./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4208208901

<...>
Warning: Permanently added '10.128.0.159' (ED25519) to the list of known hosts.
execve("./syz-executor4208208901", ["./syz-executor4208208901"], 0x7ffc6fa6dd50 /* 10 vars */) = 0
brk(NULL)                               = 0x55555c1eb000
brk(0x55555c1ebd00)                     = 0x55555c1ebd00
arch_prctl(ARCH_SET_FS, 0x55555c1eb380) = 0
set_tid_address(0x55555c1eb650)         = 5826
set_robust_list(0x55555c1eb660, 24)     = 0
rseq(0x55555c1ebca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor4208208901", 4096) = 28
getrandom("\x48\xc5\x52\x9a\x0b\xa3\x2e\x36", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55555c1ebd00
brk(0x55555c20cd00)                     = 0x55555c20cd00
brk(0x55555c20d000)                     = 0x55555c20d000
mprotect(0x7f47ff7e5000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./syzkaller.DnuTAS", 0700)       = 0
chmod("./syzkaller.DnuTAS", 0777)       = 0
chdir("./syzkaller.DnuTAS")             = 0
mkdir("./0", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5828 attached
, child_tidptr=0x55555c1eb650) = 5828
[pid  5828] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5828] chdir("./0")                = 0
[pid  5828] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5828] setpgid(0, 0)               = 0
[pid  5828] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5828] write(3, "1000", 4)         = 4
[pid  5828] close(3)                    = 0
[pid  5828] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5828] write(1, "executing program\n", 18executing program
) = 18
[pid  5828] memfd_create("syzkaller", 0) = 3
[pid  5828] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5828] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5828] munmap(0x7f47f7200000, 138412032) = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5828] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5828] close(3)                    = 0
[pid  5828] close(4)                    = 0
[pid  5828] mkdir("./file1", 0777)      = 0
[   69.736515][ T5828] loop0: detected capacity change from 0 to 32768
[   69.780219][ T5828] =======================================================
[   69.780219][ T5828] WARNING: The mand mount option has been deprecated and
[   69.780219][ T5828]          and is ignored by this kernel. Remove the mand
[   69.780219][ T5828]          option from the mount to silence this warning.
[   69.780219][ T5828] =======================================================
[pid  5828] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5828] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5828] chdir("./file1")            = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5828] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5828] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[   69.831693][ T5828] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5828] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5828] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5828] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5828] ftruncate(6, 2150145)       = 0
[pid  5828] memfd_create("syzkaller", 0) = 7
[   69.885354][   T29] audit: type=1800 audit(1731806604.032:2): pid=5828 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5828] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5828] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5828] munmap(0x7f47f7200000, 138412032) = 0
[pid  5828] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5828] close(7)                    = 0
[pid  5828] exit_group(0)               = ?
[pid  5828] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5828, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./0/binderfs")                  = 0
umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   70.261677][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./0/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./0")                            = 0
mkdir("./1", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5831 attached
, child_tidptr=0x55555c1eb650) = 5831
[pid  5831] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5831] chdir("./1")                = 0
[pid  5831] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5831] setpgid(0, 0)               = 0
[pid  5831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5831] write(3, "1000", 4)         = 4
[pid  5831] close(3)                    = 0
[pid  5831] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5831] write(1, "executing program\n", 18) = 18
[pid  5831] memfd_create("syzkaller", 0) = 3
[pid  5831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5831] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5831] munmap(0x7f47f7200000, 138412032) = 0
[pid  5831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5831] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5831] close(3)                    = 0
[pid  5831] close(4)                    = 0
[pid  5831] mkdir("./file1", 0777)      = 0
[   70.677473][ T5831] loop0: detected capacity change from 0 to 32768
[pid  5831] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5831] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5831] chdir("./file1")            = 0
[pid  5831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5831] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5831] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5831] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5831] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5831] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5831] ftruncate(6, 2150145)       = 0
[pid  5831] memfd_create("syzkaller", 0) = 7
[pid  5831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   70.725529][ T5831] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   70.753473][   T29] audit: type=1800 audit(1731806604.902:3): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5831] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5831] munmap(0x7f47f7200000, 138412032) = 0
[pid  5831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5831] close(7)                    = 0
[pid  5831] exit_group(0)               = ?
[pid  5831] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5831, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} ---
umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./1/binderfs")                  = 0
umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./1/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./1")                            = 0
mkdir("./2", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   71.160805][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5834 attached
, child_tidptr=0x55555c1eb650) = 5834
[pid  5834] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5834] chdir("./2")                = 0
[pid  5834] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5834] setpgid(0, 0)               = 0
[pid  5834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5834] write(3, "1000", 4)         = 4
[pid  5834] close(3)                    = 0
[pid  5834] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5834] write(1, "executing program\n", 18) = 18
[pid  5834] memfd_create("syzkaller", 0) = 3
[pid  5834] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5834] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5834] munmap(0x7f47f7200000, 138412032) = 0
[pid  5834] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5834] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5834] close(3)                    = 0
[pid  5834] close(4)                    = 0
[pid  5834] mkdir("./file1", 0777)      = 0
[   71.528358][ T5834] loop0: detected capacity change from 0 to 32768
[pid  5834] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5834] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5834] chdir("./file1")            = 0
[pid  5834] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5834] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5834] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5834] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5834] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5834] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5834] ftruncate(6, 2150145)       = 0
[pid  5834] memfd_create("syzkaller", 0) = 7
[pid  5834] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   71.583985][ T5834] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   71.602255][   T29] audit: type=1800 audit(1731806605.752:4): pid=5834 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5834] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5834] munmap(0x7f47f7200000, 138412032) = 0
[pid  5834] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5834] close(7)                    = 0
[pid  5834] exit_group(0)               = ?
[pid  5834] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5834, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./2/binderfs")                  = 0
umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./2/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./2")                            = 0
mkdir("./3", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   71.974717][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5837 attached
, child_tidptr=0x55555c1eb650) = 5837
[pid  5837] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5837] chdir("./3")                = 0
[pid  5837] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5837] setpgid(0, 0)               = 0
[pid  5837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5837] write(3, "1000", 4)         = 4
[pid  5837] close(3)                    = 0
[pid  5837] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5837] write(1, "executing program\n", 18) = 18
[pid  5837] memfd_create("syzkaller", 0) = 3
[pid  5837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5837] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5837] munmap(0x7f47f7200000, 138412032) = 0
[pid  5837] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5837] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5837] close(3)                    = 0
[pid  5837] close(4)                    = 0
[pid  5837] mkdir("./file1", 0777)      = 0
[   72.330681][ T5837] loop0: detected capacity change from 0 to 32768
[pid  5837] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5837] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5837] chdir("./file1")            = 0
[pid  5837] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5837] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5837] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5837] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[   72.380115][ T5837] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5837] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5837] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5837] ftruncate(6, 2150145)       = 0
[pid  5837] memfd_create("syzkaller", 0) = 7
[pid  5837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   72.429517][   T29] audit: type=1800 audit(1731806606.582:5): pid=5837 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5837] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5837] munmap(0x7f47f7200000, 138412032) = 0
[pid  5837] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5837] close(7)                    = 0
[pid  5837] exit_group(0)               = ?
[pid  5837] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5837, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./3/binderfs")                  = 0
umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./3/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./3")                            = 0
mkdir("./4", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   72.790216][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5840 attached
, child_tidptr=0x55555c1eb650) = 5840
[pid  5840] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5840] chdir("./4")                = 0
[pid  5840] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5840] setpgid(0, 0)               = 0
[pid  5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "1000", 4)         = 4
[pid  5840] close(3)                    = 0
[pid  5840] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5840] write(1, "executing program\n", 18) = 18
[pid  5840] memfd_create("syzkaller", 0) = 3
[pid  5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5840] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5840] munmap(0x7f47f7200000, 138412032) = 0
[pid  5840] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5840] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5840] close(3)                    = 0
[pid  5840] close(4)                    = 0
[pid  5840] mkdir("./file1", 0777)      = 0
[   73.099139][ T5840] loop0: detected capacity change from 0 to 32768
[pid  5840] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5840] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5840] chdir("./file1")            = 0
[pid  5840] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5840] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   73.152484][ T5840] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5840] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5840] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5840] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5840] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5840] ftruncate(6, 2150145)       = 0
[pid  5840] memfd_create("syzkaller", 0) = 7
[pid  5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   73.225296][   T29] audit: type=1800 audit(1731806607.372:6): pid=5840 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5840] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5840] munmap(0x7f47f7200000, 138412032) = 0
[pid  5840] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5840] close(7)                    = 0
[pid  5840] exit_group(0)               = ?
[pid  5840] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5840, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} ---
umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./4/binderfs")                  = 0
umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./4/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./4")                            = 0
mkdir("./5", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   73.619105][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5843 attached
, child_tidptr=0x55555c1eb650) = 5843
[pid  5843] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5843] chdir("./5")                = 0
[pid  5843] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5843] setpgid(0, 0)               = 0
[pid  5843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5843] write(3, "1000", 4)         = 4
[pid  5843] close(3)                    = 0
[pid  5843] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5843] write(1, "executing program\n", 18executing program
) = 18
[pid  5843] memfd_create("syzkaller", 0) = 3
[pid  5843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5843] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5843] munmap(0x7f47f7200000, 138412032) = 0
[pid  5843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5843] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5843] close(3)                    = 0
[pid  5843] close(4)                    = 0
[pid  5843] mkdir("./file1", 0777)      = 0
[   73.987414][ T5843] loop0: detected capacity change from 0 to 32768
[pid  5843] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5843] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5843] chdir("./file1")            = 0
[pid  5843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5843] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5843] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[   74.045932][ T5843] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5843] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5843] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5843] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5843] ftruncate(6, 2150145)       = 0
[pid  5843] memfd_create("syzkaller", 0) = 7
[pid  5843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   74.102206][   T29] audit: type=1800 audit(1731806608.252:7): pid=5843 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5843] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5843] munmap(0x7f47f7200000, 138412032) = 0
[pid  5843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5843] close(7)                    = 0
[pid  5843] exit_group(0)               = ?
[pid  5843] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5843, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./5/binderfs")                  = 0
umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./5/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   74.488301][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./5/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./5/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./5")                            = 0
mkdir("./6", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached
, child_tidptr=0x55555c1eb650) = 5846
[pid  5846] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5846] chdir("./6")                = 0
[pid  5846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5846] setpgid(0, 0)               = 0
[pid  5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5846] write(3, "1000", 4)         = 4
[pid  5846] close(3)                    = 0
[pid  5846] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5846] write(1, "executing program\n", 18) = 18
[pid  5846] memfd_create("syzkaller", 0) = 3
[pid  5846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5846] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5846] munmap(0x7f47f7200000, 138412032) = 0
[pid  5846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5846] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5846] close(3)                    = 0
[pid  5846] close(4)                    = 0
[pid  5846] mkdir("./file1", 0777)      = 0
[   75.016290][ T5846] loop0: detected capacity change from 0 to 32768
[pid  5846] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5846] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5846] chdir("./file1")            = 0
[pid  5846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[   75.056659][ T5846] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5846] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5846] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5846] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5846] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5846] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5846] ftruncate(6, 2150145)       = 0
[pid  5846] memfd_create("syzkaller", 0) = 7
[pid  5846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   75.133675][   T29] audit: type=1800 audit(1731806609.282:8): pid=5846 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5846] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5846] munmap(0x7f47f7200000, 138412032) = 0
[pid  5846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5846] close(7)                    = 0
[pid  5846] exit_group(0)               = ?
[pid  5846] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5846, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./6/binderfs")                  = 0
umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./6/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   75.533006][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./6/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./6/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./6")                            = 0
mkdir("./7", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5849 attached
, child_tidptr=0x55555c1eb650) = 5849
[pid  5849] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5849] chdir("./7")                = 0
[pid  5849] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5849] setpgid(0, 0)               = 0
[pid  5849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5849] write(3, "1000", 4)         = 4
[pid  5849] close(3)                    = 0
[pid  5849] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5849] write(1, "executing program\n", 18) = 18
[pid  5849] memfd_create("syzkaller", 0) = 3
[pid  5849] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5849] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5849] munmap(0x7f47f7200000, 138412032) = 0
[pid  5849] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5849] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5849] close(3)                    = 0
[pid  5849] close(4)                    = 0
[pid  5849] mkdir("./file1", 0777)      = 0
[   75.998700][ T5849] loop0: detected capacity change from 0 to 32768
[pid  5849] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5849] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5849] chdir("./file1")            = 0
[pid  5849] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5849] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   76.041350][ T5849] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5849] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5849] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5849] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5849] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5849] ftruncate(6, 2150145)       = 0
[pid  5849] memfd_create("syzkaller", 0) = 7
[pid  5849] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   76.106922][   T29] audit: type=1800 audit(1731806610.252:9): pid=5849 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5849] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5849] munmap(0x7f47f7200000, 138412032) = 0
[pid  5849] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5849] close(7)                    = 0
[pid  5849] exit_group(0)               = ?
[pid  5849] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5849, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=26 /* 0.26 s */} ---
umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./7/binderfs")                  = 0
umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./7/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   76.476598][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./7/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./7")                            = 0
mkdir("./8", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5852 attached
, child_tidptr=0x55555c1eb650) = 5852
[pid  5852] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5852] chdir("./8")                = 0
[pid  5852] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5852] setpgid(0, 0)               = 0
[pid  5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5852] write(3, "1000", 4)         = 4
[pid  5852] close(3)                    = 0
[pid  5852] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5852] write(1, "executing program\n", 18executing program
) = 18
[pid  5852] memfd_create("syzkaller", 0) = 3
[pid  5852] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   76.805198][  T969] cfg80211: failed to load regulatory.db
[pid  5852] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5852] munmap(0x7f47f7200000, 138412032) = 0
[pid  5852] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5852] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5852] close(3)                    = 0
[pid  5852] close(4)                    = 0
[pid  5852] mkdir("./file1", 0777)      = 0
[   77.096759][ T5852] loop0: detected capacity change from 0 to 32768
[pid  5852] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5852] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5852] chdir("./file1")            = 0
[pid  5852] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5852] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5852] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5852] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5852] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5852] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5852] ftruncate(6, 2150145)       = 0
[pid  5852] memfd_create("syzkaller", 0) = 7
[   77.143129][ T5852] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   77.163972][   T29] audit: type=1800 audit(1731806611.312:10): pid=5852 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5852] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5852] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5852] munmap(0x7f47f7200000, 138412032) = 0
[pid  5852] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5852] close(7)                    = 0
[pid  5852] exit_group(0)               = ?
[pid  5852] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5852, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=33 /* 0.33 s */} ---
umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./8/binderfs")                  = 0
umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./8/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./8/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./8")                            = 0
mkdir("./9", 0777)                      = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   77.588836][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5855 attached
, child_tidptr=0x55555c1eb650) = 5855
[pid  5855] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5855] chdir("./9")                = 0
[pid  5855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5855] setpgid(0, 0)               = 0
[pid  5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5855] write(3, "1000", 4)         = 4
[pid  5855] close(3)                    = 0
[pid  5855] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5855] write(1, "executing program\n", 18) = 18
[pid  5855] memfd_create("syzkaller", 0) = 3
[pid  5855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5855] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5855] munmap(0x7f47f7200000, 138412032) = 0
[pid  5855] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5855] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5855] close(3)                    = 0
[pid  5855] close(4)                    = 0
[pid  5855] mkdir("./file1", 0777)      = 0
[   77.942632][ T5855] loop0: detected capacity change from 0 to 32768
[pid  5855] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5855] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5855] chdir("./file1")            = 0
[pid  5855] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5855] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   78.002979][ T5855] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5855] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5855] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5855] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5855] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5855] ftruncate(6, 2150145)       = 0
[pid  5855] memfd_create("syzkaller", 0) = 7
[   78.080048][   T29] audit: type=1800 audit(1731806612.232:11): pid=5855 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5855] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5855] munmap(0x7f47f7200000, 138412032) = 0
[pid  5855] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5855] close(7)                    = 0
[pid  5855] exit_group(0)               = ?
[pid  5855] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5855, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} ---
umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./9/binderfs")                  = 0
umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./9/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   78.479998][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./9/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./9/file1")                      = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./9")                            = 0
mkdir("./10", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5858 attached
, child_tidptr=0x55555c1eb650) = 5858
[pid  5858] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5858] chdir("./10")               = 0
[pid  5858] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5858] setpgid(0, 0)               = 0
[pid  5858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5858] write(3, "1000", 4)         = 4
[pid  5858] close(3)                    = 0
[pid  5858] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5858] write(1, "executing program\n", 18) = 18
[pid  5858] memfd_create("syzkaller", 0) = 3
[pid  5858] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5858] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5858] munmap(0x7f47f7200000, 138412032) = 0
[pid  5858] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5858] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5858] close(3)                    = 0
[pid  5858] close(4)                    = 0
[pid  5858] mkdir("./file1", 0777)      = 0
[   78.977152][ T5858] loop0: detected capacity change from 0 to 32768
[pid  5858] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5858] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5858] chdir("./file1")            = 0
[pid  5858] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5858] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5858] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5858] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5858] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5858] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5858] ftruncate(6, 2150145)       = 0
[pid  5858] memfd_create("syzkaller", 0) = 7
[pid  5858] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   79.025492][ T5858] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.052056][   T29] audit: type=1800 audit(1731806613.202:12): pid=5858 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5858] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5858] munmap(0x7f47f7200000, 138412032) = 0
[pid  5858] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5858] close(7)                    = 0
[pid  5858] exit_group(0)               = ?
[pid  5858] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5858, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=27 /* 0.27 s */} ---
umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./10/binderfs")                 = 0
umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./10/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./10/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   79.440350][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./10/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./10")                           = 0
mkdir("./11", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5861 attached
, child_tidptr=0x55555c1eb650) = 5861
[pid  5861] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5861] chdir("./11")               = 0
[pid  5861] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5861] setpgid(0, 0)               = 0
[pid  5861] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5861] write(3, "1000", 4)         = 4
[pid  5861] close(3)                    = 0
[pid  5861] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5861] write(1, "executing program\n", 18) = 18
[pid  5861] memfd_create("syzkaller", 0) = 3
[pid  5861] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5861] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5861] munmap(0x7f47f7200000, 138412032) = 0
[pid  5861] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5861] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5861] close(3)                    = 0
[pid  5861] close(4)                    = 0
[pid  5861] mkdir("./file1", 0777)      = 0
[   79.897564][ T5861] loop0: detected capacity change from 0 to 32768
[pid  5861] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5861] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5861] chdir("./file1")            = 0
[pid  5861] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5861] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5861] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5861] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5861] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5861] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5861] ftruncate(6, 2150145)       = 0
[pid  5861] memfd_create("syzkaller", 0) = 7
[pid  5861] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   79.955246][ T5861] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.972948][   T29] audit: type=1800 audit(1731806614.122:13): pid=5861 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5861] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5861] munmap(0x7f47f7200000, 138412032) = 0
[pid  5861] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5861] close(7)                    = 0
[pid  5861] exit_group(0)               = ?
[pid  5861] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5861, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=27 /* 0.27 s */} ---
umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./11/binderfs")                 = 0
umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./11/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./11/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   80.351106][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./11/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./11/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./11")                           = 0
mkdir("./12", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5864 attached
, child_tidptr=0x55555c1eb650) = 5864
[pid  5864] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5864] chdir("./12")               = 0
[pid  5864] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5864] setpgid(0, 0)               = 0
[pid  5864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5864] write(3, "1000", 4)         = 4
[pid  5864] close(3)                    = 0
[pid  5864] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5864] write(1, "executing program\n", 18) = 18
[pid  5864] memfd_create("syzkaller", 0) = 3
[pid  5864] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5864] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5864] munmap(0x7f47f7200000, 138412032) = 0
[pid  5864] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5864] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5864] close(3)                    = 0
[pid  5864] close(4)                    = 0
[pid  5864] mkdir("./file1", 0777)      = 0
[   80.872180][ T5864] loop0: detected capacity change from 0 to 32768
[pid  5864] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5864] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5864] chdir("./file1")            = 0
[pid  5864] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5864] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5864] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5864] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[   80.927966][ T5864] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5864] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5864] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5864] ftruncate(6, 2150145)       = 0
[pid  5864] memfd_create("syzkaller", 0) = 7
[pid  5864] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   80.985308][   T29] audit: type=1800 audit(1731806615.132:14): pid=5864 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5864] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5864] munmap(0x7f47f7200000, 138412032) = 0
[pid  5864] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5864] close(7)                    = 0
[pid  5864] exit_group(0)               = ?
[pid  5864] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5864, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./12/binderfs")                 = 0
umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./12/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./12/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./12/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./12/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./12")                           = 0
mkdir("./13", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   81.311896][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5867 attached
, child_tidptr=0x55555c1eb650) = 5867
[pid  5867] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5867] chdir("./13")               = 0
[pid  5867] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5867] setpgid(0, 0)               = 0
[pid  5867] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5867] write(3, "1000", 4)         = 4
[pid  5867] close(3)                    = 0
[pid  5867] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5867] write(1, "executing program\n", 18) = 18
[pid  5867] memfd_create("syzkaller", 0) = 3
[pid  5867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5867] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5867] munmap(0x7f47f7200000, 138412032) = 0
[pid  5867] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5867] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5867] close(3)                    = 0
[pid  5867] close(4)                    = 0
[pid  5867] mkdir("./file1", 0777)      = 0
[pid  5867] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5867] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5867] chdir("./file1")            = 0
[pid  5867] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5867] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5867] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[   81.649972][ T5867] loop0: detected capacity change from 0 to 32768
[   81.689217][ T5867] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5867] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5867] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5867] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5867] ftruncate(6, 2150145)       = 0
[pid  5867] memfd_create("syzkaller", 0) = 7
[pid  5867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   81.704274][   T29] audit: type=1800 audit(1731806615.852:15): pid=5867 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5867] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5867] munmap(0x7f47f7200000, 138412032) = 0
[pid  5867] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5867] close(7)                    = 0
[pid  5867] exit_group(0)               = ?
[pid  5867] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5867, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./13/binderfs")                 = 0
umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./13/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./13/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./13/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./13/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./13")                           = 0
mkdir("./14", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   82.025182][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5870 attached
, child_tidptr=0x55555c1eb650) = 5870
[pid  5870] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5870] chdir("./14")               = 0
[pid  5870] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5870] setpgid(0, 0)               = 0
[pid  5870] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5870] write(3, "1000", 4)         = 4
[pid  5870] close(3)                    = 0
[pid  5870] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5870] write(1, "executing program\n", 18executing program
) = 18
[pid  5870] memfd_create("syzkaller", 0) = 3
[pid  5870] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5870] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5870] munmap(0x7f47f7200000, 138412032) = 0
[pid  5870] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5870] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5870] close(3)                    = 0
[pid  5870] close(4)                    = 0
[pid  5870] mkdir("./file1", 0777)      = 0
[   82.373260][ T5870] loop0: detected capacity change from 0 to 32768
[pid  5870] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5870] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5870] chdir("./file1")            = 0
[pid  5870] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5870] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   82.425848][ T5870] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5870] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5870] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5870] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5870] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5870] ftruncate(6, 2150145)       = 0
[pid  5870] memfd_create("syzkaller", 0) = 7
[pid  5870] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   82.492758][   T29] audit: type=1800 audit(1731806616.642:16): pid=5870 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5870] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5870] munmap(0x7f47f7200000, 138412032) = 0
[pid  5870] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5870] close(7)                    = 0
[pid  5870] exit_group(0)               = ?
[pid  5870] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5870, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./14/binderfs")                 = 0
umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./14/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./14/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./14/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./14/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./14")                           = 0
mkdir("./15", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   82.877099][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5873 attached
, child_tidptr=0x55555c1eb650) = 5873
[pid  5873] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5873] chdir("./15")               = 0
[pid  5873] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5873] setpgid(0, 0)               = 0
[pid  5873] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5873] write(3, "1000", 4)         = 4
[pid  5873] close(3)                    = 0
[pid  5873] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5873] write(1, "executing program\n", 18) = 18
[pid  5873] memfd_create("syzkaller", 0) = 3
[pid  5873] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5873] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5873] munmap(0x7f47f7200000, 138412032) = 0
[pid  5873] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5873] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5873] close(3)                    = 0
[pid  5873] close(4)                    = 0
[pid  5873] mkdir("./file1", 0777)      = 0
[pid  5873] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5873] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5873] chdir("./file1")            = 0
[   83.190134][ T5873] loop0: detected capacity change from 0 to 32768
[   83.225133][ T5873] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5873] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5873] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5873] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5873] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5873] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5873] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5873] ftruncate(6, 2150145)       = 0
[pid  5873] memfd_create("syzkaller", 0) = 7
[pid  5873] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   83.301419][   T29] audit: type=1800 audit(1731806617.452:17): pid=5873 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5873] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5873] munmap(0x7f47f7200000, 138412032) = 0
[pid  5873] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5873] close(7)                    = 0
[pid  5873] exit_group(0)               = ?
[pid  5873] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5873, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./15/binderfs")                 = 0
umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./15/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./15/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./15/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./15/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./15")                           = 0
mkdir("./16", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   83.664425][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5876 attached
, child_tidptr=0x55555c1eb650) = 5876
[pid  5876] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5876] chdir("./16")               = 0
[pid  5876] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5876] setpgid(0, 0)               = 0
[pid  5876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5876] write(3, "1000", 4)         = 4
[pid  5876] close(3)                    = 0
[pid  5876] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5876] write(1, "executing program\n", 18) = 18
[pid  5876] memfd_create("syzkaller", 0) = 3
[pid  5876] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5876] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5876] munmap(0x7f47f7200000, 138412032) = 0
[pid  5876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5876] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5876] close(3)                    = 0
[pid  5876] close(4)                    = 0
[pid  5876] mkdir("./file1", 0777)      = 0
[   83.977542][ T5876] loop0: detected capacity change from 0 to 32768
[pid  5876] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5876] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5876] chdir("./file1")            = 0
[pid  5876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5876] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5876] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[   84.039758][ T5876] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5876] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5876] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5876] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5876] ftruncate(6, 2150145)       = 0
[pid  5876] memfd_create("syzkaller", 0) = 7
[   84.099003][   T29] audit: type=1800 audit(1731806618.252:18): pid=5876 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5876] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5876] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5876] munmap(0x7f47f7200000, 138412032) = 0
[pid  5876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5876] close(7)                    = 0
[pid  5876] exit_group(0)               = ?
[pid  5876] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5876, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=37 /* 0.37 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./16/binderfs")                 = 0
umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./16/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./16/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./16/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   84.624903][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./16/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./16")                           = 0
mkdir("./17", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5879 attached
, child_tidptr=0x55555c1eb650) = 5879
[pid  5879] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5879] chdir("./17")               = 0
[pid  5879] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5879] setpgid(0, 0)               = 0
[pid  5879] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5879] write(3, "1000", 4)         = 4
[pid  5879] close(3)                    = 0
[pid  5879] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5879] write(1, "executing program\n", 18executing program
) = 18
[pid  5879] memfd_create("syzkaller", 0) = 3
[pid  5879] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5879] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5879] munmap(0x7f47f7200000, 138412032) = 0
[pid  5879] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5879] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5879] close(3)                    = 0
[pid  5879] close(4)                    = 0
[pid  5879] mkdir("./file1", 0777)      = 0
[pid  5879] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5879] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5879] chdir("./file1")            = 0
[pid  5879] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5879] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5879] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[   85.053105][ T5879] loop0: detected capacity change from 0 to 32768
[   85.083728][ T5879] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5879] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5879] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5879] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5879] ftruncate(6, 2150145)       = 0
[pid  5879] memfd_create("syzkaller", 0) = 7
[pid  5879] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   85.113072][   T29] audit: type=1800 audit(1731806619.262:19): pid=5879 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5879] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5879] munmap(0x7f47f7200000, 138412032) = 0
[pid  5879] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5879] close(7)                    = 0
[pid  5879] exit_group(0)               = ?
[pid  5879] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5879, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./17/binderfs")                 = 0
umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./17/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./17/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./17/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   85.480274][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./17/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./17")                           = 0
mkdir("./18", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5882 attached
, child_tidptr=0x55555c1eb650) = 5882
[pid  5882] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5882] chdir("./18")               = 0
[pid  5882] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5882] setpgid(0, 0)               = 0
[pid  5882] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5882] write(3, "1000", 4)         = 4
[pid  5882] close(3)                    = 0
[pid  5882] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5882] write(1, "executing program\n", 18) = 18
[pid  5882] memfd_create("syzkaller", 0) = 3
[pid  5882] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5882] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5882] munmap(0x7f47f7200000, 138412032) = 0
[pid  5882] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5882] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5882] close(3)                    = 0
[pid  5882] close(4)                    = 0
[pid  5882] mkdir("./file1", 0777)      = 0
[   85.905653][ T5882] loop0: detected capacity change from 0 to 32768
[pid  5882] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5882] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5882] chdir("./file1")            = 0
[pid  5882] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5882] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5882] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5882] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5882] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5882] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5882] ftruncate(6, 2150145)       = 0
[pid  5882] memfd_create("syzkaller", 0) = 7
[pid  5882] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   85.958174][ T5882] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   85.974146][   T29] audit: type=1800 audit(1731806620.122:20): pid=5882 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5882] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5882] munmap(0x7f47f7200000, 138412032) = 0
[pid  5882] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5882] close(7)                    = 0
[pid  5882] exit_group(0)               = ?
[pid  5882] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5882, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=25 /* 0.25 s */} ---
umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./18/binderfs")                 = 0
umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./18/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./18/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./18/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./18/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./18")                           = 0
mkdir("./19", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   86.331439][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5885 attached
, child_tidptr=0x55555c1eb650) = 5885
[pid  5885] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5885] chdir("./19")               = 0
[pid  5885] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5885] setpgid(0, 0)               = 0
[pid  5885] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5885] write(3, "1000", 4)         = 4
[pid  5885] close(3)                    = 0
[pid  5885] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5885] write(1, "executing program\n", 18) = 18
[pid  5885] memfd_create("syzkaller", 0) = 3
[pid  5885] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5885] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5885] munmap(0x7f47f7200000, 138412032) = 0
[pid  5885] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5885] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5885] close(3)                    = 0
[pid  5885] close(4)                    = 0
[pid  5885] mkdir("./file1", 0777)      = 0
[   86.659646][ T5885] loop0: detected capacity change from 0 to 32768
[pid  5885] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5885] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5885] chdir("./file1")            = 0
[   86.709736][ T5885] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5885] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5885] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5885] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5885] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5885] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5885] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5885] ftruncate(6, 2150145)       = 0
[pid  5885] memfd_create("syzkaller", 0) = 7
[pid  5885] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   86.816630][   T29] audit: type=1800 audit(1731806620.962:21): pid=5885 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5885] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5885] munmap(0x7f47f7200000, 138412032) = 0
[pid  5885] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5885] close(7)                    = 0
[pid  5885] exit_group(0)               = ?
[pid  5885] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5885, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./19/binderfs")                 = 0
umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./19/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./19/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   87.201849][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./19/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./19/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./19")                           = 0
mkdir("./20", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5888 attached
, child_tidptr=0x55555c1eb650) = 5888
[pid  5888] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5888] chdir("./20")               = 0
[pid  5888] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5888] setpgid(0, 0)               = 0
[pid  5888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5888] write(3, "1000", 4)         = 4
[pid  5888] close(3)                    = 0
[pid  5888] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5888] write(1, "executing program\n", 18executing program
) = 18
[pid  5888] memfd_create("syzkaller", 0) = 3
[pid  5888] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5888] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5888] munmap(0x7f47f7200000, 138412032) = 0
[pid  5888] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5888] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5888] close(3)                    = 0
[pid  5888] close(4)                    = 0
[pid  5888] mkdir("./file1", 0777)      = 0
[   87.689548][ T5888] loop0: detected capacity change from 0 to 32768
[pid  5888] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5888] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5888] chdir("./file1")            = 0
[pid  5888] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5888] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5888] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5888] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5888] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5888] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5888] ftruncate(6, 2150145)       = 0
[pid  5888] memfd_create("syzkaller", 0) = 7
[pid  5888] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   87.747127][ T5888] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   87.764379][   T29] audit: type=1800 audit(1731806621.912:22): pid=5888 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5888] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5888] munmap(0x7f47f7200000, 138412032) = 0
[pid  5888] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5888] close(7)                    = 0
[pid  5888] exit_group(0)               = ?
[pid  5888] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5888, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=30 /* 0.30 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./20/binderfs")                 = 0
umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./20/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./20/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   88.132205][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./20/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./20/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./20")                           = 0
mkdir("./21", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5891 attached
, child_tidptr=0x55555c1eb650) = 5891
[pid  5891] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5891] chdir("./21")               = 0
[pid  5891] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5891] setpgid(0, 0)               = 0
[pid  5891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5891] write(3, "1000", 4)         = 4
[pid  5891] close(3)                    = 0
[pid  5891] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5891] write(1, "executing program\n", 18) = 18
[pid  5891] memfd_create("syzkaller", 0) = 3
[pid  5891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5891] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5891] munmap(0x7f47f7200000, 138412032) = 0
[pid  5891] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5891] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5891] close(3)                    = 0
[pid  5891] close(4)                    = 0
[pid  5891] mkdir("./file1", 0777)      = 0
[pid  5891] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5891] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5891] chdir("./file1")            = 0
[pid  5891] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[   88.631265][ T5891] loop0: detected capacity change from 0 to 32768
[   88.670418][ T5891] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5891] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5891] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5891] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5891] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5891] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5891] ftruncate(6, 2150145)       = 0
[pid  5891] memfd_create("syzkaller", 0) = 7
[   88.751709][   T29] audit: type=1800 audit(1731806622.902:23): pid=5891 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5891] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5891] munmap(0x7f47f7200000, 138412032) = 0
[pid  5891] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5891] close(7)                    = 0
[pid  5891] exit_group(0)               = ?
[pid  5891] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5891, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} ---
umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./21/binderfs")                 = 0
umount2("./21/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./21/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./21/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./21/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./21/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./21/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./21")                           = 0
mkdir("./22", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
[   89.158963][ T5826] ocfs2: Unmounting device (7,0) on (node local)
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5894 attached
, child_tidptr=0x55555c1eb650) = 5894
[pid  5894] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5894] chdir("./22")               = 0
[pid  5894] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5894] setpgid(0, 0)               = 0
[pid  5894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5894] write(3, "1000", 4)         = 4
[pid  5894] close(3)                    = 0
[pid  5894] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5894] write(1, "executing program\n", 18) = 18
[pid  5894] memfd_create("syzkaller", 0) = 3
[pid  5894] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5894] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5894] munmap(0x7f47f7200000, 138412032) = 0
[pid  5894] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5894] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5894] close(3)                    = 0
[pid  5894] close(4)                    = 0
[pid  5894] mkdir("./file1", 0777)      = 0
[   89.573600][ T5894] loop0: detected capacity change from 0 to 32768
[pid  5894] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5894] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5894] chdir("./file1")            = 0
[   89.634865][ T5894] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5894] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5894] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5894] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5894] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5894] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5894] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5894] ftruncate(6, 2150145)       = 0
[pid  5894] memfd_create("syzkaller", 0) = 7
[pid  5894] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   89.720570][   T29] audit: type=1800 audit(1731806623.872:24): pid=5894 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5894] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5894] munmap(0x7f47f7200000, 138412032) = 0
[pid  5894] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5894] close(7)                    = 0
[pid  5894] exit_group(0)               = ?
[pid  5894] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5894, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} ---
umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./22/binderfs")                 = 0
umount2("./22/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./22/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./22/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./22/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./22/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   90.086147][ T5826] ocfs2: Unmounting device (7,0) on (node local)
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./22/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./22")                           = 0
mkdir("./23", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5898 attached
, child_tidptr=0x55555c1eb650) = 5898
[pid  5898] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5898] chdir("./23")               = 0
[pid  5898] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5898] setpgid(0, 0)               = 0
[pid  5898] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5898] write(3, "1000", 4)         = 4
[pid  5898] close(3)                    = 0
[pid  5898] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5898] write(1, "executing program\n", 18executing program
) = 18
[pid  5898] memfd_create("syzkaller", 0) = 3
[pid  5898] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5898] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5898] munmap(0x7f47f7200000, 138412032) = 0
[pid  5898] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5898] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5898] close(3)                    = 0
[pid  5898] close(4)                    = 0
[pid  5898] mkdir("./file1", 0777)      = 0
[   90.541410][ T5898] loop0: detected capacity change from 0 to 32768
[pid  5898] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5898] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5898] chdir("./file1")            = 0
[pid  5898] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5898] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   90.587679][ T5898] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5898] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5898] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5898] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5898] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5898] ftruncate(6, 2150145)       = 0
[pid  5898] memfd_create("syzkaller", 0) = 7
[   90.655109][   T29] audit: type=1800 audit(1731806624.802:25): pid=5898 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5898] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5898] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5898] munmap(0x7f47f7200000, 138412032) = 0
[pid  5898] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5898] close(7)                    = 0
[pid  5898] exit_group(0)               = ?
[pid  5898] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5898, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./23/binderfs")                 = 0
umount2("./23/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./23/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./23/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./23/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   91.053537][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./23/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./23/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./23")                           = 0
mkdir("./24", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5901 attached
, child_tidptr=0x55555c1eb650) = 5901
[pid  5901] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5901] chdir("./24")               = 0
[pid  5901] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5901] setpgid(0, 0)               = 0
[pid  5901] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5901] write(3, "1000", 4)         = 4
[pid  5901] close(3)                    = 0
[pid  5901] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5901] write(1, "executing program\n", 18) = 18
[pid  5901] memfd_create("syzkaller", 0) = 3
[pid  5901] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5901] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5901] munmap(0x7f47f7200000, 138412032) = 0
[pid  5901] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5901] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5901] close(3)                    = 0
[pid  5901] close(4)                    = 0
[pid  5901] mkdir("./file1", 0777)      = 0
[   91.498591][ T5901] loop0: detected capacity change from 0 to 32768
[pid  5901] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5901] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5901] chdir("./file1")            = 0
[   91.560332][ T5901] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5901] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5901] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5901] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5901] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5901] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5901] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5901] ftruncate(6, 2150145)       = 0
[pid  5901] memfd_create("syzkaller", 0) = 7
[pid  5901] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   91.636317][   T29] audit: type=1800 audit(1731806625.782:26): pid=5901 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5901] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5901] munmap(0x7f47f7200000, 138412032) = 0
[pid  5901] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5901] close(7)                    = 0
[pid  5901] exit_group(0)               = ?
[pid  5901] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5901, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} ---
umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./24/binderfs")                 = 0
umount2("./24/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./24/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./24/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./24/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./24/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   92.018954][ T5826] ocfs2: Unmounting device (7,0) on (node local)
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./24/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./24")                           = 0
mkdir("./25", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5904 attached
, child_tidptr=0x55555c1eb650) = 5904
[pid  5904] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5904] chdir("./25")               = 0
[pid  5904] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5904] setpgid(0, 0)               = 0
[pid  5904] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5904] write(3, "1000", 4)         = 4
[pid  5904] close(3)                    = 0
[pid  5904] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5904] write(1, "executing program\n", 18executing program
) = 18
[pid  5904] memfd_create("syzkaller", 0) = 3
[pid  5904] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5904] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5904] munmap(0x7f47f7200000, 138412032) = 0
[pid  5904] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5904] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5904] close(3)                    = 0
[pid  5904] close(4)                    = 0
[pid  5904] mkdir("./file1", 0777)      = 0
[   92.473461][ T5904] loop0: detected capacity change from 0 to 32768
[pid  5904] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5904] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5904] chdir("./file1")            = 0
[pid  5904] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5904] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5904] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5904] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5904] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5904] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5904] ftruncate(6, 2150145)       = 0
[pid  5904] memfd_create("syzkaller", 0) = 7
[pid  5904] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   92.527887][ T5904] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   92.543796][   T29] audit: type=1800 audit(1731806626.692:27): pid=5904 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5904] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5904] munmap(0x7f47f7200000, 138412032) = 0
[pid  5904] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5904] close(7)                    = 0
[pid  5904] exit_group(0)               = ?
[pid  5904] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5904, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./25/binderfs")                 = 0
umount2("./25/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./25/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./25/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./25/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./25/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./25/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./25")                           = 0
mkdir("./26", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   92.922723][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5907 attached
, child_tidptr=0x55555c1eb650) = 5907
[pid  5907] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5907] chdir("./26")               = 0
[pid  5907] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5907] setpgid(0, 0)               = 0
[pid  5907] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5907] write(3, "1000", 4)         = 4
[pid  5907] close(3)                    = 0
[pid  5907] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5907] write(1, "executing program\n", 18executing program
) = 18
[pid  5907] memfd_create("syzkaller", 0) = 3
[pid  5907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5907] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5907] munmap(0x7f47f7200000, 138412032) = 0
[pid  5907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5907] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5907] close(3)                    = 0
[pid  5907] close(4)                    = 0
[pid  5907] mkdir("./file1", 0777)      = 0
[   93.187802][ T5907] loop0: detected capacity change from 0 to 32768
[pid  5907] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5907] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5907] chdir("./file1")            = 0
[pid  5907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5907] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   93.235764][ T5907] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5907] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5907] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5907] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5907] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5907] ftruncate(6, 2150145)       = 0
[pid  5907] memfd_create("syzkaller", 0) = 7
[pid  5907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   93.312307][   T29] audit: type=1800 audit(1731806627.462:28): pid=5907 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5907] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5907] munmap(0x7f47f7200000, 138412032) = 0
[pid  5907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5907] close(7)                    = 0
[pid  5907] exit_group(0)               = ?
[pid  5907] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5907, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./26/binderfs")                 = 0
umount2("./26/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./26/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./26/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./26/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./26/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./26/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./26")                           = 0
mkdir("./27", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   93.694807][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5910 attached
, child_tidptr=0x55555c1eb650) = 5910
[pid  5910] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5910] chdir("./27")               = 0
[pid  5910] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5910] setpgid(0, 0)               = 0
[pid  5910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5910] write(3, "1000", 4)         = 4
[pid  5910] close(3)                    = 0
[pid  5910] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5910] write(1, "executing program\n", 18executing program
) = 18
[pid  5910] memfd_create("syzkaller", 0) = 3
[pid  5910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5910] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5910] munmap(0x7f47f7200000, 138412032) = 0
[pid  5910] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5910] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5910] close(3)                    = 0
[pid  5910] close(4)                    = 0
[pid  5910] mkdir("./file1", 0777)      = 0
[   94.028748][ T5910] loop0: detected capacity change from 0 to 32768
[pid  5910] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5910] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5910] chdir("./file1")            = 0
[pid  5910] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5910] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5910] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5910] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5910] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5910] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5910] ftruncate(6, 2150145)       = 0
[pid  5910] memfd_create("syzkaller", 0) = 7
[pid  5910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   94.078176][ T5910] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   94.096811][   T29] audit: type=1800 audit(1731806628.242:29): pid=5910 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5910] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5910] munmap(0x7f47f7200000, 138412032) = 0
[pid  5910] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5910] close(7)                    = 0
[pid  5910] exit_group(0)               = ?
[pid  5910] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5910, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=26 /* 0.26 s */} ---
umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./27/binderfs")                 = 0
umount2("./27/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./27/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./27/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./27/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./27/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./27/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./27")                           = 0
mkdir("./28", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   94.461701][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5913 attached
, child_tidptr=0x55555c1eb650) = 5913
[pid  5913] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5913] chdir("./28")               = 0
[pid  5913] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5913] setpgid(0, 0)               = 0
[pid  5913] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5913] write(3, "1000", 4)         = 4
[pid  5913] close(3)                    = 0
[pid  5913] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5913] write(1, "executing program\n", 18) = 18
[pid  5913] memfd_create("syzkaller", 0) = 3
[pid  5913] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5913] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5913] munmap(0x7f47f7200000, 138412032) = 0
[pid  5913] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5913] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5913] close(3)                    = 0
[pid  5913] close(4)                    = 0
[pid  5913] mkdir("./file1", 0777)      = 0
[   94.759125][ T5913] loop0: detected capacity change from 0 to 32768
[pid  5913] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5913] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5913] chdir("./file1")            = 0
[pid  5913] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5913] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5913] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5913] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5913] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5913] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5913] ftruncate(6, 2150145)       = 0
[pid  5913] memfd_create("syzkaller", 0) = 7
[pid  5913] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   94.802049][ T5913] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   94.818085][   T29] audit: type=1800 audit(1731806628.962:30): pid=5913 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5913] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5913] munmap(0x7f47f7200000, 138412032) = 0
[pid  5913] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5913] close(7)                    = 0
[pid  5913] exit_group(0)               = ?
[pid  5913] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5913, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=24 /* 0.24 s */} ---
umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./28/binderfs")                 = 0
umount2("./28/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./28/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./28/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./28/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./28/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./28/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./28")                           = 0
mkdir("./29", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   95.178539][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5916 attached
, child_tidptr=0x55555c1eb650) = 5916
[pid  5916] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5916] chdir("./29")               = 0
[pid  5916] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5916] setpgid(0, 0)               = 0
[pid  5916] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5916] write(3, "1000", 4)         = 4
[pid  5916] close(3)                    = 0
[pid  5916] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5916] write(1, "executing program\n", 18) = 18
[pid  5916] memfd_create("syzkaller", 0) = 3
[pid  5916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5916] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5916] munmap(0x7f47f7200000, 138412032) = 0
[pid  5916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5916] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5916] close(3)                    = 0
[pid  5916] close(4)                    = 0
[pid  5916] mkdir("./file1", 0777)      = 0
[   95.533981][ T5916] loop0: detected capacity change from 0 to 32768
[pid  5916] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5916] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5916] chdir("./file1")            = 0
[pid  5916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5916] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5916] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5916] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5916] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5916] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5916] ftruncate(6, 2150145)       = 0
[pid  5916] memfd_create("syzkaller", 0) = 7
[pid  5916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   95.578544][ T5916] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   95.604775][   T29] audit: type=1800 audit(1731806629.752:31): pid=5916 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5916] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5916] munmap(0x7f47f7200000, 138412032) = 0
[pid  5916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5916] close(7)                    = 0
[pid  5916] exit_group(0)               = ?
[pid  5916] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5916, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./29/binderfs")                 = 0
umount2("./29/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./29/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./29/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./29/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   95.982874][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./29/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./29/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./29")                           = 0
mkdir("./30", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5919 attached
, child_tidptr=0x55555c1eb650) = 5919
[pid  5919] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5919] chdir("./30")               = 0
[pid  5919] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5919] setpgid(0, 0)               = 0
[pid  5919] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5919] write(3, "1000", 4)         = 4
[pid  5919] close(3)                    = 0
[pid  5919] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5919] write(1, "executing program\n", 18) = 18
[pid  5919] memfd_create("syzkaller", 0) = 3
[pid  5919] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5919] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5919] munmap(0x7f47f7200000, 138412032) = 0
[pid  5919] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5919] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5919] close(3)                    = 0
[pid  5919] close(4)                    = 0
[pid  5919] mkdir("./file1", 0777)      = 0
[   96.491308][ T5919] loop0: detected capacity change from 0 to 32768
[pid  5919] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5919] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5919] chdir("./file1")            = 0
[pid  5919] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5919] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5919] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5919] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[   96.535773][ T5919] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5919] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5919] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5919] ftruncate(6, 2150145)       = 0
[pid  5919] memfd_create("syzkaller", 0) = 7
[pid  5919] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   96.582450][   T29] audit: type=1800 audit(1731806630.732:32): pid=5919 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5919] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5919] munmap(0x7f47f7200000, 138412032) = 0
[pid  5919] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5919] close(7)                    = 0
[pid  5919] exit_group(0)               = ?
[pid  5919] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5919, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} ---
umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./30/binderfs")                 = 0
umount2("./30/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./30/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./30/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./30/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./30/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./30/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./30")                           = 0
mkdir("./31", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[   97.003508][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5925 attached
 <unfinished ...>
[pid  5925] set_robust_list(0x55555c1eb660, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55555c1eb650) = 5925
[pid  5925] <... set_robust_list resumed>) = 0
[pid  5925] chdir("./31")               = 0
[pid  5925] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5925] setpgid(0, 0)               = 0
[pid  5925] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5925] write(3, "1000", 4)         = 4
[pid  5925] close(3)                    = 0
[pid  5925] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5925] write(1, "executing program\n", 18executing program
) = 18
[pid  5925] memfd_create("syzkaller", 0) = 3
[pid  5925] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5925] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5925] munmap(0x7f47f7200000, 138412032) = 0
[pid  5925] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5925] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5925] close(3)                    = 0
[pid  5925] close(4)                    = 0
[pid  5925] mkdir("./file1", 0777)      = 0
[   97.376325][ T5925] loop0: detected capacity change from 0 to 32768
[pid  5925] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5925] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5925] chdir("./file1")            = 0
[pid  5925] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5925] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5925] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5925] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5925] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5925] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5925] ftruncate(6, 2150145)       = 0
[pid  5925] memfd_create("syzkaller", 0) = 7
[pid  5925] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   97.428225][ T5925] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   97.455473][   T29] audit: type=1800 audit(1731806631.602:33): pid=5925 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5925] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5925] munmap(0x7f47f7200000, 138412032) = 0
[pid  5925] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5925] close(7)                    = 0
[pid  5925] exit_group(0)               = ?
[pid  5925] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5925, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./31/binderfs")                 = 0
umount2("./31/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./31/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./31/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./31/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./31/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./31/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./31")                           = 0
mkdir("./32", 0777)                     = 0
[   97.873295][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5929 attached
, child_tidptr=0x55555c1eb650) = 5929
[pid  5929] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5929] chdir("./32")               = 0
[pid  5929] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5929] setpgid(0, 0)               = 0
[pid  5929] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5929] write(3, "1000", 4)         = 4
[pid  5929] close(3)                    = 0
[pid  5929] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5929] write(1, "executing program\n", 18) = 18
[pid  5929] memfd_create("syzkaller", 0) = 3
[pid  5929] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5929] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5929] munmap(0x7f47f7200000, 138412032) = 0
[pid  5929] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5929] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5929] close(3)                    = 0
[pid  5929] close(4)                    = 0
[pid  5929] mkdir("./file1", 0777)      = 0
[   98.258267][ T5929] loop0: detected capacity change from 0 to 32768
[pid  5929] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5929] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5929] chdir("./file1")            = 0
[pid  5929] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5929] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5929] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5929] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5929] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5929] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5929] ftruncate(6, 2150145)       = 0
[pid  5929] memfd_create("syzkaller", 0) = 7
[pid  5929] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   98.314430][ T5929] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   98.330751][   T29] audit: type=1800 audit(1731806632.482:34): pid=5929 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5929] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5929] munmap(0x7f47f7200000, 138412032) = 0
[pid  5929] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5929] close(7)                    = 0
[pid  5929] exit_group(0)               = ?
[pid  5929] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5929, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./32/binderfs")                 = 0
umount2("./32/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./32/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./32/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./32/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   98.722739][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./32/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./32/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./32")                           = 0
mkdir("./33", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5933 attached
, child_tidptr=0x55555c1eb650) = 5933
[pid  5933] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5933] chdir("./33")               = 0
[pid  5933] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5933] setpgid(0, 0)               = 0
[pid  5933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5933] write(3, "1000", 4)         = 4
[pid  5933] close(3)                    = 0
[pid  5933] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5933] write(1, "executing program\n", 18) = 18
[pid  5933] memfd_create("syzkaller", 0) = 3
[pid  5933] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5933] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5933] munmap(0x7f47f7200000, 138412032) = 0
[pid  5933] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5933] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5933] close(3)                    = 0
[pid  5933] close(4)                    = 0
[pid  5933] mkdir("./file1", 0777)      = 0
[   99.165945][ T5933] loop0: detected capacity change from 0 to 32768
[pid  5933] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5933] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5933] chdir("./file1")            = 0
[pid  5933] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5933] openat(AT_FDCWD, ".", O_RDONLY) = 4
[   99.215865][ T5933] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5933] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5933] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5933] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5933] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5933] ftruncate(6, 2150145)       = 0
[pid  5933] memfd_create("syzkaller", 0) = 7
[pid  5933] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[   99.282227][   T29] audit: type=1800 audit(1731806633.432:35): pid=5933 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5933] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5933] munmap(0x7f47f7200000, 138412032) = 0
[pid  5933] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5933] close(7)                    = 0
[pid  5933] exit_group(0)               = ?
[pid  5933] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5933, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./33/binderfs")                 = 0
umount2("./33/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./33/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./33/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./33/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   99.624746][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./33/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./33/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./33")                           = 0
mkdir("./34", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5937 attached
, child_tidptr=0x55555c1eb650) = 5937
[pid  5937] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5937] chdir("./34")               = 0
[pid  5937] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5937] setpgid(0, 0)               = 0
[pid  5937] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5937] write(3, "1000", 4)         = 4
[pid  5937] close(3)                    = 0
[pid  5937] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5937] write(1, "executing program\n", 18executing program
) = 18
[pid  5937] memfd_create("syzkaller", 0) = 3
[pid  5937] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5937] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5937] munmap(0x7f47f7200000, 138412032) = 0
[pid  5937] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5937] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5937] close(3)                    = 0
[pid  5937] close(4)                    = 0
[pid  5937] mkdir("./file1", 0777)      = 0
[  100.087236][ T5937] loop0: detected capacity change from 0 to 32768
[pid  5937] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5937] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5937] chdir("./file1")            = 0
[pid  5937] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5937] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5937] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5937] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5937] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5937] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5937] ftruncate(6, 2150145)       = 0
[pid  5937] memfd_create("syzkaller", 0) = 7
[pid  5937] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  100.142095][ T5937] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  100.161879][   T29] audit: type=1800 audit(1731806634.312:36): pid=5937 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5937] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5937] munmap(0x7f47f7200000, 138412032) = 0
[pid  5937] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5937] close(7)                    = 0
[pid  5937] exit_group(0)               = ?
[pid  5937] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5937, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./34/binderfs")                 = 0
umount2("./34/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./34/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./34/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./34/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  100.553013][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./34/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./34/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./34")                           = 0
mkdir("./35", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5940 attached
, child_tidptr=0x55555c1eb650) = 5940
[pid  5940] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5940] chdir("./35")               = 0
[pid  5940] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5940] setpgid(0, 0)               = 0
[pid  5940] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5940] write(3, "1000", 4)         = 4
[pid  5940] close(3)                    = 0
[pid  5940] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5940] write(1, "executing program\n", 18) = 18
[pid  5940] memfd_create("syzkaller", 0) = 3
[pid  5940] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5940] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5940] munmap(0x7f47f7200000, 138412032) = 0
[pid  5940] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5940] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5940] close(3)                    = 0
[pid  5940] close(4)                    = 0
[pid  5940] mkdir("./file1", 0777)      = 0
[  100.981380][ T5940] loop0: detected capacity change from 0 to 32768
[pid  5940] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5940] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5940] chdir("./file1")            = 0
[pid  5940] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5940] openat(AT_FDCWD, ".", O_RDONLY) = 4
[  101.031096][ T5940] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5940] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5940] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5940] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5940] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5940] ftruncate(6, 2150145)       = 0
[pid  5940] memfd_create("syzkaller", 0) = 7
[pid  5940] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  101.095456][   T29] audit: type=1800 audit(1731806635.242:37): pid=5940 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5940] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5940] munmap(0x7f47f7200000, 138412032) = 0
[pid  5940] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5940] close(7)                    = 0
[pid  5940] exit_group(0)               = ?
[pid  5940] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5940, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=28 /* 0.28 s */} ---
umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./35/binderfs")                 = 0
umount2("./35/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./35/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./35/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./35/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./35/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./35/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./35")                           = 0
mkdir("./36", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  101.481264][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5943 attached
, child_tidptr=0x55555c1eb650) = 5943
[pid  5943] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5943] chdir("./36")               = 0
[pid  5943] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5943] setpgid(0, 0)               = 0
[pid  5943] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5943] write(3, "1000", 4)         = 4
[pid  5943] close(3)                    = 0
[pid  5943] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5943] write(1, "executing program\n", 18executing program
) = 18
[pid  5943] memfd_create("syzkaller", 0) = 3
[pid  5943] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5943] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5943] munmap(0x7f47f7200000, 138412032) = 0
[pid  5943] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5943] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5943] close(3)                    = 0
[pid  5943] close(4)                    = 0
[pid  5943] mkdir("./file1", 0777)      = 0
[  101.837167][ T5943] loop0: detected capacity change from 0 to 32768
[pid  5943] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5943] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5943] chdir("./file1")            = 0
[pid  5943] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[  101.879040][ T5943] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5943] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5943] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5943] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5943] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5943] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5943] ftruncate(6, 2150145)       = 0
[pid  5943] memfd_create("syzkaller", 0) = 7
[pid  5943] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  101.962970][   T29] audit: type=1800 audit(1731806636.112:38): pid=5943 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5943] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5943] munmap(0x7f47f7200000, 138412032) = 0
[pid  5943] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5943] close(7)                    = 0
[pid  5943] exit_group(0)               = ?
[pid  5943] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5943, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=34 /* 0.34 s */} ---
umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./36/binderfs")                 = 0
umount2("./36/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./36/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./36/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./36/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./36/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./36/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./36")                           = 0
mkdir("./37", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  102.363908][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5946 attached
, child_tidptr=0x55555c1eb650) = 5946
[pid  5946] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5946] chdir("./37")               = 0
[pid  5946] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5946] setpgid(0, 0)               = 0
[pid  5946] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5946] write(3, "1000", 4)         = 4
[pid  5946] close(3)                    = 0
[pid  5946] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5946] write(1, "executing program\n", 18executing program
) = 18
[pid  5946] memfd_create("syzkaller", 0) = 3
[pid  5946] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5946] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5946] munmap(0x7f47f7200000, 138412032) = 0
[pid  5946] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5946] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5946] close(3)                    = 0
[pid  5946] close(4)                    = 0
[pid  5946] mkdir("./file1", 0777)      = 0
[  102.684135][ T5946] loop0: detected capacity change from 0 to 32768
[pid  5946] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5946] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5946] chdir("./file1")            = 0
[pid  5946] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5946] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5946] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5946] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5946] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5946] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5946] ftruncate(6, 2150145)       = 0
[pid  5946] memfd_create("syzkaller", 0) = 7
[pid  5946] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  102.732582][ T5946] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  102.749894][   T29] audit: type=1800 audit(1731806636.902:39): pid=5946 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5946] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5946] munmap(0x7f47f7200000, 138412032) = 0
[pid  5946] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5946] close(7)                    = 0
[pid  5946] exit_group(0)               = ?
[pid  5946] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5946, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./37/binderfs")                 = 0
umount2("./37/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./37/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./37/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./37/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  103.112286][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./37/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./37/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./37")                           = 0
mkdir("./38", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5949 attached
, child_tidptr=0x55555c1eb650) = 5949
[pid  5949] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5949] chdir("./38")               = 0
[pid  5949] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5949] setpgid(0, 0)               = 0
[pid  5949] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5949] write(3, "1000", 4)         = 4
[pid  5949] close(3)                    = 0
[pid  5949] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5949] write(1, "executing program\n", 18) = 18
[pid  5949] memfd_create("syzkaller", 0) = 3
[pid  5949] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5949] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5949] munmap(0x7f47f7200000, 138412032) = 0
[pid  5949] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5949] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5949] close(3)                    = 0
[pid  5949] close(4)                    = 0
[pid  5949] mkdir("./file1", 0777)      = 0
[  103.593946][ T5949] loop0: detected capacity change from 0 to 32768
[pid  5949] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5949] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5949] chdir("./file1")            = 0
[pid  5949] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5949] openat(AT_FDCWD, ".", O_RDONLY) = 4
[  103.640804][ T5949] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5949] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5949] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5949] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5949] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5949] ftruncate(6, 2150145)       = 0
[pid  5949] memfd_create("syzkaller", 0) = 7
[  103.716518][   T29] audit: type=1800 audit(1731806637.862:40): pid=5949 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5949] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5949] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5949] munmap(0x7f47f7200000, 138412032) = 0
[pid  5949] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5949] close(7)                    = 0
[pid  5949] exit_group(0)               = ?
[pid  5949] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5949, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./38/binderfs")                 = 0
umount2("./38/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./38/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./38/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./38/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  104.127539][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./38/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./38/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./38")                           = 0
mkdir("./39", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5952 attached
, child_tidptr=0x55555c1eb650) = 5952
[pid  5952] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5952] chdir("./39")               = 0
[pid  5952] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5952] setpgid(0, 0)               = 0
[pid  5952] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5952] write(3, "1000", 4)         = 4
[pid  5952] close(3)                    = 0
[pid  5952] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5952] write(1, "executing program\n", 18) = 18
[pid  5952] memfd_create("syzkaller", 0) = 3
[pid  5952] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5952] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5952] munmap(0x7f47f7200000, 138412032) = 0
[pid  5952] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5952] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5952] close(3)                    = 0
[pid  5952] close(4)                    = 0
[pid  5952] mkdir("./file1", 0777)      = 0
[  104.586301][ T5952] loop0: detected capacity change from 0 to 32768
[pid  5952] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5952] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5952] chdir("./file1")            = 0
[pid  5952] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5952] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5952] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5952] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5952] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5952] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5952] ftruncate(6, 2150145)       = 0
[pid  5952] memfd_create("syzkaller", 0) = 7
[  104.646222][ T5952] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  104.673048][   T29] audit: type=1800 audit(1731806638.822:41): pid=5952 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5952] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5952] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5952] munmap(0x7f47f7200000, 138412032) = 0
[pid  5952] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5952] close(7)                    = 0
[pid  5952] exit_group(0)               = ?
[pid  5952] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5952, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./39/binderfs")                 = 0
umount2("./39/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./39/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./39/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./39/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  105.077557][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./39/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./39/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./39")                           = 0
mkdir("./40", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5955 attached
, child_tidptr=0x55555c1eb650) = 5955
[pid  5955] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5955] chdir("./40")               = 0
[pid  5955] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5955] setpgid(0, 0)               = 0
[pid  5955] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5955] write(3, "1000", 4)         = 4
[pid  5955] close(3)                    = 0
[pid  5955] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5955] write(1, "executing program\n", 18executing program
) = 18
[pid  5955] memfd_create("syzkaller", 0) = 3
[pid  5955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5955] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5955] munmap(0x7f47f7200000, 138412032) = 0
[pid  5955] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5955] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5955] close(3)                    = 0
[pid  5955] close(4)                    = 0
[pid  5955] mkdir("./file1", 0777)      = 0
[  105.554396][ T5955] loop0: detected capacity change from 0 to 32768
[pid  5955] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5955] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5955] chdir("./file1")            = 0
[pid  5955] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5955] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5955] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5955] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[  105.597050][ T5955] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5955] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5955] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5955] ftruncate(6, 2150145)       = 0
[pid  5955] memfd_create("syzkaller", 0) = 7
[pid  5955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  105.652978][   T29] audit: type=1800 audit(1731806639.802:42): pid=5955 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5955] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5955] munmap(0x7f47f7200000, 138412032) = 0
[pid  5955] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5955] close(7)                    = 0
[pid  5955] exit_group(0)               = ?
[pid  5955] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5955, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./40/binderfs")                 = 0
umount2("./40/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./40/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./40/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./40/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./40/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./40/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./40")                           = 0
mkdir("./41", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  106.025552][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5958 attached
, child_tidptr=0x55555c1eb650) = 5958
[pid  5958] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5958] chdir("./41")               = 0
[pid  5958] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5958] setpgid(0, 0)               = 0
[pid  5958] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5958] write(3, "1000", 4)         = 4
[pid  5958] close(3)                    = 0
[pid  5958] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5958] write(1, "executing program\n", 18) = 18
[pid  5958] memfd_create("syzkaller", 0) = 3
[pid  5958] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5958] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5958] munmap(0x7f47f7200000, 138412032) = 0
[pid  5958] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5958] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5958] close(3)                    = 0
[pid  5958] close(4)                    = 0
[pid  5958] mkdir("./file1", 0777)      = 0
[  106.356626][ T5958] loop0: detected capacity change from 0 to 32768
[pid  5958] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5958] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5958] chdir("./file1")            = 0
[pid  5958] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5958] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5958] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5958] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5958] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5958] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5958] ftruncate(6, 2150145)       = 0
[pid  5958] memfd_create("syzkaller", 0) = 7
[pid  5958] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  106.405071][ T5958] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  106.422271][   T29] audit: type=1800 audit(1731806640.572:43): pid=5958 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5958] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5958] munmap(0x7f47f7200000, 138412032) = 0
[pid  5958] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5958] close(7)                    = 0
[pid  5958] exit_group(0)               = ?
[pid  5958] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5958, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=25 /* 0.25 s */} ---
umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./41/binderfs")                 = 0
umount2("./41/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./41/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./41/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./41/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  106.812424][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./41/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./41/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./41")                           = 0
mkdir("./42", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5961 attached
, child_tidptr=0x55555c1eb650) = 5961
[pid  5961] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5961] chdir("./42")               = 0
[pid  5961] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5961] setpgid(0, 0)               = 0
[pid  5961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5961] write(3, "1000", 4)         = 4
[pid  5961] close(3)                    = 0
[pid  5961] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5961] write(1, "executing program\n", 18executing program
) = 18
[pid  5961] memfd_create("syzkaller", 0) = 3
[pid  5961] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5961] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5961] munmap(0x7f47f7200000, 138412032) = 0
[pid  5961] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5961] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5961] close(3)                    = 0
[pid  5961] close(4)                    = 0
[pid  5961] mkdir("./file1", 0777)      = 0
[  107.265656][ T5961] loop0: detected capacity change from 0 to 32768
[pid  5961] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5961] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5961] chdir("./file1")            = 0
[pid  5961] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5961] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5961] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5961] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[  107.314755][ T5961] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5961] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5961] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5961] ftruncate(6, 2150145)       = 0
[pid  5961] memfd_create("syzkaller", 0) = 7
[pid  5961] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  107.369891][   T29] audit: type=1800 audit(1731806641.522:44): pid=5961 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5961] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5961] munmap(0x7f47f7200000, 138412032) = 0
[pid  5961] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5961] close(7)                    = 0
[pid  5961] exit_group(0)               = ?
[pid  5961] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5961, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./42/binderfs")                 = 0
umount2("./42/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./42/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./42/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./42/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./42/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./42/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./42")                           = 0
mkdir("./43", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  107.758872][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5964 attached
, child_tidptr=0x55555c1eb650) = 5964
[pid  5964] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5964] chdir("./43")               = 0
[pid  5964] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5964] setpgid(0, 0)               = 0
[pid  5964] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5964] write(3, "1000", 4)         = 4
[pid  5964] close(3)                    = 0
[pid  5964] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5964] write(1, "executing program\n", 18) = 18
[pid  5964] memfd_create("syzkaller", 0) = 3
[pid  5964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5964] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5964] munmap(0x7f47f7200000, 138412032) = 0
[pid  5964] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5964] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5964] close(3)                    = 0
[pid  5964] close(4)                    = 0
[pid  5964] mkdir("./file1", 0777)      = 0
[  108.126920][ T5964] loop0: detected capacity change from 0 to 32768
[pid  5964] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5964] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5964] chdir("./file1")            = 0
[pid  5964] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5964] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5964] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  108.182035][ T5964] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5964] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5964] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5964] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5964] ftruncate(6, 2150145)       = 0
[pid  5964] memfd_create("syzkaller", 0) = 7
[pid  5964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  108.237486][   T29] audit: type=1800 audit(1731806642.382:45): pid=5964 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5964] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5964] munmap(0x7f47f7200000, 138412032) = 0
[pid  5964] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5964] close(7)                    = 0
[pid  5964] exit_group(0)               = ?
[pid  5964] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5964, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=24 /* 0.24 s */} ---
umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./43/binderfs")                 = 0
umount2("./43/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./43/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./43/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./43/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  108.614323][ T5826] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./43/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./43/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./43")                           = 0
mkdir("./44", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5967 attached
, child_tidptr=0x55555c1eb650) = 5967
[pid  5967] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5967] chdir("./44")               = 0
[pid  5967] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5967] setpgid(0, 0)               = 0
[pid  5967] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5967] write(3, "1000", 4)         = 4
[pid  5967] close(3)                    = 0
[pid  5967] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5967] write(1, "executing program\n", 18) = 18
[pid  5967] memfd_create("syzkaller", 0) = 3
[pid  5967] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5967] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5967] munmap(0x7f47f7200000, 138412032) = 0
[pid  5967] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5967] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5967] close(3)                    = 0
[pid  5967] close(4)                    = 0
[pid  5967] mkdir("./file1", 0777)      = 0
[  109.105805][ T5967] loop0: detected capacity change from 0 to 32768
[pid  5967] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5967] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5967] chdir("./file1")            = 0
[pid  5967] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5967] openat(AT_FDCWD, ".", O_RDONLY) = 4
[  109.153896][ T5967] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5967] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5967] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5967] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5967] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5967] ftruncate(6, 2150145)       = 0
[pid  5967] memfd_create("syzkaller", 0) = 7
[pid  5967] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  109.228222][   T29] audit: type=1800 audit(1731806643.372:46): pid=5967 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5967] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5967] munmap(0x7f47f7200000, 138412032) = 0
[pid  5967] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5967] close(7)                    = 0
[pid  5967] exit_group(0)               = ?
[pid  5967] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5967, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} ---
umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./44/binderfs")                 = 0
umount2("./44/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./44/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./44/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  109.617426][ T5826] ocfs2: Unmounting device (7,0) on (node local)
umount2("./44/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./44/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./44/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./44")                           = 0
mkdir("./45", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5970 attached
, child_tidptr=0x55555c1eb650) = 5970
[pid  5970] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5970] chdir("./45")               = 0
[pid  5970] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5970] setpgid(0, 0)               = 0
[pid  5970] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5970] write(3, "1000", 4)         = 4
[pid  5970] close(3)                    = 0
[pid  5970] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5970] write(1, "executing program\n", 18executing program
) = 18
[pid  5970] memfd_create("syzkaller", 0) = 3
[pid  5970] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5970] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5970] munmap(0x7f47f7200000, 138412032) = 0
[pid  5970] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5970] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5970] close(3)                    = 0
[pid  5970] close(4)                    = 0
[pid  5970] mkdir("./file1", 0777)      = 0
[  110.097439][ T5970] loop0: detected capacity change from 0 to 32768
[pid  5970] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5970] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5970] chdir("./file1")            = 0
[pid  5970] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5970] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5970] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  110.156359][ T5970] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5970] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5970] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5970] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5970] ftruncate(6, 2150145)       = 0
[  110.205994][   T29] audit: type=1800 audit(1731806644.352:47): pid=5970 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[  110.229775][ T5970] 
[  110.232131][ T5970] ======================================================
[  110.239141][ T5970] WARNING: possible circular locking dependency detected
[  110.246142][ T5970] 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0 Not tainted
[  110.253224][ T5970] ------------------------------------------------------
[  110.260221][ T5970] syz-executor420/5970 is trying to acquire lock:
[  110.266611][ T5970] ffff88807839b120 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_page_mkwrite+0x346/0xed0
[  110.277231][ T5970] 
[  110.277231][ T5970] but task is already holding lock:
[  110.284578][ T5970] ffff88807c820518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x198/0x480
[  110.293608][ T5970] 
[  110.293608][ T5970] which lock already depends on the new lock.
[  110.293608][ T5970] 
[  110.303990][ T5970] 
[  110.303990][ T5970] the existing dependency chain (in reverse order) is:
[  110.312999][ T5970] 
[  110.312999][ T5970] -> #2 (sb_pagefaults){.+.+}-{0:0}:
[  110.320464][ T5970]        lock_acquire+0x1ed/0x550
[  110.325560][ T5970]        ocfs2_page_mkwrite+0x222/0xed0
[  110.331089][ T5970]        do_page_mkwrite+0x198/0x480
[  110.336378][ T5970]        handle_pte_fault+0x11fa/0x6820
[  110.341923][ T5970]        handle_mm_fault+0x1053/0x1ad0
[  110.347361][ T5970]        exc_page_fault+0x2b9/0x8c0
[  110.352570][ T5970]        asm_exc_page_fault+0x26/0x30
[  110.357922][ T5970] 
[  110.357922][ T5970] -> #1 (&mm->mmap_lock){++++}-{3:3}:
[  110.365470][ T5970]        lock_acquire+0x1ed/0x550
[  110.370490][ T5970]        __might_fault+0xc6/0x120
[  110.375492][ T5970]        _copy_to_user+0x2c/0xb0
[  110.380416][ T5970]        fiemap_fill_next_extent+0x235/0x410
[  110.386375][ T5970]        ocfs2_fiemap+0xc25/0xf80
[  110.391378][ T5970]        do_vfs_ioctl+0x1bf8/0x2e40
[  110.396553][ T5970]        __se_sys_ioctl+0x81/0x170
[  110.401642][ T5970]        do_syscall_64+0xf3/0x230
[  110.406650][ T5970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.413045][ T5970] 
[  110.413045][ T5970] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}:
[  110.421797][ T5970]        validate_chain+0x18ef/0x5920
[  110.427149][ T5970]        __lock_acquire+0x1384/0x2050
[  110.432505][ T5970]        lock_acquire+0x1ed/0x550
[  110.437527][ T5970]        down_write+0x99/0x220
[  110.442276][ T5970]        ocfs2_page_mkwrite+0x346/0xed0
[  110.447805][ T5970]        do_page_mkwrite+0x198/0x480
[  110.453086][ T5970]        handle_pte_fault+0x11fa/0x6820
[  110.458631][ T5970]        handle_mm_fault+0x1053/0x1ad0
[  110.464084][ T5970]        exc_page_fault+0x2b9/0x8c0
[  110.469278][ T5970]        asm_exc_page_fault+0x26/0x30
[  110.474635][ T5970] 
[  110.474635][ T5970] other info that might help us debug this:
[  110.474635][ T5970] 
[  110.484845][ T5970] Chain exists of:
[  110.484845][ T5970]   &ocfs2_file_ip_alloc_sem_key --> &mm->mmap_lock --> sb_pagefaults
[  110.484845][ T5970] 
[  110.498728][ T5970]  Possible unsafe locking scenario:
[  110.498728][ T5970] 
[  110.506157][ T5970]        CPU0                    CPU1
[  110.511500][ T5970]        ----                    ----
[  110.516842][ T5970]   rlock(sb_pagefaults);
[  110.521150][ T5970]                                lock(&mm->mmap_lock);
[  110.527975][ T5970]                                lock(sb_pagefaults);
[  110.534720][ T5970]   lock(&ocfs2_file_ip_alloc_sem_key);
[  110.540247][ T5970] 
[  110.540247][ T5970]  *** DEADLOCK ***
[  110.540247][ T5970] 
[  110.548369][ T5970] 2 locks held by syz-executor420/5970:
[  110.553904][ T5970]  #0: ffff8880303d8198 (&mm->mmap_lock){++++}-{3:3}, at: lock_mm_and_find_vma+0x32/0x2f0
[  110.563818][ T5970]  #1: ffff88807c820518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x198/0x480
[  110.573291][ T5970] 
[  110.573291][ T5970] stack backtrace:
[  110.579169][ T5970] CPU: 1 UID: 0 PID: 5970 Comm: syz-executor420 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[  110.590253][ T5970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  110.600299][ T5970] Call Trace:
[  110.603559][ T5970]  <TASK>
[  110.606470][ T5970]  dump_stack_lvl+0x241/0x360
[  110.611136][ T5970]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.616316][ T5970]  ? __pfx__printk+0x10/0x10
[  110.620894][ T5970]  print_circular_bug+0x13a/0x1b0
[  110.625899][ T5970]  check_noncircular+0x36a/0x4a0
[  110.630836][ T5970]  ? __pfx_check_noncircular+0x10/0x10
[  110.636275][ T5970]  ? lockdep_lock+0x123/0x2b0
[  110.640954][ T5970]  ? ocfs2_set_buffer_uptodate+0xb5/0x1350
[  110.646739][ T5970]  validate_chain+0x18ef/0x5920
[  110.651576][ T5970]  ? __pfx_validate_chain+0x10/0x10
[  110.656757][ T5970]  ? rcu_is_watching+0x15/0xb0
[  110.661501][ T5970]  ? ocfs2_read_blocks+0x123a/0x1600
[  110.666773][ T5970]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[  110.673010][ T5970]  ? __pfx_ocfs2_read_blocks+0x10/0x10
[  110.678469][ T5970]  ? __pfx_lock_acquire+0x10/0x10
[  110.683496][ T5970]  ? mark_lock+0x9a/0x360
[  110.687824][ T5970]  __lock_acquire+0x1384/0x2050
[  110.692669][ T5970]  lock_acquire+0x1ed/0x550
[  110.697159][ T5970]  ? ocfs2_page_mkwrite+0x346/0xed0
[  110.702349][ T5970]  ? __pfx_lock_acquire+0x10/0x10
[  110.707362][ T5970]  ? __pfx___might_resched+0x10/0x10
[  110.712638][ T5970]  ? sigprocmask+0x228/0x280
[  110.717210][ T5970]  ? __pfx_sigprocmask+0x10/0x10
[  110.722129][ T5970]  down_write+0x99/0x220
[  110.726352][ T5970]  ? ocfs2_page_mkwrite+0x346/0xed0
[  110.731536][ T5970]  ? __pfx_down_write+0x10/0x10
[  110.736387][ T5970]  ? __pfx___set_current_blocked+0x10/0x10
[  110.742185][ T5970]  ? filemap_fault+0x133f/0x1950
[  110.747113][ T5970]  ocfs2_page_mkwrite+0x346/0xed0
[  110.752133][ T5970]  ? __pfx_sigprocmask+0x10/0x10
[  110.757056][ T5970]  ? ocfs2_block_signals+0xab/0xf0
[  110.762153][ T5970]  ? do_page_mkwrite+0x198/0x480
[  110.767078][ T5970]  ? __pfx_ocfs2_page_mkwrite+0x10/0x10
[  110.772608][ T5970]  ? rcu_is_watching+0x15/0xb0
[  110.777351][ T5970]  ? ocfs2_fault+0x200/0x3d0
[  110.781925][ T5970]  ? __pfx_ocfs2_fault+0x10/0x10
[  110.786871][ T5970]  ? free_unref_page+0x741/0x1130
[  110.791884][ T5970]  do_page_mkwrite+0x198/0x480
[  110.796631][ T5970]  handle_pte_fault+0x11fa/0x6820
[  110.801665][ T5970]  ? mark_lock+0x9a/0x360
[  110.805977][ T5970]  ? __pfx_handle_pte_fault+0x10/0x10
[  110.811336][ T5970]  ? __thp_vma_allowable_orders+0x8ff/0x9c0
[  110.817233][ T5970]  handle_mm_fault+0x1053/0x1ad0
[  110.822263][ T5970]  ? __pfx_handle_mm_fault+0x10/0x10
[  110.827531][ T5970]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  110.832813][ T5970]  exc_page_fault+0x2b9/0x8c0
[  110.837490][ T5970]  asm_exc_page_fault+0x26/0x30
[  110.842322][ T5970] RIP: 0033:0x7f47ff734108
[  110.846727][ T5970] Code: 48 8b 35 23 50 0b 00 ba 01 cf 20 00 31 c0 bf 4d 00 00 00 e8 5a 46 03 00 66 0f 6f 05 f2 66 08 00 48 b8 2e 2f 66 69 6c 65 31 00 <c7> 04 25 c0 01 00 20 74 72 65 65 48 89 04 25 00 00 00 20 ba 03 00
[  110.866337][ T5970] RSP: 002b:00007ffdcacffc30 EFLAGS: 00010217
[  110.872388][ T5970] RAX: 0031656c69662f2e RBX: 696c6e695f78616d RCX: 00007f47ff768769
[  110.880340][ T5970] RDX: 00007f47ff768769 RSI: 000000000020cf01 RDI: 0000000000000006
[  110.888304][ T5970] RBP: 6569727261626f6e R08: 0000000000000000 R09: 0000000000000000
[  110.896277][ T5970] R10: 0000000000000006 R11: 0000000000000246 R12: 00007ffdcacffc5c
[pid  5970] memfd_create("syzkaller", 0) = 7
[pid  5970] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  110.904241][ T5970] R13: 000000000000002d R14: 431bde82d7b634db R15: 00007ffdcacffc90
[  110.912200][ T5970]  </TASK>
[pid  5970] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5970] munmap(0x7f47f7200000, 138412032) = 0
[pid  5970] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5970] close(7)                    = 0
[pid  5970] exit_group(0)               = ?
[pid  5970] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5970, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=22 /* 0.22 s */} ---
umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./45/binderfs")                 = 0
umount2("./45/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./45/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./45/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./45/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./45/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./45/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./45")                           = 0
mkdir("./46", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  111.190440][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555c1eb650) = 5973
./strace-static-x86_64: Process 5973 attached
[pid  5973] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5973] chdir("./46")               = 0
[pid  5973] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5973] setpgid(0, 0)               = 0
[pid  5973] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5973] write(3, "1000", 4)         = 4
[pid  5973] close(3)                    = 0
[pid  5973] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5973] write(1, "executing program\n", 18executing program
) = 18
[pid  5973] memfd_create("syzkaller", 0) = 3
[pid  5973] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5973] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5973] munmap(0x7f47f7200000, 138412032) = 0
[pid  5973] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5973] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5973] close(3)                    = 0
[pid  5973] close(4)                    = 0
[pid  5973] mkdir("./file1", 0777)      = 0
[pid  5973] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5973] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5973] chdir("./file1")            = 0
[pid  5973] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5973] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5973] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  111.443675][ T5973] loop0: detected capacity change from 0 to 32768
[  111.467002][ T5973] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5973] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5973] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5973] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5973] ftruncate(6, 2150145)       = 0
[pid  5973] memfd_create("syzkaller", 0) = 7
[pid  5973] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  111.500645][   T29] audit: type=1800 audit(1731806645.652:48): pid=5973 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5973] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5973] munmap(0x7f47f7200000, 138412032) = 0
[pid  5973] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5973] close(7)                    = 0
[pid  5973] exit_group(0)               = ?
[pid  5973] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5973, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=17 /* 0.17 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./46/binderfs")                 = 0
umount2("./46/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./46/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./46/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./46/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./46/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  111.783822][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./46/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./46")                           = 0
mkdir("./47", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5976 attached
 <unfinished ...>
[pid  5976] set_robust_list(0x55555c1eb660, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55555c1eb650) = 5976
[pid  5976] <... set_robust_list resumed>) = 0
[pid  5976] chdir("./47")               = 0
[pid  5976] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5976] setpgid(0, 0)               = 0
[pid  5976] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5976] write(3, "1000", 4)         = 4
[pid  5976] close(3)                    = 0
[pid  5976] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5976] write(1, "executing program\n", 18) = 18
[pid  5976] memfd_create("syzkaller", 0) = 3
[pid  5976] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5976] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5976] munmap(0x7f47f7200000, 138412032) = 0
[pid  5976] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5976] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5976] close(3)                    = 0
[pid  5976] close(4)                    = 0
[pid  5976] mkdir("./file1", 0777)      = 0
[  112.184816][ T5976] loop0: detected capacity change from 0 to 32768
[pid  5976] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5976] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5976] chdir("./file1")            = 0
[pid  5976] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5976] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5976] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5976] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5976] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5976] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5976] ftruncate(6, 2150145)       = 0
[pid  5976] memfd_create("syzkaller", 0) = 7
[pid  5976] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  112.228547][ T5976] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  112.243346][   T29] audit: type=1800 audit(1731806646.392:49): pid=5976 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5976] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5976] munmap(0x7f47f7200000, 138412032) = 0
[pid  5976] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5976] close(7)                    = 0
[pid  5976] exit_group(0)               = ?
[pid  5976] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5976, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=17 /* 0.17 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./47/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./47/binderfs")                 = 0
umount2("./47/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./47/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./47/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./47/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./47/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./47/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./47")                           = 0
mkdir("./48", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  112.534910][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5979 attached
, child_tidptr=0x55555c1eb650) = 5979
[pid  5979] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5979] chdir("./48")               = 0
[pid  5979] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5979] setpgid(0, 0)               = 0
[pid  5979] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5979] write(3, "1000", 4)         = 4
[pid  5979] close(3)                    = 0
[pid  5979] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5979] write(1, "executing program\n", 18executing program
) = 18
[pid  5979] memfd_create("syzkaller", 0) = 3
[pid  5979] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5979] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5979] munmap(0x7f47f7200000, 138412032) = 0
[pid  5979] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5979] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5979] close(3)                    = 0
[pid  5979] close(4)                    = 0
[pid  5979] mkdir("./file1", 0777)      = 0
[  112.731514][ T5979] loop0: detected capacity change from 0 to 32768
[pid  5979] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5979] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5979] chdir("./file1")            = 0
[pid  5979] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5979] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5979] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5979] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5979] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5979] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5979] ftruncate(6, 2150145)       = 0
[pid  5979] memfd_create("syzkaller", 0) = 7
[pid  5979] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  112.773401][ T5979] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  112.787041][   T29] audit: type=1800 audit(1731806646.932:50): pid=5979 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5979] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5979] munmap(0x7f47f7200000, 138412032) = 0
[pid  5979] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5979] close(7)                    = 0
[pid  5979] exit_group(0)               = ?
[pid  5979] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5979, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./48/binderfs")                 = 0
umount2("./48/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./48/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./48/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./48/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./48/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  113.083308][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./48/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./48")                           = 0
mkdir("./49", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555c1eb650) = 5982
./strace-static-x86_64: Process 5982 attached
[pid  5982] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5982] chdir("./49")               = 0
[pid  5982] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5982] setpgid(0, 0)               = 0
[pid  5982] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5982] write(3, "1000", 4)         = 4
[pid  5982] close(3)                    = 0
[pid  5982] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5982] write(1, "executing program\n", 18executing program
) = 18
[pid  5982] memfd_create("syzkaller", 0) = 3
[pid  5982] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5982] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5982] munmap(0x7f47f7200000, 138412032) = 0
[pid  5982] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5982] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5982] close(3)                    = 0
[pid  5982] close(4)                    = 0
[pid  5982] mkdir("./file1", 0777)      = 0
[pid  5982] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5982] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5982] chdir("./file1")            = 0
[pid  5982] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5982] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5982] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  113.423081][ T5982] loop0: detected capacity change from 0 to 32768
[  113.452385][ T5982] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5982] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5982] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5982] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5982] ftruncate(6, 2150145)       = 0
[pid  5982] memfd_create("syzkaller", 0) = 7
[pid  5982] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  113.466721][   T29] audit: type=1800 audit(1731806647.612:51): pid=5982 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5982] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5982] munmap(0x7f47f7200000, 138412032) = 0
[pid  5982] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5982] close(7)                    = 0
[pid  5982] exit_group(0)               = ?
[pid  5982] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5982, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=18 /* 0.18 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./49/binderfs")                 = 0
umount2("./49/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./49/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./49/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./49/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./49/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  113.745512][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./49/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./49")                           = 0
mkdir("./50", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5985 attached
, child_tidptr=0x55555c1eb650) = 5985
[pid  5985] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5985] chdir("./50")               = 0
[pid  5985] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5985] setpgid(0, 0)               = 0
[pid  5985] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5985] write(3, "1000", 4)         = 4
[pid  5985] close(3)                    = 0
[pid  5985] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5985] write(1, "executing program\n", 18) = 18
[pid  5985] memfd_create("syzkaller", 0) = 3
[pid  5985] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5985] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5985] munmap(0x7f47f7200000, 138412032) = 0
[pid  5985] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5985] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5985] close(3)                    = 0
[pid  5985] close(4)                    = 0
[pid  5985] mkdir("./file1", 0777)      = 0
[pid  5985] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5985] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5985] chdir("./file1")            = 0
[  114.129249][ T5985] loop0: detected capacity change from 0 to 32768
[  114.167437][ T5985] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5985] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5985] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5985] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5985] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5985] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5985] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5985] ftruncate(6, 2150145)       = 0
[pid  5985] memfd_create("syzkaller", 0) = 7
[pid  5985] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  114.231260][   T29] audit: type=1800 audit(1731806648.382:52): pid=5985 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5985] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5985] munmap(0x7f47f7200000, 138412032) = 0
[pid  5985] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5985] close(7)                    = 0
[pid  5985] exit_group(0)               = ?
[pid  5985] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5985, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=19 /* 0.19 s */} ---
umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./50/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./50/binderfs")                 = 0
umount2("./50/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./50/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./50/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./50/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./50/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
[  114.505198][ T5826] ocfs2: Unmounting device (7,0) on (node local)
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./50/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./50")                           = 0
mkdir("./51", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5988 attached
, child_tidptr=0x55555c1eb650) = 5988
[pid  5988] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5988] chdir("./51")               = 0
[pid  5988] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5988] setpgid(0, 0)               = 0
[pid  5988] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5988] write(3, "1000", 4)         = 4
[pid  5988] close(3)                    = 0
[pid  5988] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5988] write(1, "executing program\n", 18executing program
) = 18
[pid  5988] memfd_create("syzkaller", 0) = 3
[pid  5988] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5988] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5988] munmap(0x7f47f7200000, 138412032) = 0
[pid  5988] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5988] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5988] close(3)                    = 0
[pid  5988] close(4)                    = 0
[pid  5988] mkdir("./file1", 0777)      = 0
[pid  5988] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5988] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5988] chdir("./file1")            = 0
[pid  5988] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5988] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5988] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  114.870081][ T5988] loop0: detected capacity change from 0 to 32768
[  114.906710][ T5988] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5988] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5988] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5988] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5988] ftruncate(6, 2150145)       = 0
[pid  5988] memfd_create("syzkaller", 0) = 7
[pid  5988] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  114.923365][   T29] audit: type=1800 audit(1731806649.072:53): pid=5988 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5988] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5988] munmap(0x7f47f7200000, 138412032) = 0
[pid  5988] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5988] close(7)                    = 0
[pid  5988] exit_group(0)               = ?
[pid  5988] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5988, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./51/binderfs")                 = 0
umount2("./51/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./51/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./51/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./51/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./51/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
[  115.214548][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(4)                                = 0
rmdir("./51/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./51")                           = 0
mkdir("./52", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5991 attached
, child_tidptr=0x55555c1eb650) = 5991
[pid  5991] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5991] chdir("./52")               = 0
[pid  5991] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5991] setpgid(0, 0)               = 0
[pid  5991] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5991] write(3, "1000", 4)         = 4
[pid  5991] close(3)                    = 0
[pid  5991] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5991] write(1, "executing program\n", 18executing program
) = 18
[pid  5991] memfd_create("syzkaller", 0) = 3
[pid  5991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5991] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5991] munmap(0x7f47f7200000, 138412032) = 0
[pid  5991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5991] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5991] close(3)                    = 0
[pid  5991] close(4)                    = 0
[pid  5991] mkdir("./file1", 0777)      = 0
[pid  5991] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5991] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[  115.561203][ T5991] loop0: detected capacity change from 0 to 32768
[  115.596466][ T5991] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5991] chdir("./file1")            = 0
[pid  5991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5991] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5991] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5991] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5991] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5991] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5991] ftruncate(6, 2150145)       = 0
[  115.670917][   T29] audit: type=1800 audit(1731806649.822:54): pid=5991 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5991] memfd_create("syzkaller", 0) = 7
[pid  5991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5991] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5991] munmap(0x7f47f7200000, 138412032) = 0
[pid  5991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5991] close(7)                    = 0
[pid  5991] exit_group(0)               = ?
[pid  5991] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5991, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=18 /* 0.18 s */} ---
umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./52/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./52/binderfs")                 = 0
umount2("./52/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./52/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./52/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./52/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./52/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./52/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./52")                           = 0
mkdir("./53", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5994 attached
[  116.007380][ T5826] ocfs2: Unmounting device (7,0) on (node local)
, child_tidptr=0x55555c1eb650) = 5994
[pid  5994] set_robust_list(0x55555c1eb660, 24) = 0
[pid  5994] chdir("./53")               = 0
[pid  5994] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5994] setpgid(0, 0)               = 0
[pid  5994] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5994] write(3, "1000", 4)         = 4
[pid  5994] close(3)                    = 0
[pid  5994] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5994] write(1, "executing program\n", 18) = 18
[pid  5994] memfd_create("syzkaller", 0) = 3
[pid  5994] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5994] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5994] munmap(0x7f47f7200000, 138412032) = 0
[pid  5994] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5994] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5994] close(3)                    = 0
[pid  5994] close(4)                    = 0
[pid  5994] mkdir("./file1", 0777)      = 0
[  116.244212][ T5994] loop0: detected capacity change from 0 to 32768
[pid  5994] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5994] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5994] chdir("./file1")            = 0
[  116.286071][ T5994] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5994] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5994] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5994] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  5994] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5994] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5994] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5994] ftruncate(6, 2150145)       = 0
[  116.360349][   T29] audit: type=1800 audit(1731806650.512:55): pid=5994 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5994] memfd_create("syzkaller", 0) = 7
[pid  5994] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5994] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5994] munmap(0x7f47f7200000, 138412032) = 0
[pid  5994] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5994] close(7)                    = 0
[pid  5994] exit_group(0)               = ?
[pid  5994] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5994, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=19 /* 0.19 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./53/binderfs")                 = 0
umount2("./53/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./53/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./53/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./53/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./53/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./53/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./53")                           = 0
mkdir("./54", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  116.685426][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5997 attached
 <unfinished ...>
[pid  5997] set_robust_list(0x55555c1eb660, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55555c1eb650) = 5997
[pid  5997] <... set_robust_list resumed>) = 0
[pid  5997] chdir("./54")               = 0
[pid  5997] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5997] setpgid(0, 0)               = 0
[pid  5997] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5997] write(3, "1000", 4)         = 4
[pid  5997] close(3)                    = 0
[pid  5997] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5997] write(1, "executing program\n", 18) = 18
[pid  5997] memfd_create("syzkaller", 0) = 3
[pid  5997] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  5997] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  5997] munmap(0x7f47f7200000, 138412032) = 0
[pid  5997] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5997] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5997] close(3)                    = 0
[pid  5997] close(4)                    = 0
[pid  5997] mkdir("./file1", 0777)      = 0
[  116.969417][ T5997] loop0: detected capacity change from 0 to 32768
[pid  5997] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  5997] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5997] chdir("./file1")            = 0
[pid  5997] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5997] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  5997] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  117.014112][ T5997] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  5997] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  5997] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  5997] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  5997] ftruncate(6, 2150145)       = 0
[pid  5997] memfd_create("syzkaller", 0) = 7
[pid  5997] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  117.068538][   T29] audit: type=1800 audit(1731806651.212:56): pid=5997 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  5997] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5997] munmap(0x7f47f7200000, 138412032) = 0
[pid  5997] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5997] close(7)                    = 0
[pid  5997] exit_group(0)               = ?
[pid  5997] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5997, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./54/binderfs")                 = 0
umount2("./54/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./54/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./54/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./54/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./54/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./54/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./54")                           = 0
mkdir("./55", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
[  117.372555][ T5826] ocfs2: Unmounting device (7,0) on (node local)
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6000 attached
, child_tidptr=0x55555c1eb650) = 6000
[pid  6000] set_robust_list(0x55555c1eb660, 24) = 0
[pid  6000] chdir("./55")               = 0
[pid  6000] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6000] setpgid(0, 0)               = 0
[pid  6000] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6000] write(3, "1000", 4)         = 4
[pid  6000] close(3)                    = 0
[pid  6000] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6000] write(1, "executing program\n", 18executing program
) = 18
[pid  6000] memfd_create("syzkaller", 0) = 3
[pid  6000] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  6000] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  6000] munmap(0x7f47f7200000, 138412032) = 0
[pid  6000] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6000] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6000] close(3)                    = 0
[pid  6000] close(4)                    = 0
[pid  6000] mkdir("./file1", 0777)      = 0
[pid  6000] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  6000] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  6000] chdir("./file1")            = 0
[pid  6000] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6000] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  6000] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[  117.608785][ T6000] loop0: detected capacity change from 0 to 32768
[  117.647446][ T6000] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  6000] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  6000] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  6000] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  6000] ftruncate(6, 2150145)       = 0
[pid  6000] memfd_create("syzkaller", 0) = 7
[  117.691097][   T29] audit: type=1800 audit(1731806651.842:57): pid=6000 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  6000] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  6000] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  6000] munmap(0x7f47f7200000, 138412032) = 0
[pid  6000] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6000] close(7)                    = 0
[pid  6000] exit_group(0)               = ?
[pid  6000] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6000, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=17 /* 0.17 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./55/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./55/binderfs")                 = 0
umount2("./55/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./55/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./55/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./55/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./55/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./55/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./55")                           = 0
mkdir("./56", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6003 attached
[  117.929895][ T5826] ocfs2: Unmounting device (7,0) on (node local)
 <unfinished ...>
[pid  6003] set_robust_list(0x55555c1eb660, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55555c1eb650) = 6003
[pid  6003] <... set_robust_list resumed>) = 0
[pid  6003] chdir("./56")               = 0
[pid  6003] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6003] setpgid(0, 0)               = 0
[pid  6003] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6003] write(3, "1000", 4)         = 4
[pid  6003] close(3)                    = 0
[pid  6003] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6003] write(1, "executing program\n", 18executing program
) = 18
[pid  6003] memfd_create("syzkaller", 0) = 3
[pid  6003] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  6003] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  6003] munmap(0x7f47f7200000, 138412032) = 0
[pid  6003] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6003] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6003] close(3)                    = 0
[pid  6003] close(4)                    = 0
[pid  6003] mkdir("./file1", 0777)      = 0
[pid  6003] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  6003] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  6003] chdir("./file1")            = 0
[  118.165975][ T6003] loop0: detected capacity change from 0 to 32768
[  118.195264][ T6003] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  6003] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6003] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  6003] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  6003] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  6003] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  6003] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  6003] ftruncate(6, 2150145)       = 0
[pid  6003] memfd_create("syzkaller", 0) = 7
[pid  6003] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  118.269753][   T29] audit: type=1800 audit(1731806652.422:58): pid=6003 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  6003] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  6003] munmap(0x7f47f7200000, 138412032) = 0
[pid  6003] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6003] close(7)                    = 0
[pid  6003] exit_group(0)               = ?
[pid  6003] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6003, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./56/binderfs")                 = 0
umount2("./56/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./56/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./56/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./56/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./56/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./56/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./56")                           = 0
mkdir("./57", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
[  118.557498][ T5826] ocfs2: Unmounting device (7,0) on (node local)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6006 attached
, child_tidptr=0x55555c1eb650) = 6006
[pid  6006] set_robust_list(0x55555c1eb660, 24) = 0
[pid  6006] chdir("./57")               = 0
[pid  6006] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6006] setpgid(0, 0)               = 0
[pid  6006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6006] write(3, "1000", 4)         = 4
[pid  6006] close(3)                    = 0
[pid  6006] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6006] write(1, "executing program\n", 18executing program
) = 18
[pid  6006] memfd_create("syzkaller", 0) = 3
[pid  6006] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  6006] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  6006] munmap(0x7f47f7200000, 138412032) = 0
[pid  6006] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6006] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6006] close(3)                    = 0
[pid  6006] close(4)                    = 0
[pid  6006] mkdir("./file1", 0777)      = 0
[  118.819658][ T6006] loop0: detected capacity change from 0 to 32768
[pid  6006] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  6006] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  6006] chdir("./file1")            = 0
[pid  6006] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6006] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  6006] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  6006] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[  118.860553][ T6006] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  6006] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  6006] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  6006] ftruncate(6, 2150145)       = 0
[pid  6006] memfd_create("syzkaller", 0) = 7
[pid  6006] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  118.914026][   T29] audit: type=1800 audit(1731806653.062:59): pid=6006 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  6006] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  6006] munmap(0x7f47f7200000, 138412032) = 0
[pid  6006] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6006] close(7)                    = 0
[pid  6006] exit_group(0)               = ?
[pid  6006] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6006, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./57/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./57/binderfs")                 = 0
umount2("./57/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./57/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./57/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./57/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./57/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  119.182907][ T5826] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./57/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./57")                           = 0
mkdir("./58", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6009 attached
 <unfinished ...>
[pid  6009] set_robust_list(0x55555c1eb660, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55555c1eb650) = 6009
[pid  6009] <... set_robust_list resumed>) = 0
[pid  6009] chdir("./58")               = 0
[pid  6009] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6009] setpgid(0, 0)               = 0
[pid  6009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6009] write(3, "1000", 4)         = 4
[pid  6009] close(3)                    = 0
[pid  6009] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  6009] write(1, "executing program\n", 18) = 18
[pid  6009] memfd_create("syzkaller", 0) = 3
[pid  6009] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  6009] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  6009] munmap(0x7f47f7200000, 138412032) = 0
[pid  6009] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6009] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6009] close(3)                    = 0
[pid  6009] close(4)                    = 0
[pid  6009] mkdir("./file1", 0777)      = 0
[  119.626661][ T6009] loop0: detected capacity change from 0 to 32768
[pid  6009] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  6009] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  6009] chdir("./file1")            = 0
[pid  6009] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6009] openat(AT_FDCWD, ".", O_RDONLY) = 4
[pid  6009] ioctl(4, FS_IOC_FIEMAP, {fm_start=0, fm_length=4503599660924931, fm_flags=0, fm_extent_count=768} => {fm_flags=0, fm_mapped_extents=1, ...}) = 0
[pid  6009] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME|0x3c, 000) = 5
[pid  6009] open("./bus", O_RDWR|O_SYNC|0x3c) = 6
[pid  6009] mmap(0x20000000, 6291456, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<<MAP_HUGE_SHIFT, 6, 0) = 0x20000000
[pid  6009] ftruncate(6, 2150145)       = 0
[pid  6009] memfd_create("syzkaller", 0) = 7
[pid  6009] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[  119.668580][ T6009] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  119.693283][   T29] audit: type=1800 audit(1731806653.842:60): pid=6009 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor420" name="bus" dev="loop0" ino=17058 res=0 errno=0
[pid  6009] write(7, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  6009] munmap(0x7f47f7200000, 138412032) = 0
[pid  6009] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  6009] close(7)                    = 0
[pid  6009] exit_group(0)               = ?
[pid  6009] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6009, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=13 /* 0.13 s */} ---
umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555c1ec6f0 /* 4 entries */, 32768) = 112
umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./58/binderfs")                 = 0
umount2("./58/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./58/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./58/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./58/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./58/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555c1f4730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555c1f4730 /* 0 entries */, 32768) = 0
close(4)                                = 0
rmdir("./58/file1")                     = 0
getdents64(3, 0x55555c1ec6f0 /* 0 entries */, 32768) = 0
close(3)                                = 0
rmdir("./58")                           = 0
mkdir("./59", 0777)                     = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6012 attached
[  119.932529][ T5826] ocfs2: Unmounting device (7,0) on (node local)
 <unfinished ...>
[pid  6012] set_robust_list(0x55555c1eb660, 24 <unfinished ...>
[pid  5826] <... clone resumed>, child_tidptr=0x55555c1eb650) = 6012
[pid  6012] <... set_robust_list resumed>) = 0
[pid  6012] chdir("./59")               = 0
[pid  6012] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6012] setpgid(0, 0)               = 0
[pid  6012] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6012] write(3, "1000", 4)         = 4
[pid  6012] close(3)                    = 0
[pid  6012] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6012] write(1, "executing program\n", 18executing program
) = 18
[pid  6012] memfd_create("syzkaller", 0) = 3
[pid  6012] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f47f7200000
[pid  6012] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid  6012] munmap(0x7f47f7200000, 138412032) = 0
[pid  6012] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6012] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6012] close(3)                    = 0
[pid  6012] close(4)                    = 0
[pid  6012] mkdir("./file1", 0777)      = 0
[pid  6012] mount("/dev/loop0", "./file1", "ocfs2", MS_MANDLOCK|MS_DIRSYNC|MS_NODIRATIME, "coherency=buffered,heartbeat=none,coherency=full,errors=continue,journal_async_commit,localflocks,in"...) = 0
[pid  6012] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  6012] chdir("./file1")            = 0
[pid  6012] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[  120.165892][ T6012] loop0: detected capacity change from 0 to 32768
[  120.203848][ T6012] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid  6012] openat(AT_FDCWD, ".", O_RDONLY) = 4