished ...>
[pid  7914] <... futex resumed>)        = ?
[pid  7913] <... futex resumed>)        = ?
[pid  7912] <... exit_group resumed>)   = ?
[pid  7914] +++ exited with 0 +++
[pid  7913] +++ exited with 0 +++
[pid  7912] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2830, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
[pid  5067] umount2("./943", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./943", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./943/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./943/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./943/binderfs")    = 0
[pid  5067] umount2("./943/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./943/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./943/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./943/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./943/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./943/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./943")              = 0
[pid  5067] mkdir("./944", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2833
./strace-static-x86_64: Process 7915 attached
[pid  7915] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7915] chdir("./944")              = 0
[pid  7915] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7915] setpgid(0, 0)               = 0
[pid  7915] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7915] write(3, "1000", 4)         = 4
[pid  7915] close(3)                    = 0
[pid  7915] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7915] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7915] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7915] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7915] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2834], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2834
[pid  7915] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7915] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7916 attached
 <unfinished ...>
[pid  7916] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7916] memfd_create("syzkaller", 0) = 3
[pid  7916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7916] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7916] munmap(0x7ff042e09000, 2097152) = 0
[pid  7916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7916] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7916] close(3)                    = 0
[pid  7916] mkdir("./file0", 0777)      = 0
[pid  7916] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7916] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7916] chdir("./file0")            = 0
[pid  7916] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7916] close(4)                    = 0
[pid  7916] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7915] <... futex resumed>)        = 0
[pid  7915] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7915] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7915] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7915] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7915] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2835], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2835
[pid  7915] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7915] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7916] <... futex resumed>)        = 1
[pid  7916] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0
[pid  7916] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7916] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7917 attached
 <unfinished ...>
[pid  7917] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7917] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7917] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7915] <... futex resumed>)        = 0
[pid  7915] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7915] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7916] <... futex resumed>)        = 0
[pid  7916] creat("./file0", 0406)      = 4
[pid  7916] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7915] <... futex resumed>)        = 0
[pid  7915] close(3)                    = 0
[pid  7915] close(4)                    = 0
[pid  7915] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7915] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7915] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7915] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7915] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7915] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(20 <unfinished ...>
[pid  7916] <... futex resumed>)        = 1
[pid  7915] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7916] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7915] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7915] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7915] exit_group(0 <unfinished ...>
[pid  7916] <... futex resumed>)        = ?
[pid  7915] <... exit_group resumed>)   = ?
[pid  7916] +++ exited with 0 +++
[pid  7917] <... futex resumed>)        = ?
[pid  7917] +++ exited with 0 +++
[pid  7915] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2833, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./944", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  200.789319][ T7916] loop0: detected capacity change from 0 to 4096
[pid  5067] openat(AT_FDCWD, "./944", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./944/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./944/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./944/binderfs")    = 0
[pid  5067] umount2("./944/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./944/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./944/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./944/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./944/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./944/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./944")              = 0
[pid  5067] mkdir("./945", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2836
./strace-static-x86_64: Process 7918 attached
[pid  7918] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7918] chdir("./945")              = 0
[pid  7918] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7918] setpgid(0, 0)               = 0
[pid  7918] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7918] write(3, "1000", 4)         = 4
[pid  7918] close(3)                    = 0
[pid  7918] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7918] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7918] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7918] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7918] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7919 attached
, parent_tid=[2837], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2837
[pid  7919] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7919] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7918] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7918] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7919] <... futex resumed>)        = 0
[pid  7919] memfd_create("syzkaller", 0) = 3
[pid  7919] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7919] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7919] munmap(0x7ff042e09000, 2097152) = 0
[pid  7919] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7919] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7919] close(3)                    = 0
[pid  7919] mkdir("./file0", 0777)      = 0
[pid  7919] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7919] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7919] chdir("./file0")            = 0
[pid  7919] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7919] close(4)                    = 0
[pid  7919] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7918] <... futex resumed>)        = 0
[pid  7918] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7918] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7918] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7918] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7918] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2838], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2838
./strace-static-x86_64: Process 7920 attached
[pid  7918] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7918] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7919] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7920] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7920] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7919] <... mkdirat resumed>)      = 0
[pid  7919] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7919] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7920] <... chdir resumed>)        = 0
[pid  7920] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7918] <... futex resumed>)        = 0
[pid  7918] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7918] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7919] <... futex resumed>)        = 0
[pid  7919] creat("./file0", 0406 <unfinished ...>
[pid  7920] <... futex resumed>)        = 1
[pid  7920] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7919] <... creat resumed>)        = 4
[pid  7919] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7918] <... futex resumed>)        = 0
[pid  7919] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7918] close(3)                    = 0
[pid  7918] close(4)                    = 0
[pid  7918] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7918] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7918] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7918] close(8)                    = -1 EBADF (Bad file descriptor)
[  200.935022][ T7919] loop0: detected capacity change from 0 to 4096
[pid  7918] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7918] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7918] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7918] exit_group(0 <unfinished ...>
[pid  7920] <... futex resumed>)        = ?
[pid  7918] <... exit_group resumed>)   = ?
[pid  7920] +++ exited with 0 +++
[pid  7919] <... futex resumed>)        = ?
[pid  7919] +++ exited with 0 +++
[pid  7918] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2836, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./945", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./945", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./945/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./945/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./945/binderfs")    = 0
[pid  5067] umount2("./945/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./945/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./945/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./945/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./945/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./945/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./945")              = 0
[pid  5067] mkdir("./946", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2839
./strace-static-x86_64: Process 7921 attached
[pid  7921] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7921] chdir("./946")              = 0
[pid  7921] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7921] setpgid(0, 0)               = 0
[pid  7921] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7921] write(3, "1000", 4)         = 4
[pid  7921] close(3)                    = 0
[pid  7921] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7921] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7921] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7921] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7921] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7922 attached
 <unfinished ...>
[pid  7922] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7921] <... clone resumed>, parent_tid=[2840], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2840
[pid  7922] <... set_robust_list resumed>) = 0
[pid  7921] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7921] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7922] memfd_create("syzkaller", 0) = 3
[pid  7922] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7922] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7922] munmap(0x7ff042e09000, 2097152) = 0
[pid  7922] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7922] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7922] close(3)                    = 0
[pid  7922] mkdir("./file0", 0777)      = 0
[pid  7922] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7922] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7922] chdir("./file0")            = 0
[pid  7922] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7922] close(4)                    = 0
[pid  7922] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7921] <... futex resumed>)        = 0
[pid  7921] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7921] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7921] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7921] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7921] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2841], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2841
[pid  7921] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7921] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7922] <... futex resumed>)        = 1
[pid  7922] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7923 attached
 <unfinished ...>
[pid  7923] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7923] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7922] <... mkdirat resumed>)      = 0
[pid  7922] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7922] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7923] <... chdir resumed>)        = 0
[pid  7923] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7921] <... futex resumed>)        = 0
[pid  7921] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7921] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7922] <... futex resumed>)        = 0
[pid  7922] creat("./file0", 0406 <unfinished ...>
[pid  7923] <... futex resumed>)        = 1
[pid  7923] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7922] <... creat resumed>)        = 4
[pid  7922] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7921] <... futex resumed>)        = 0
[pid  7921] close(3)                    = 0
[pid  7921] close(4 <unfinished ...>
[pid  7922] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7921] <... close resumed>)        = 0
[pid  7921] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7921] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7921] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7921] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7921] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7921] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(22)                   = -1 EBADF (Bad file descriptor)
[  201.097796][ T7922] loop0: detected capacity change from 0 to 4096
[pid  7921] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7921] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7921] exit_group(0 <unfinished ...>
[pid  7923] <... futex resumed>)        = ?
[pid  7922] <... futex resumed>)        = ?
[pid  7921] <... exit_group resumed>)   = ?
[pid  7923] +++ exited with 0 +++
[pid  7922] +++ exited with 0 +++
[pid  7921] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2839, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] umount2("./946", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./946", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./946/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./946/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./946/binderfs")    = 0
[pid  5067] umount2("./946/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./946/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./946/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./946/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./946/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./946/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./946")              = 0
[pid  5067] mkdir("./947", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2842
./strace-static-x86_64: Process 7924 attached
[pid  7924] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7924] chdir("./947")              = 0
[pid  7924] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7924] setpgid(0, 0)               = 0
[pid  7924] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7924] write(3, "1000", 4)         = 4
[pid  7924] close(3)                    = 0
[pid  7924] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7924] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7924] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7924] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7924] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2843], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2843
[pid  7924] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7924] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 7925 attached
 <unfinished ...>
[pid  7925] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7925] memfd_create("syzkaller", 0) = 3
[pid  7925] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7925] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7925] munmap(0x7ff042e09000, 2097152) = 0
[pid  7925] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7925] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7925] close(3)                    = 0
[pid  7925] mkdir("./file0", 0777)      = 0
[pid  7925] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7925] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7925] chdir("./file0")            = 0
[pid  7925] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7925] close(4)                    = 0
[pid  7925] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7924] <... futex resumed>)        = 0
[pid  7924] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7924] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7924] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7924] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7924] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2844], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2844
[pid  7924] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7924] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7925] <... futex resumed>)        = 1
[pid  7925] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000./strace-static-x86_64: Process 7926 attached
 <unfinished ...>
[pid  7926] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7926] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" <unfinished ...>
[pid  7925] <... mkdirat resumed>)      = 0
[pid  7925] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7925] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7926] <... chdir resumed>)        = 0
[pid  7926] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7924] <... futex resumed>)        = 0
[pid  7926] <... futex resumed>)        = 1
[pid  7924] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7924] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7925] <... futex resumed>)        = 0
[pid  7925] creat("./file0", 0406 <unfinished ...>
[pid  7926] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7925] <... creat resumed>)        = 4
[pid  7925] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7924] <... futex resumed>)        = 0
[pid  7924] close(3)                    = 0
[pid  7924] close(4)                    = 0
[pid  7924] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7924] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7924] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7924] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7924] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7924] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(14 <unfinished ...>
[pid  7925] <... futex resumed>)        = 1
[pid  7924] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7925] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7924] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(26)                   = -1 EBADF (Bad file descriptor)
[  201.240396][ T7925] loop0: detected capacity change from 0 to 4096
[pid  7924] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7924] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7924] exit_group(0 <unfinished ...>
[pid  7925] <... futex resumed>)        = ?
[pid  7924] <... exit_group resumed>)   = ?
[pid  7926] <... futex resumed>)        = ?
[pid  7925] +++ exited with 0 +++
[pid  7926] +++ exited with 0 +++
[pid  7924] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2842, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./947", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./947", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./947/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./947/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./947/binderfs")    = 0
[pid  5067] umount2("./947/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./947/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./947/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./947/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./947/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./947/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./947")              = 0
[pid  5067] mkdir("./948", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2845
./strace-static-x86_64: Process 7927 attached
[pid  7927] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7927] chdir("./948")              = 0
[pid  7927] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7927] setpgid(0, 0)               = 0
[pid  7927] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7927] write(3, "1000", 4)         = 4
[pid  7927] close(3)                    = 0
[pid  7927] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7927] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7927] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7927] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7927] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7928 attached
 <unfinished ...>
[pid  7928] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7927] <... clone resumed>, parent_tid=[2846], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2846
[pid  7927] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7928] <... set_robust_list resumed>) = 0
[pid  7927] <... futex resumed>)        = 0
[pid  7927] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7928] memfd_create("syzkaller", 0) = 3
[pid  7928] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7928] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7928] munmap(0x7ff042e09000, 2097152) = 0
[pid  7928] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7928] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7928] close(3)                    = 0
[pid  7928] mkdir("./file0", 0777)      = 0
[pid  7928] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7928] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7928] chdir("./file0")            = 0
[pid  7928] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7928] close(4)                    = 0
[pid  7928] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7927] <... futex resumed>)        = 0
[pid  7928] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7927] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7927] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7927] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7927] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7927] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2847], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2847
[pid  7928] <... mkdirat resumed>)      = 0
[pid  7927] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7928] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7927] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7928] <... futex resumed>)        = 0
[pid  7928] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 7929 attached
 <unfinished ...>
[pid  7929] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7929] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7929] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7927] <... futex resumed>)        = 0
[pid  7927] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7928] <... futex resumed>)        = 0
[pid  7927] <... futex resumed>)        = 1
[pid  7928] creat("./file0", 0406 <unfinished ...>
[  201.389019][ T7928] loop0: detected capacity change from 0 to 4096
[pid  7927] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7928] <... creat resumed>)        = 4
[pid  7928] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7927] <... futex resumed>)        = 0
[pid  7928] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7927] close(3)                    = 0
[pid  7927] close(4)                    = 0
[pid  7927] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7927] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7929] <... futex resumed>)        = 1
[pid  7927] close(7 <unfinished ...>
[pid  7929] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7927] <... close resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7927] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7927] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7927] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7927] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7927] exit_group(0 <unfinished ...>
[pid  7929] <... futex resumed>)        = ?
[pid  7928] <... futex resumed>)        = ?
[pid  7927] <... exit_group resumed>)   = ?
[pid  7929] +++ exited with 0 +++
[pid  7928] +++ exited with 0 +++
[pid  7927] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2845, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./948", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./948", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./948/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./948/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./948/binderfs")    = 0
[pid  5067] umount2("./948/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./948/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./948/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./948/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./948/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./948/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./948")              = 0
[pid  5067] mkdir("./949", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2848
./strace-static-x86_64: Process 7930 attached
[pid  7930] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7930] chdir("./949")              = 0
[pid  7930] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7930] setpgid(0, 0)               = 0
[pid  7930] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7930] write(3, "1000", 4)         = 4
[pid  7930] close(3)                    = 0
[pid  7930] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7930] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7930] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7930] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7930] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7931 attached
, parent_tid=[2849], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2849
[pid  7930] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7931] set_robust_list(0x7ff04b2299e0, 24 <unfinished ...>
[pid  7930] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7931] <... set_robust_list resumed>) = 0
[pid  7931] memfd_create("syzkaller", 0) = 3
[pid  7931] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7931] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7931] munmap(0x7ff042e09000, 2097152) = 0
[pid  7931] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7931] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7931] close(3)                    = 0
[pid  7931] mkdir("./file0", 0777)      = 0
[pid  7931] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7931] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7931] chdir("./file0")            = 0
[pid  7931] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7931] close(4)                    = 0
[pid  7931] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7930] <... futex resumed>)        = 0
[pid  7931] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7930] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7931] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  7930] <... futex resumed>)        = 0
[pid  7931] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7930] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7931] <... mkdirat resumed>)      = 0
[pid  7930] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  7931] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7930] <... mmap resumed>)         = 0x7ff042fe8000
[pid  7931] <... futex resumed>)        = 0
[pid  7930] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid  7931] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7930] <... mprotect resumed>)     = 0
[pid  7930] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2850], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2850
[pid  7930] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 7932 attached
) = 0
[pid  7930] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7932] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7932] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7932] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7930] <... futex resumed>)        = 0
[pid  7930] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7930] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7931] <... futex resumed>)        = 0
[pid  7931] creat("./file0", 0406 <unfinished ...>
[pid  7932] <... futex resumed>)        = 1
[pid  7932] futex(0x7ff04b326798, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7931] <... creat resumed>)        = 4
[pid  7931] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  7930] <... futex resumed>)        = 0
[pid  7930] close(3)                    = 0
[pid  7931] <... futex resumed>)        = 1
[pid  7930] close(4)                    = 0
[pid  7930] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7930] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7930] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7930] close(8)                    = -1 EBADF (Bad file descriptor)
[  201.560427][ T7931] loop0: detected capacity change from 0 to 4096
[pid  7930] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7930] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7930] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7930] exit_group(0 <unfinished ...>
[pid  7932] <... futex resumed>)        = ?
[pid  7930] <... exit_group resumed>)   = ?
[pid  7932] +++ exited with 0 +++
[pid  7931] +++ exited with 0 +++
[pid  7930] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2848, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=4 /* 0.04 s */} ---
[pid  5067] umount2("./949", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./949", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./949/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./949/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
[pid  5067] unlink("./949/binderfs")    = 0
[pid  5067] umount2("./949/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
[pid  5067] umount2("./949/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] lstat("./949/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] umount2("./949/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./949/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
[pid  5067] getdents64(4, 0x5555570f0660 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x5555570f0660 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./949/file0")        = 0
[pid  5067] getdents64(3, 0x5555570e8620 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./949")              = 0
[pid  5067] mkdir("./950", 0777)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e75d0) = 2851
./strace-static-x86_64: Process 7933 attached
[pid  7933] set_robust_list(0x5555570e75e0, 24) = 0
[pid  7933] chdir("./950")              = 0
[pid  7933] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7933] setpgid(0, 0)               = 0
[pid  7933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7933] write(3, "1000", 4)         = 4
[pid  7933] close(3)                    = 0
[pid  7933] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7933] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7933] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff04b209000
[pid  7933] mprotect(0x7ff04b20a000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7933] clone(child_stack=0x7ff04b2293f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 7934 attached
, parent_tid=[2852], tls=0x7ff04b229700, child_tidptr=0x7ff04b2299d0) = 2852
[pid  7933] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7933] futex(0x7ff04b32678c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  7934] set_robust_list(0x7ff04b2299e0, 24) = 0
[pid  7934] memfd_create("syzkaller", 0) = 3
[pid  7934] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff042e09000
[pid  7934] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\x8f\x24\x2d\x5f\x49\x6d\x50\x0b\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid  7934] munmap(0x7ff042e09000, 2097152) = 0
[pid  7934] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7934] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7934] close(3)                    = 0
[pid  7934] mkdir("./file0", 0777)      = 0
[pid  7934] mount("/dev/loop0", "./file0", "ntfs3", MS_SYNCHRONOUS|MS_REC, "") = 0
[pid  7934] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7934] chdir("./file0")            = 0
[pid  7934] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7934] close(4)                    = 0
[pid  7934] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7934] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7933] <... futex resumed>)        = 0
[pid  7933] futex(0x7ff04b326788, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7934] <... futex resumed>)        = 0
[pid  7934] mkdirat(AT_FDCWD, "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000 <unfinished ...>
[pid  7933] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7933] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff042fe8000
[pid  7933] mprotect(0x7ff042fe9000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  7933] clone(child_stack=0x7ff0430083f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2853], tls=0x7ff043008700, child_tidptr=0x7ff0430089d0) = 2853
./strace-static-x86_64: Process 7935 attached
[pid  7933] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7933] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7935] set_robust_list(0x7ff0430089e0, 24) = 0
[pid  7935] chdir("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0
[pid  7935] futex(0x7ff04b32679c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  7933] <... futex resumed>)        = 0
[pid  7933] futex(0x7ff04b326798, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  7933] futex(0x7ff04b32679c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  7935] creat("./file0", 0406 <unfinished ...>
[pid  7934] <... mkdirat resumed>)      = 0
[pid  7934] futex(0x7ff04b32678c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[  201.712599][ T7934] loop0: detected capacity change from 0 to 4096
[pid  7934] futex(0x7ff04b326788, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  7933] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[  201.765975][ T7935] ------------[ cut here ]------------
[  201.771582][ T7935] DEBUG_RWSEMS_WARN_ON((rwsem_owner(sem) != current) && !rwsem_test_oflags(sem, RWSEM_NONSPINNABLE)): count = 0x0, magic = 0xffff88807104ea70, owner = 0x0, curr 0xffff8880196757c0, list empty
[  201.791226][ T7935] WARNING: CPU: 0 PID: 7935 at kernel/locking/rwsem.c:1361 up_write+0x4f9/0x580
[  201.800581][ T7935] Modules linked in:
[  201.804479][ T7935] CPU: 0 PID: 7935 Comm: syz-executor316 Not tainted 6.2.0-rc5-syzkaller-00047-g7c46948a6e9c #0
[  201.815231][ T7935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[  201.825388][ T7935] RIP: 0010:up_write+0x4f9/0x580
[  201.830348][ T7935] Code: c7 00 ad ed 8a 48 c7 c6 a0 af ed 8a 48 8b 54 24 28 48 8b 4c 24 18 4d 89 e0 4c 8b 4c 24 30 31 c0 53 e8 9b 5a e8 ff 48 83 c4 08 <0f> 0b e9 6b fd ff ff 48 c7 c1 18 cb 96 8e 80 e1 07 80 c1 03 38 c1
[  201.850084][ T7935] RSP: 0018:ffffc9000b7cf860 EFLAGS: 00010296
[  201.856210][ T7935] RAX: 4643b7f86e564100 RBX: ffffffff8aedade0 RCX: ffff8880196757c0
[  201.864196][ T7935] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  201.872227][ T7935] RBP: ffffc9000b7cf930 R08: ffffffff816f2b8d R09: fffff520016f9ec5
[  201.880284][ T7935] R10: fffff520016f9ec5 R11: 1ffff920016f9ec4 R12: 0000000000000000
[  201.888314][ T7935] R13: ffff88807104ea70 R14: 1ffff920016f9f14 R15: dffffc0000000000
[  201.896318][ T7935] FS:  00007ff043008700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  201.905324][ T7935] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[pid  7933] close(3)                    = 0
[pid  7933] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  7933] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  7933] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  7933] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  7933] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  7933] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  7933] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(16)                   = -1 EBADF (Bad file descriptor)
[  201.911923][ T7935] CR2: 0000561cee05f058 CR3: 0000000021d9a000 CR4: 00000000003506f0
[  201.919968][ T7935] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  201.927977][ T7935] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  201.936053][ T7935] Call Trace:
[  201.939446][ T7935]  <TASK>
[  201.942366][ T7935]  ? ntfs_atomic_open+0x4b8/0x540
[  201.947482][ T7935]  ? __up_read+0x690/0x690
[  201.951911][ T7935]  ? ntfs_atomic_open+0x2b1/0x540
[  201.957011][ T7935]  ? ntfs_atomic_open+0x4b8/0x540
[  201.962394][ T7935]  path_openat+0x14ff/0x2dd0
[pid  7933] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  7933] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  7933] exit_group(0)               = ?
[pid  7934] <... futex resumed>)        = ?
[pid  7934] +++ exited with 0 +++
[  201.967722][ T7935]  ? ntfs_rename+0xd00/0xd00
[  201.972877][ T7935]  ? do_filp_open+0x4f0/0x4f0
[  201.978069][ T7935]  do_filp_open+0x264/0x4f0
[  201.982794][ T7935]  ? vfs_tmpfile+0x490/0x490
[  201.987578][ T7935]  ? do_raw_spin_unlock+0x134/0x8a0
[  201.992798][ T7935]  ? _raw_spin_unlock+0x24/0x40
[  201.997709][ T7935]  ? alloc_fd+0x5a7/0x640
[  202.002055][ T7935]  do_sys_openat2+0x124/0x4e0
[  202.006842][ T7935]  ? do_raw_spin_unlock+0x134/0x8a0
[  202.012069][ T7935]  ? do_sys_open+0x220/0x220
[  202.016724][ T7935]  ? _raw_spin_unlock_irq+0x2a/0x40
[  202.021931][ T7935]  ? ptrace_notify+0x245/0x340
[  202.026765][ T7935]  __x64_sys_creat+0x11f/0x160
[  202.031558][ T7935]  ? __x64_compat_sys_openat+0x290/0x290
[  202.037238][ T7935]  ? syscall_enter_from_user_mode+0x2e/0x1d0
[  202.043228][ T7935]  ? syscall_enter_from_user_mode+0x86/0x1d0
[  202.049269][ T7935]  do_syscall_64+0x3d/0xb0
[  202.053700][ T7935]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  202.059658][ T7935] RIP: 0033:0x7ff04b2814a9
[  202.064087][ T7935] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  202.083789][ T7935] RSP: 002b:00007ff0430082f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  202.092252][ T7935] RAX: ffffffffffffffda RBX: 00007ff04b326790 RCX: 00007ff04b2814a9
[  202.100320][ T7935] RDX: 00007ff04b2814a9 RSI: 0000000000000106 RDI: 0000000020000200
[  202.108360][ T7935] RBP: 00007ff04b2f2c88 R08: 0000000000000000 R09: 0000000000000000
[  202.116455][ T7935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000600
[  202.124444][ T7935] R13: 0030656c69662f2e R14: 0000000020000b80 R15: 00007ff04b326798
[  202.132502][ T7935]  </TASK>
[  202.135608][ T7935] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  202.142896][ T7935] CPU: 0 PID: 7935 Comm: syz-executor316 Not tainted 6.2.0-rc5-syzkaller-00047-g7c46948a6e9c #0
[  202.153311][ T7935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[  202.163358][ T7935] Call Trace:
[  202.166629][ T7935]  <TASK>
[  202.169549][ T7935]  dump_stack_lvl+0x1b1/0x290
[  202.174245][ T7935]  ? nf_tcp_handle_invalid+0x630/0x630
[  202.179717][ T7935]  ? panic+0x710/0x710
[  202.183809][ T7935]  ? vscnprintf+0x59/0x80
[  202.188155][ T7935]  ? up_write+0x470/0x580
[  202.192502][ T7935]  panic+0x2d6/0x710
[  202.196419][ T7935]  ? __warn+0x16d/0x2d0
[  202.200584][ T7935]  ? memcpy_page_flushcache+0x100/0x100
[  202.206133][ T7935]  ? up_write+0x4f9/0x580
[  202.210463][ T7935]  __warn+0x284/0x2d0
[  202.214461][ T7935]  ? up_write+0x4f9/0x580
[  202.218786][ T7935]  report_bug+0x1b3/0x2d0
[  202.223132][ T7935]  handle_bug+0x3d/0x70
[  202.227303][ T7935]  exc_invalid_op+0x16/0x40
[  202.231820][ T7935]  asm_exc_invalid_op+0x16/0x20
[  202.236694][ T7935] RIP: 0010:up_write+0x4f9/0x580
[  202.241621][ T7935] Code: c7 00 ad ed 8a 48 c7 c6 a0 af ed 8a 48 8b 54 24 28 48 8b 4c 24 18 4d 89 e0 4c 8b 4c 24 30 31 c0 53 e8 9b 5a e8 ff 48 83 c4 08 <0f> 0b e9 6b fd ff ff 48 c7 c1 18 cb 96 8e 80 e1 07 80 c1 03 38 c1
[  202.261223][ T7935] RSP: 0018:ffffc9000b7cf860 EFLAGS: 00010296
[  202.267289][ T7935] RAX: 4643b7f86e564100 RBX: ffffffff8aedade0 RCX: ffff8880196757c0
[  202.275269][ T7935] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  202.283237][ T7935] RBP: ffffc9000b7cf930 R08: ffffffff816f2b8d R09: fffff520016f9ec5
[  202.291204][ T7935] R10: fffff520016f9ec5 R11: 1ffff920016f9ec4 R12: 0000000000000000
[  202.299170][ T7935] R13: ffff88807104ea70 R14: 1ffff920016f9f14 R15: dffffc0000000000
[  202.307141][ T7935]  ? __wake_up_klogd+0xcd/0x100
[  202.312004][ T7935]  ? ntfs_atomic_open+0x4b8/0x540
[  202.317040][ T7935]  ? __up_read+0x690/0x690
[  202.321454][ T7935]  ? ntfs_atomic_open+0x2b1/0x540
[  202.326492][ T7935]  ? ntfs_atomic_open+0x4b8/0x540
[  202.331525][ T7935]  path_openat+0x14ff/0x2dd0
[  202.336122][ T7935]  ? ntfs_rename+0xd00/0xd00
[  202.340724][ T7935]  ? do_filp_open+0x4f0/0x4f0
[  202.345416][ T7935]  do_filp_open+0x264/0x4f0
[  202.349922][ T7935]  ? vfs_tmpfile+0x490/0x490
[  202.354526][ T7935]  ? do_raw_spin_unlock+0x134/0x8a0
[  202.359728][ T7935]  ? _raw_spin_unlock+0x24/0x40
[  202.364583][ T7935]  ? alloc_fd+0x5a7/0x640
[  202.368918][ T7935]  do_sys_openat2+0x124/0x4e0
[  202.373591][ T7935]  ? do_raw_spin_unlock+0x134/0x8a0
[  202.378789][ T7935]  ? do_sys_open+0x220/0x220
[  202.383377][ T7935]  ? _raw_spin_unlock_irq+0x2a/0x40
[  202.388575][ T7935]  ? ptrace_notify+0x245/0x340
[  202.393337][ T7935]  __x64_sys_creat+0x11f/0x160
[  202.398096][ T7935]  ? __x64_compat_sys_openat+0x290/0x290
[  202.403731][ T7935]  ? syscall_enter_from_user_mode+0x2e/0x1d0
[  202.409710][ T7935]  ? syscall_enter_from_user_mode+0x86/0x1d0
[  202.415686][ T7935]  do_syscall_64+0x3d/0xb0
[  202.420103][ T7935]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  202.425995][ T7935] RIP: 0033:0x7ff04b2814a9
[  202.430406][ T7935] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  202.450006][ T7935] RSP: 002b:00007ff0430082f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  202.458415][ T7935] RAX: ffffffffffffffda RBX: 00007ff04b326790 RCX: 00007ff04b2814a9
[  202.466391][ T7935] RDX: 00007ff04b2814a9 RSI: 0000000000000106 RDI: 0000000020000200
[  202.474357][ T7935] RBP: 00007ff04b2f2c88 R08: 0000000000000000 R09: 0000000000000000
[  202.482318][ T7935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000600
[  202.490287][ T7935] R13: 0030656c69662f2e R14: 0000000020000b80 R15: 00007ff04b326798
[  202.498263][ T7935]  </TASK>
[  202.501429][ T7935] Kernel Offset: disabled
[  202.505839][ T7935] Rebooting in 86400 seconds..